74.50.53.71 14 kB IP 74.50.53.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13803)
Hash db9f5f3905dded84eb60e45f90dd367b
47d93bfc628bd74173014453015e1b9b3f75d33c
8b6d426292e7801629a7edfd68368ef80744aca7c24adf489db2f01d93cd8c02
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 74.50.53.71
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 22:29:44 GMT
Server: Apache/2.4.10 (Debian)
X-Pingback: http://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/berns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/berns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/terns?s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/terns?://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&www.allthebirthdays.com/xmlrpc.php
Link: <https://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/berns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/berns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/terns?s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/terns?://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&www.allthebirthdays.com/wp-json/>; rel="https://api.w.org/", <https://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/berns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/berns?#s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/terns?s://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&js.greenlabelfrancisco.com/terns?://css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&www.allthebirthdays.com/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14107
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.css
104.18.11.207200 OK 5.5 kB URL GET HTTP/1.1 netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.css
IP 104.18.11.207:80
File type troff or preprocessor input, ASCII text, with very long lines (305)
Hash e4e5f0ff7d97d2851d8f06c26a4e302b
15e5b5a9c81e2cf89c768a80cd06c6180f35ab04
305fdd8ab222d1123866f401b7e8786d674f72ec8d40197069369683b6019655
GET /font-awesome/4.1.0/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 22:34:37 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: SE
CDN-EdgeStorageId: 632, 617
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-03-10 20:26:52
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 7c2e8c7dceadb8c812b0bfb2cf5a1135
Content-Encoding: gzip
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 4124527
Server: cloudflare
CF-RAY: 7d4cd7d08ddcb500-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 22:34:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lato:400,100,100italic,300,300italic,400italic,700,700italic,900,900italic
142.250.74.74200 OK 1.0 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Lato:400,100,100italic,300,300italic,400italic,700,700italic,900,900italic
IP 142.250.74.74:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type gzip compressed data, max compression\012- data
Hash a9a47c485945451f842f40b8e728be09
b9200cda57bbaa20d3823f9dc0ecffc5e44ec0cd
ae46d1cce7df0d78452becf5779764933282f6b1bc4164ee32bc977f67817c8e
GET /css?family=Lato:400,100,100italic,300,300italic,400italic,700,700italic,900,900italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 09 Jun 2023 22:34:37 GMT
date: Fri, 09 Jun 2023 22:34:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d11f6c8c-0715-11ee-a077-cb2078948dcf; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:44 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d12b5b32-0715-11ee-a705-cb208e0ae938; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d131302a-0715-11ee-b2da-cb20f9dfcae9; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d136e236-0715-11ee-87f0-cb20b75cde75; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d13c9366-0715-11ee-84e5-cb20e099be19; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d1422164-0715-11ee-9e54-cb20564830d2; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d148f548-0715-11ee-b053-cb20f68d2e60; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d14f1180-0715-11ee-9271-cb20d4d2a51e; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d154f0e6-0715-11ee-8ddf-cb20359e89fe; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d1669b20-0715-11ee-ba74-cb20bdc5dbda; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d16d6f36-0715-11ee-a63e-cb2058cd0519; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d1744a5e-0715-11ee-89a2-cb200b3e4a1f; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d179f968-0715-11ee-8302-cb208950d172; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d17f8f9a-0715-11ee-a6c3-cb206a4c0a4a; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d1860050-0715-11ee-88e9-cb203e5bd9a1; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d18bd598-0715-11ee-aa7e-cb206bb5cee2; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d1918060-0715-11ee-8dae-cb20fc01129f; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
adjust.admarketlocation.com/bons/glats.js?t=7&
93.115.28.104429 Too Many Requests 17 B URL GET HTTP/2 adjust.admarketlocation.com/bons/glats.js?t=7&
IP 93.115.28.104:443
ASN #16125 UAB Cherry Servers
Certificate IssuerLet's Encrypt
Subjectadmarketlocation.com
FingerprintC0:7B:5B:DD:76:45:E5:C8:7E:A2:5C:71:9E:A7:FD:1D:4E:1C:EA:FA
ValidityWed, 15 Mar 2023 22:05:43 GMT - Tue, 13 Jun 2023 22:05:42 GMT
File type ASCII text, with no line terminators
Hash eeb13468b73d93fa8bcbe3ebae6df720
1f55c90d5ce61c6447e923443d496b137be35c63
802600d124464157037a2519acb3cff90b97670fd04809ea902fbb95497a12ca
Analyzer Verdict Alert quad9 Sinkholed
GET /bons/glats.js?t=7& HTTP/1.1
Host: adjust.admarketlocation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 429 Too Many Requests
cache-control: max-age=0, private, must-revalidate
content-length: 17
date: Fri, 09 Jun 2023 22:34:37 GMT
server: Cowboy
set-cookie: sid=d197342e-0715-11ee-aba1-cb20a812b7ca; path=/; domain=.admarketlocation.com; expires=Thu, 28 Jun 2091 01:48:45 GMT; max-age=2147483647; secure; HttpOnly
X-Firefox-Spdy: h2
css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.11.3
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.11.3
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.11.3 HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.2.1
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.2.1
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.2.1 HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=4.4.2
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=4.4.2
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=4.4.2 HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /cerns? HTTP/1.1
Host: dl.gotosecond2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.2.1
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.2.1
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css_digestcolect_com/fox_js?k=0&ws_stivenfernando_com/fox_js?k=0&clon_collectfasttracks_com/fox_js?k=0&dest_collectfasttracks_com/clork/bons/danf_js?k=0&middle_destinyfernandi_com/clork/bons/danf_js?k=0&adjust_admarketlocation_com/bons/danf_js?k=0&dl_gotosecond2_com/cerns?&ver=1.2.1 HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
0.0.0.0 0 B URL GET dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7&
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/stats.js?t=7& HTTP/1.1
Host: dest.collectfasttracks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
0.0.0.0 0 B URL GET css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns?
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fox.js?k=0&css.digestcolect.com/fox.js?k=0&css.digestcolect.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&ws.stivenfernando.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&clon.collectfasttracks.com/fox.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&dest.collectfasttracks.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&middle.destinyfernandi.com/clork/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&adjust.admarketlocation.com/bons/danf.js?k=0&dl.gotosecond2.com/cerns? HTTP/1.1
Host: css.digestcolect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://74.50.53.71/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache