GET vst-crack.com/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=15413388
302 Found 645 B URL User Request GET HTTP/3 vst-crack.com/z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=15413388
IP
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
Hash 2978a1944e5ef0c2bc8e227719354552
cda09413d3525696aa3e53181f51524edeef9a20
26288f6fad7d1e49cffa99282c631dd69cb6f591b1e96a5aafe696939cdb346e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /z0f76a1d14fd21a8fb5fd0d03e0fdc3d3cedae52f?wsidchk=15413388 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 23 Feb 2024 21:43:33 GMT
content-type: text/html
location: https://vst-crack.com/eset-nod32-crack/
set-cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1; Expires=Sun, 24-Mar-24 21:43:33 GMT; Domain=vst-crack.com; Path=/; HttpOnly; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OVFG9ofr1uh5N%2BOi3AoddJKjsJQwp4bqotIrMbFVFNkrZ9Mn%2Fwlf7wmKdIb0zoxxAgY%2BfCXyh%2F0wLXXAudQXEpzJIbdpPz0mG3seTeycI3R3ZfLjthLaLl9Npm6ccuJ6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85a2a5232ab9abe7-CPH
alt-svc: h3=":443"; ma=86400
GET pixel.wp.com/g.gif?v=ext&blog=175377294&post=3071&tz=0&srv=vst-crack.com&j=1%3A13.1.1&host=vst-crack.com&ref=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&fcp=0&rand=0.028022195919414905
200 OK 50 B URL GET HTTP/3 pixel.wp.com/g.gif?v=ext&blog=175377294&post=3071&tz=0&srv=vst-crack.com&j=1%3A13.1.1&host=vst-crack.com&ref=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&fcp=0&rand=0.028022195919414905
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type GIF image data, version 89a, 6 x 5
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=175377294&post=3071&tz=0&srv=vst-crack.com&j=1%3A13.1.1&host=vst-crack.com&ref=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&fcp=0&rand=0.028022195919414905 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Fri, 23 Feb 2024 21:43:41 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/themes/merlin/fonts/roboto-v18-latin-ext_latin-700.woff2
200 OK 22 kB URL GET HTTP/3 vst-crack.com/wp-content/themes/merlin/fonts/roboto-v18-latin-ext_latin-700.woff2
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 22116, version 1.0
Hash 53eedb1e2d7c79582f367ec102c12681
b2e1888e4ec623e14d173712bd2881459ba3dc7f
1f03b3082883c94de09ea4c0b38092a45f2f7ca60c14889818a3e19057da34b8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/merlin/fonts/roboto-v18-latin-ext_latin-700.woff2 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/wp-content/themes/merlin/css/custom-fonts.css
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:41 GMT
content-type: font/woff2
content-length: 22116
last-modified: Fri, 09 Oct 2020 15:29:06 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 11:17:16 GMT
cf-cache-status: HIT
age: 37585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2FWOYBDUH0omPL92tFKYG2oKLgZ%2BslriAJ3dvtkKN06fknXpwoRS7WqFlrDbyejKMXtVOBDwp4TOuVU9qLFNizJBaSGZuQRYAkOQVSSiPDR1I4SGvH1wtD62SXGOd1dG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a5568afcabe7-CPH
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/themes/merlin/fonts/hammersmith-one-v8-latin-ext_latin-regular.woff2
200 OK 28 kB URL GET HTTP/3 vst-crack.com/wp-content/themes/merlin/fonts/hammersmith-one-v8-latin-ext_latin-regular.woff2
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 28072, version 1.0
Hash ffb656df59f776086ba6174e3787d856
9d5e3852439bc1fd65ca93df5feea45e9e5ffea7
cf45bc2363ce9144dc849274b6a81ffff57b70fac86103e9982cae5b6306d38c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/merlin/fonts/hammersmith-one-v8-latin-ext_latin-regular.woff2 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/wp-content/themes/merlin/css/custom-fonts.css
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:41 GMT
content-type: font/woff2
content-length: 28072
last-modified: Fri, 09 Oct 2020 15:29:06 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 11:17:16 GMT
cf-cache-status: HIT
age: 37585
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IZR1ThKayYjVqXLuJ38zXS4AfTTprFmAtSglVSEPOpglpYHwZUf9KppA3WpxaEK5GZlcosBrMHR01MlWcYzeTkbjhNo7xcghbO2EBLyHBOKba0lzmnf2SIicq9t8%2FUmk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a5569b07abe7-CPH
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/themes/merlin/fonts/roboto-v18-latin-ext_latin-regular.woff2
200 OK 22 kB URL GET HTTP/3 vst-crack.com/wp-content/themes/merlin/fonts/roboto-v18-latin-ext_latin-regular.woff2
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 21920, version 1.0
Hash e5d046dd2c38f8e9a1f2f1130e4ec9fc
ee3d9449d668da1bbeaf63f9c738d240b5340c29
f9bc132980c62433dfd76631f5a602fd1bf318141d67ebb6b70b4d3cc92555b0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/merlin/fonts/roboto-v18-latin-ext_latin-regular.woff2 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/wp-content/themes/merlin/css/custom-fonts.css
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:42 GMT
content-type: font/woff2
content-length: 21920
last-modified: Fri, 09 Oct 2020 15:29:06 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:41 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lpTSw3x4f661wwJCXf1SVeyGFlXljekjfOnyhaW39lxCFkUZwLf%2FEpHpkXjwFKohgceOo2a1Yor%2F89Ar02bAKLq1hih4AURTUOL2nAw3s3hjcrwT0o02KkyaZXHQ43%2Bo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a5568b03abe7-CPH
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
200 OK 11 kB URL GET HTTP/3 vst-crack.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/css
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fhil7C2xlkHJ%2BFWQb4X%2Bo9XwPyd4t8SAESHIcBOmaCSfTVb6OBID49hzgcLxie8sPtjNMn9YOXobnuANmN7FPt%2BDHgEb82SrOCW%2FtgC3Bms8PRZvnFruz8H5LnqOe70J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547a80cabe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/uploads/2020/08/cropped-vst-crack-32x32.png
200 OK 1.2 kB URL GET HTTP/3 vst-crack.com/wp-content/uploads/2020/08/cropped-vst-crack-32x32.png
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Hash 9d51a10deddc95777aa044ee62292525
1c166c60c2bc62c44b30322e7a761605b19d7f8d
b2f5df07fb9712006a63b3ab4862eb430b73f6ea905699e482eecc585748a1c8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2020/08/cropped-vst-crack-32x32.png HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:42 GMT
content-type: image/png
content-length: 1224
last-modified: Tue, 25 Aug 2020 16:50:50 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:32:58 GMT
cf-cache-status: HIT
age: 644
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0TJMkZLsiyKK12red%2FM2qtak%2FdDozk%2FwvbUq5hBOCbcvUWhNs8hQrca8%2Bz2qjfrWCVVl0Ou2nWhgtZ9eTYkhn3WSACrAvVQG4kimyFN2CEI37z%2F9qVDWKEAs9t3kTySL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a5592fe1abe7-CPH
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-includes/css/dist/block-library/style.min.css
200 OK 26 kB URL GET HTTP/3 vst-crack.com/wp-includes/css/dist/block-library/style.min.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (57196)
Hash 0234d0a7685aefa6fd06041fbd602928
cbcba60aa82286dd1f877cb8bd5b5cc047f82ce0
0085adfd2d08a45f62a06d8f3f969ddc4a94ebe8d226511db90aa038f11ed180
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/css
last-modified: Wed, 31 Jan 2024 02:34:10 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Heo3DTSQVoTzvuGL7z1%2BxhfBO0c%2FBdF7esql7QiaRWW0EkLkG2z1A6WX2Mc%2BS%2FBqeK70QW4mOIPrwJVAADZcUdCc2zd0TeY%2FkO5HT9tQvC8j2fBd9exEVfZga66HwVxx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547a808abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET www.topcreativeformat.com/a594e240b188d3ddd468c66e553ae755/invoke.js
200 OK 12 kB URL GET HTTP/1.1 www.topcreativeformat.com/a594e240b188d3ddd468c66e553ae755/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjecttopcreativeformat.com
Fingerprint18:CA:FD:73:55:73:29:3A:F9:87:CC:E5:B4:AA:07:A2:66:03:73:1F
ValiditySat, 20 Jan 2024 06:53:00 GMT - Fri, 19 Apr 2024 06:52:59 GMT
File type JavaScript source, ASCII text, with very long lines (31300), with no line terminators
Hash 57745f23059b4dba6d7a0868f495ae27
bdab012e80f8b61939ea79bb017cf4470441c96e
3fba00df4cf8953254972743d12ddb98aec2fa2ecc027004b7ed77356744d6ee
GET /a594e240b188d3ddd468c66e553ae755/invoke.js HTTP/1.1
Host: www.topcreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 23 Feb 2024 21:43:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5830d975208ec4fdabe242e4003fb38e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET vst-crack.com/wp-content/uploads/2020/08/cropped-vst-crack-192x192.png
200 OK 12 kB URL GET HTTP/3 vst-crack.com/wp-content/uploads/2020/08/cropped-vst-crack-192x192.png
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Hash 16b554aeea0fc51b932c5f8273a15aec
3c24d4e9535b3d73120eb7e5aaf43e5df5c67b96
bdab99ebbbbc0d3712ff33875d55f8ae0bd694d1a0c30e31e0ab623b6addf560
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2020/08/cropped-vst-crack-192x192.png HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:42 GMT
content-type: image/png
content-length: 11472
last-modified: Tue, 25 Aug 2020 16:50:50 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:42 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0dKsSlIPWvODprOrppxl71o6aLwhAQtVrzi6eksCMC5zltPoU5tUwNUPueLmSoIWwmvogRVl716qj3jHe34k2Wa53YtGQ89p5xSvfEi0ZHRGeWFnNwe75%2BEJXffhaOGK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a5592fe0abe7-CPH
alt-svc: h3=":443"; ma=86400
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash a8b4abf92176a03f9e339c3366b23ac9
d02cb479847ae70c327d48a9326084f8a0ceca46
d82301e2e66729367df63600273af7a0eca4883a6983a55ad1a6202ca1869d9a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vst-crack.com
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 23 Feb 2024 21:43:42 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://vst-crack.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a:1:1; expires=Mon, 20 Feb 2034 21:43:42 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 0f1c87c9055a69ce7c80d84862297bc0
2fa5ce7a928d97d79dea13ce7b7d5024e2ee26b0
f52b6f88f5584bf63b8abfe3340e81ba6b38537f3ab1407384de58cdbd3dfea0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vst-crack.com
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 23 Feb 2024 21:43:42 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://vst-crack.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=be1a0baa-f3de-4643-b109-96af3d418cbb:2:1; expires=Mon, 20 Feb 2034 21:43:42 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET vst-crack.com/wp-content/uploads/2022/01/ESET-NOD32-Antivirus-crack.png
200 OK 20 kB URL GET HTTP/3 vst-crack.com/wp-content/uploads/2022/01/ESET-NOD32-Antivirus-crack.png
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type PNG image data, 250 x 300, 8-bit colormap, non-interlaced
Hash 8e9c142bc59e2d99339e4b8016c843b0
fa6ca96873abda72fc8320ba0043ed73247fc8f7
e5c74c308739d3e7f625c5c4fab244d34047c2c7b4c9a9c94990db6adeb06588
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/01/ESET-NOD32-Antivirus-crack.png HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:42 GMT
content-type: image/png
content-length: 19555
last-modified: Thu, 06 Jan 2022 06:26:54 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:42 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=09tTX7ITK8ZPceHvwT%2B1eY7d6npVET%2Fj2wPWviWEoWj%2B7ZVDI233U8BMZk0G9ip9wrBQKPdC4Mwi%2FSbsDb6IDEWu4l0aSFVkNp5aFsoLH%2FDBhXM9iyYmJ3wzCCrEeja4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a55a49f1abe7-CPH
alt-svc: h3=":443"; ma=86400
GET lawsbuffet.com/watch.1590085671423.js?key=3bc45143399d0958e64cbc9f58fa249c&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&tz=0&dev=e&res=14.2071&uuid=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 lawsbuffet.com/watch.1590085671423.js?key=3bc45143399d0958e64cbc9f58fa249c&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&tz=0&dev=e&res=14.2071&uuid=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a%3A1%3A1
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjectlawsbuffet.com
Fingerprint26:D3:64:4E:4A:9E:8F:DA:83:E0:D9:93:AB:77:A6:87:3F:5E:EB:7B
ValidityThu, 22 Feb 2024 13:07:03 GMT - Wed, 22 May 2024 13:07:02 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1590085671423.js?key=3bc45143399d0958e64cbc9f58fa249c&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&tz=0&dev=e&res=14.2071&uuid=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a%3A1%3A1 HTTP/1.1
Host: lawsbuffet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vst-crack.com
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 23 Feb 2024 21:43:43 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://vst-crack.com
Access-Control-Allow-Origin: https://vst-crack.com
Access-Control-Allow-Credentials: true
Location: https://lawsbuffet.com/watch.1590085671423.js?dev=e&key=3bc45143399d0958e64cbc9f58fa249c&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=880b128170eb3f3c7f8efa03ba567f311f09fc13b1ccdee5453b4ed2ea097346ed9d61db333a98bf5f3cb095aaa78a73a2ce7dae807c7675c394d3b35d9524bac5aaf6e4991e5aa9b2de478bc9e48739a6970b8b98f9c4f6e8cbaf55ee78192b51&tz=0&uuid=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a%3A1%3A1
Set-Cookie: u_pl=18681542; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.Jgt8qQiiCf6foyGMWpH2jcRQKaRYvRvp5hdp1HDDjOs; expires=Fri, 23 Feb 2024 21:44:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ac02ee20ec226c44e652900560a20a3d
Strict-Transport-Security: max-age=0; includeSubdomains
GET selectedhoarfrost.com/watch.356947252083.js?key=a594e240b188d3ddd468c66e553ae755&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&tz=0&dev=e&res=14.2071&uuid=be1a0baa-f3de-4643-b109-96af3d418cbb%3A2%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 selectedhoarfrost.com/watch.356947252083.js?key=a594e240b188d3ddd468c66e553ae755&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&tz=0&dev=e&res=14.2071&uuid=be1a0baa-f3de-4643-b109-96af3d418cbb%3A2%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjectselectedhoarfrost.com
FingerprintAE:E5:41:AD:C4:89:6D:EB:C5:5C:AB:54:EA:AB:C6:96:66:4D:EF:39
ValidityWed, 21 Feb 2024 10:02:20 GMT - Tue, 21 May 2024 10:02:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.356947252083.js?key=a594e240b188d3ddd468c66e553ae755&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&tz=0&dev=e&res=14.2071&uuid=be1a0baa-f3de-4643-b109-96af3d418cbb%3A2%3A1 HTTP/1.1
Host: selectedhoarfrost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vst-crack.com
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 23 Feb 2024 21:43:43 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://vst-crack.com
Access-Control-Allow-Origin: https://vst-crack.com
Access-Control-Allow-Credentials: true
Location: https://selectedhoarfrost.com/watch.356947252083.js?dev=e&key=a594e240b188d3ddd468c66e553ae755&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=086b60661a838cd178115c76eaf8748bfeb1bf0a9257b13c661954d3f087500444cd4af05e13c7c50d4bc28a5fbc9481016eb266fd85473f2b6b558dc9d7f542e0f7d6839c73ba53da26e05c62c8ad20991cab1ec1b991e9c459c9a36d9b2d&tz=0&uuid=be1a0baa-f3de-4643-b109-96af3d418cbb%3A2%3A1
Set-Cookie: u_pl=18689201; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.1hARc3QAK8W6xl1d1ndTqFz3sRiQT8_Xt6eqdP3ILEo; expires=Fri, 23 Feb 2024 21:44:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d1866266cc883eaaa5093c70cf5a6e99
Strict-Transport-Security: max-age=0; includeSubdomains
GET lawsbuffet.com/watch.1590085671423.js?dev=e&key=3bc45143399d0958e64cbc9f58fa249c&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=880b128170eb3f3c7f8efa03ba567f311f09fc13b1ccdee5453b4ed2ea097346ed9d61db333a98bf5f3cb095aaa78a73a2ce7dae807c7675c394d3b35d9524bac5aaf6e4991e5aa9b2de478bc9e48739a6970b8b98f9c4f6e8cbaf55ee78192b51&tz=0&uuid=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a%3A1%3A1
200 OK 2.1 kB URL GET HTTP/1.1 lawsbuffet.com/watch.1590085671423.js?dev=e&key=3bc45143399d0958e64cbc9f58fa249c&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=880b128170eb3f3c7f8efa03ba567f311f09fc13b1ccdee5453b4ed2ea097346ed9d61db333a98bf5f3cb095aaa78a73a2ce7dae807c7675c394d3b35d9524bac5aaf6e4991e5aa9b2de478bc9e48739a6970b8b98f9c4f6e8cbaf55ee78192b51&tz=0&uuid=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a%3A1%3A1
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjectlawsbuffet.com
Fingerprint26:D3:64:4E:4A:9E:8F:DA:83:E0:D9:93:AB:77:A6:87:3F:5E:EB:7B
ValidityThu, 22 Feb 2024 13:07:03 GMT - Wed, 22 May 2024 13:07:02 GMT
File type JavaScript source, ASCII text, with very long lines (2668)
Hash 128bdc0ae01ba597ec219ce757ff9385
93f91b9e3a6d48367432f75ff3453ffd12e01c23
686eb8d09b9d3ece00b0a0d3c6b5af4a00750bbe482a265dcc66e5aae2d261e2
GET /watch.1590085671423.js?dev=e&key=3bc45143399d0958e64cbc9f58fa249c&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=880b128170eb3f3c7f8efa03ba567f311f09fc13b1ccdee5453b4ed2ea097346ed9d61db333a98bf5f3cb095aaa78a73a2ce7dae807c7675c394d3b35d9524bac5aaf6e4991e5aa9b2de478bc9e48739a6970b8b98f9c4f6e8cbaf55ee78192b51&tz=0&uuid=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a%3A1%3A1 HTTP/1.1
Host: lawsbuffet.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vst-crack.com
Referer: https://vst-crack.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=18681542; ain=eyJhbGciOiJIUzI1NiJ9.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.Jgt8qQiiCf6foyGMWpH2jcRQKaRYvRvp5hdp1HDDjOs
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 23 Feb 2024 21:43:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://vst-crack.com
Access-Control-Allow-Origin: https://vst-crack.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=15c1cb0d-4db9-40a8-9a73-2d026cfe6a7a:1:1; expires=Fri, 01 Mar 2024 21:43:43 GMT; secure; SameSite=None
iprc0e90f7a392688545f62acbf19909079a=3569808; expires=Sat, 24 Feb 2024 01:43:43 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
uncs=1; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 82fdb835f6aeabe556983b91868cd514
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET selectedhoarfrost.com/watch.356947252083.js?dev=e&key=a594e240b188d3ddd468c66e553ae755&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=086b60661a838cd178115c76eaf8748bfeb1bf0a9257b13c661954d3f087500444cd4af05e13c7c50d4bc28a5fbc9481016eb266fd85473f2b6b558dc9d7f542e0f7d6839c73ba53da26e05c62c8ad20991cab1ec1b991e9c459c9a36d9b2d&tz=0&uuid=be1a0baa-f3de-4643-b109-96af3d418cbb%3A2%3A1
200 OK 2.1 kB URL GET HTTP/1.1 selectedhoarfrost.com/watch.356947252083.js?dev=e&key=a594e240b188d3ddd468c66e553ae755&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=086b60661a838cd178115c76eaf8748bfeb1bf0a9257b13c661954d3f087500444cd4af05e13c7c50d4bc28a5fbc9481016eb266fd85473f2b6b558dc9d7f542e0f7d6839c73ba53da26e05c62c8ad20991cab1ec1b991e9c459c9a36d9b2d&tz=0&uuid=be1a0baa-f3de-4643-b109-96af3d418cbb%3A2%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjectselectedhoarfrost.com
FingerprintAE:E5:41:AD:C4:89:6D:EB:C5:5C:AB:54:EA:AB:C6:96:66:4D:EF:39
ValidityWed, 21 Feb 2024 10:02:20 GMT - Tue, 21 May 2024 10:02:19 GMT
File type JavaScript source, ASCII text, with very long lines (2697)
Hash 2a198c398dd0c89a11c6c87313eca366
234c240da457c9c196dd10559b2632fa7376565e
b7a423f3dd870767ab9994d78892a8f53c5cb6752ad3b9b35ecde46e8e678bc4
GET /watch.356947252083.js?dev=e&key=a594e240b188d3ddd468c66e553ae755&kw=%5B%22eset%22%2C%22nod32%22%2C%22antivirus%22%2C%2218%22%2C%220%22%2C%2217%22%2C%22crack%22%2C%22license%22%2C%22key%22%2C%222024%22%5D&pst=1708724683&refer=https%3A%2F%2Fvst-crack.com%2Feset-nod32-crack%2F&res=14.2071&rmtc=t&shu=086b60661a838cd178115c76eaf8748bfeb1bf0a9257b13c661954d3f087500444cd4af05e13c7c50d4bc28a5fbc9481016eb266fd85473f2b6b558dc9d7f542e0f7d6839c73ba53da26e05c62c8ad20991cab1ec1b991e9c459c9a36d9b2d&tz=0&uuid=be1a0baa-f3de-4643-b109-96af3d418cbb%3A2%3A1 HTTP/1.1
Host: selectedhoarfrost.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vst-crack.com
Referer: https://vst-crack.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=18689201; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxODY4OTIwMSwiayI6ImE1OTRlMjQwYjE4OGQzZGRkNDY4YzY2ZTU1M2FlNzU1Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyMzIxODcwLCJwaWQiOjc1Njg3MywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjUsInB0Ijo0LCJwayI6Ims1OWRxNXkwdXciLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly92c3QtY3JhY2suY29tL2VzZXQtbm9kMzItY3JhY2svIiwiYXIiOltdfX0.1hARc3QAK8W6xl1d1ndTqFz3sRiQT8_Xt6eqdP3ILEo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 23 Feb 2024 21:43:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://vst-crack.com
Access-Control-Allow-Origin: https://vst-crack.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=be1a0baa-f3de-4643-b109-96af3d418cbb:2:1; expires=Fri, 01 Mar 2024 21:43:43 GMT; secure; SameSite=None
iprca83f2b15138816606147fed94dc9c8bb=3569806; expires=Sat, 24 Feb 2024 01:43:43 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
uncs=1; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 24 Feb 2024 21:43:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4a5801738cea36ef706146fbdc552958
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
200 OK 106 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced
Size 106 kB (105910 bytes)
Hash a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e
GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 23 Feb 2024 21:43:43 GMT
content-type: image/png
content-length: 105910
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Sun, 25 Feb 2024 21:43:43 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
200 OK 144 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
ValidityMon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Feb 2024 21:43:43 GMT
content-type: image/png
content-length: 144379
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sun, 25 Feb 2024 21:43:43 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.profitablecreativeformat.com/3bc45143399d0958e64cbc9f58fa249c/invoke.js
200 OK 31 kB URL GET HTTP/1.1 www.profitablecreativeformat.com/3bc45143399d0958e64cbc9f58fa249c/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
FingerprintD4:D1:3D:C5:11:AE:5C:A7:09:3F:CD:8B:6B:95:F9:A2:63:F0:40:19
ValiditySat, 27 Jan 2024 07:08:32 GMT - Fri, 26 Apr 2024 07:08:31 GMT
File type JavaScript source, ASCII text, with very long lines (31279), with no line terminators
Hash 786247a65b1ee2cc8020652c2dfd27d7
0c6c6395faf259ac2c60ed5e7ec744bf1d05076f
c652634e2444154896b720dea61d102a4df00de6e463eda5e86db7ddaebe7eea
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /3bc45143399d0958e64cbc9f58fa249c/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 23 Feb 2024 21:43:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fcb993fd10b78c4bc660f5d35fafc16e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET vst-crack.com/eset-nod32-crack/
200 OK 138 kB URL User Request GET HTTP/3 vst-crack.com/eset-nod32-crack/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
Size 138 kB (138068 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /eset-nod32-crack/ HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vst-crack.com/eset-nod32-crack/
DNT: 1
Connection: keep-alive
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/html; charset=UTF-8
x-litespeed-tag: 558_HTTP.200
link: <https://vst-crack.com/wp-json/>; rel="https://api.w.org/", <https://vst-crack.com/wp-json/wp/v2/posts/3071>; rel="alternate"; type="application/json", <https://vst-crack.com/?p=3071>; rel=shortlink
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a3I33GXMtZGH3dS7qCNWZFRxfZvcdNKt%2BlX67tNw%2Bu8nelPJT6ecHvvgyTCV6atN%2FgfXattmxghEA0VqnoTXxrmsLjdl%2BKm26vmV2yJvhsCjpBN%2F6JGQyWrCwwTAQcEI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85a2a5243cb3abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/themes/merlin/css/custom-fonts.css
200 OK 2.5 kB URL GET HTTP/3 vst-crack.com/wp-content/themes/merlin/css/custom-fonts.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (2579), with no line terminators
Hash 81aeb2b245853f706869635c0ca39f12
3f4ee6f5e5f3e1f196b3f1a8ce59fc1ed37972b2
d4f3232ea14ff6fc9747ca1e4bbfca671af897d60fb6f84007051c4764146136
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/merlin/css/custom-fonts.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/css
last-modified: Fri, 09 Oct 2020 15:29:06 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLl8gCNF6qSZ0bNZ6JfvfqidnOroUYNK%2FLhnwsdcR3VyW7cz0RPZzieNnZeK3%2FY9NJMUE0Aqtu4VoQ7qPOR8C8QkmxvaHlnXgDqSxy%2BXwzVXcdEj9BDjpufEpRnJgp%2FO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a5479fffabe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/litespeed/js/7c6926392c5a347b886358c73f682f57.js?ver=82f57
200 OK 6.2 kB URL GET HTTP/3 vst-crack.com/wp-content/litespeed/js/7c6926392c5a347b886358c73f682f57.js?ver=82f57
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type JavaScript source, ASCII text, with very long lines (6239), with no line terminators
Hash adc8f1f82e77f3f4c0885562b05c3fdf
969f14e5b367c383c0a277f9e4746ced87c36289
65576e338e83274e5fdd20d7110254df5f5d77bde65de404e983e4ec938da9b3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/litespeed/js/7c6926392c5a347b886358c73f682f57.js?ver=82f57 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/javascript
last-modified: Fri, 23 Feb 2024 11:17:15 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 11:17:16 GMT
cf-cache-status: HIT
age: 37583
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iEsin84ApDpLINYqC%2BNIdnwo%2BvVMmAkwFcw27EgneSKMzS3f3uUsXoA7YdB7FtcS%2FUPxpF9wmE0SgNvWRxq5qdFPxWevdFHFYu0lJBevswzRN6hJKXcD4Ksbyka92dsB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a5486993abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/themes/merlin/style.css
200 OK 64 kB URL GET HTTP/3 vst-crack.com/wp-content/themes/merlin/style.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (342)
Hash 59d2e2ea06f60edaacf2bdc82f4bd512
5584e00d29ebbf351442a8f34176058d93440692
5318204bb725e46618a7fd692cd84c7c9b647b1a35327da8a245b8c32678fcd3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/merlin/style.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/css
last-modified: Sun, 06 Jun 2021 13:48:34 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BXChFvFJh0QPOV5qHYYO%2ByruCrWONIdGibv1wQhn3PgbV7bcffbPTIG4pK7ekmTNZHKDYrEHR06BTiY22a7MdtQ5e5K0YC1MGDRBD96ZzkdpF3UGdK%2Fysa3cpKjlZaHm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547a81fabe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET stats.wp.com/e-202408.js
200 OK 7.3 kB IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (7504), with no line terminators
Hash 43bf680c0caba9b62f1c46e128d40360
e8950271ef6af3759a7429b45a7e583e6e24e305
21ef883e41d9b0fc02bd11801d9823daf93a2b294a6f05b6080bad1b689facab
GET /e-202408.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402356565.5398
content-encoding: br
expires: Mon, 17 Feb 2025 16:23:24 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET vst-crack.com/wp-content/plugins/jetpack/css/jetpack.css
200 OK 106 kB URL GET HTTP/3 vst-crack.com/wp-content/plugins/jetpack/css/jetpack.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
Size 106 kB (106472 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/jetpack/css/jetpack.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/css
last-modified: Tue, 13 Feb 2024 06:28:43 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kxayMam9%2BWn21IiEwCfWiziv7JlFmkJuNJkcwzy%2BEXdAfToNyHmgR4vd%2BBbXFBUqlliOEFRXMoJryKw74hl74PLAqKyEtPkyiFQePtvDBV5pq6xygD%2B0NDaY5cufmOph"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547c851abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/themes/merlin/css/themezee-related-posts.css
200 OK 5.3 kB URL GET HTTP/3 vst-crack.com/wp-content/themes/merlin/css/themezee-related-posts.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (5779), with no line terminators
Hash 92a064f74e7fbef26809da69f3bf483f
d09013067b9ca57920aac2eb5eb4f96132efbdbc
83428ab22d2870d1bebdd3e2b6663c6b86b8b78504c28f9e6ed7aec7420d25b2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/themes/merlin/css/themezee-related-posts.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:41 GMT
content-type: text/css
last-modified: Fri, 09 Oct 2020 15:29:06 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:41 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GxcFpCYhYxQqzQtG6%2Ft%2FyzHK91aHy1A243A0Tue4VVTFsHlYb3ko9%2BSK21qNOhAY5tt0MemzsryCYeBRfooFNXSVXJSdsblszaJKc9xvd5btqN2yP2WqIPi8i2%2FdAMuc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547c84cabe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/litespeed/js/f2bec1128261168bed743a60d47fe024.js?ver=fe024
200 OK 14 kB URL GET HTTP/3 vst-crack.com/wp-content/litespeed/js/f2bec1128261168bed743a60d47fe024.js?ver=fe024
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type JavaScript source, ASCII text, with very long lines (13479)
Hash 47a628aef2f254c32c3b5878700a42ce
43814a498670a432b6a73cc80e67bdc738313ea2
ea64f589334f647f2254d595466c036000a3d9150ad078a69eba7f845c0c0713
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/litespeed/js/f2bec1128261168bed743a60d47fe024.js?ver=fe024 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/javascript
last-modified: Fri, 23 Feb 2024 11:17:15 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 11:17:16 GMT
cf-cache-status: HIT
age: 37583
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Be8y047Gp%2FEwLrw%2BRU4tApekVEy3zufLEssbvrhvwh8cAVlL8sv9EhGPezyzZivH%2FlO0S37lNwZD6qQNE7PO04FTqUNjvI3C1Tt1%2FIAxZfcDgSDm2x3qf8I6vaQRem1i"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547c854abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/litespeed/js/0ac6dd761a38eaea15c4a38e2c2c419e.js?ver=c419e
200 OK 3.4 kB URL GET HTTP/3 vst-crack.com/wp-content/litespeed/js/0ac6dd761a38eaea15c4a38e2c2c419e.js?ver=c419e
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type JavaScript source, ASCII text, with very long lines (3435), with no line terminators
Hash 71d167b19baa63abe8df076f84e0d44b
940c4e2c22256ddec56ed267df9661ee782576a7
44b155e3d74f7882733c05aaa9e3532c5a3762cac8ea3abdd8a16fd93526cf91
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/litespeed/js/0ac6dd761a38eaea15c4a38e2c2c419e.js?ver=c419e HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/javascript
last-modified: Wed, 21 Feb 2024 08:17:52 GMT
cache-control: max-age=2592000
expires: Fri, 22 Mar 2024 08:17:53 GMT
cf-cache-status: HIT
age: 221146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aSD6uQFjeDd709%2Fy2oEhyU9oBOGZXs%2Fq4IqGdGiGAOQz6KWdZYWV5MU%2BktoD9PF%2BXv9DVmTXcx2ejfRKn3tMFodZQHhJKnUls4gtzAogIIqNQ1jZ7ODlTEzKfmMvFa6M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547c855abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-includes/js/jquery/jquery.min.js
200 OK 88 kB URL GET HTTP/3 vst-crack.com/wp-includes/js/jquery/jquery.min.js
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/javascript
last-modified: Wed, 08 Nov 2023 03:55:57 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 11:17:16 GMT
cf-cache-status: HIT
age: 37583
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=beMEfvYhcgS1J6AJ3EWJsBqREsS%2BXHh90ikui%2Bpl7p5ipx0Azvix9NU35FJ4q8BoeyGNBoTXVNKr6nRjQ3XfVBTNmv8EKuwnLXx3xkCW4eTZC5aZCWRexVvLtGc8dCa5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547c852abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-includes/js/mediaelement/wp-mediaelement.min.css
200 OK 4.2 kB URL GET HTTP/3 vst-crack.com/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (4186), with no line terminators
Hash ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/css
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8LWsxswS5kA6oPfZfAEdi0iXHCIeCPF%2BNAkLcYT1c6dtihbBp3efe5xvahG5ggat3x4Ncr9IsUeaJkMkfiR5RivsGWjd%2BahEURfSGv10JDsZL87I2gIAFIKmkN7EDi9k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547a81cabe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css
200 OK 28 kB URL GET HTTP/3 vst-crack.com/wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (18732)
Hash 13a6500ddf36c6dd581877aefc78d34d
3ab844aaad6045edbe2da9e78c3c9f41599b67d6
4ed10d0d64bb1515397e8666a63f484d640dbc5678fa62574e077b7aef1c3af2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/jetpack/_inc/genericons/genericons/genericons.css HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/css
last-modified: Tue, 13 Feb 2024 06:28:44 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 21:43:39 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eXuXD48pNVzahsfdaFqRDgSAVVnlfvzLsZy5tgwL95NFY1OhzTgm5l8eZiB1ReDVspo0pAnxRh2iOI57IpI4gG6gwnecbVd0z44v%2FYfODqsNme4iVIDD4hibGL6gBVYb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547b82cabe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/litespeed/js/3cc9505950b96a95b966fa7dacbe1c98.js?ver=e1c98
200 OK 1.1 kB URL GET HTTP/3 vst-crack.com/wp-content/litespeed/js/3cc9505950b96a95b966fa7dacbe1c98.js?ver=e1c98
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type JavaScript source, ASCII text, with very long lines (1082), with no line terminators
Hash f191f4f8e7191c99403f07a34de0210a
3e213fd416538b4cd41f3240dd728fad71b14604
95439cabadd4424f1f57ba4ce070e99291123dd8a25a3b784afafd1e3a852262
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/litespeed/js/3cc9505950b96a95b966fa7dacbe1c98.js?ver=e1c98 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/javascript
last-modified: Fri, 23 Feb 2024 11:17:15 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 11:17:16 GMT
cf-cache-status: HIT
age: 37583
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xw%2B5FqSuzG6yLdRlZoQvyoCbj%2Bz0xUMDO8hnGf0eVtoZpe086sEPGpYYpVxc%2FJGdhziXxZcxugPpLsTHeEixRkMRPGvRFmLARNbxO%2BAF8gcI%2B3iQA2ql0iv%2Fmv1t3ddu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a547d885abe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET vst-crack.com/wp-content/litespeed/js/4eb9239ea039763acb9d80555b160952.js?ver=60952
200 OK 3.0 kB URL GET HTTP/3 vst-crack.com/wp-content/litespeed/js/4eb9239ea039763acb9d80555b160952.js?ver=60952
IP
Requested by https://vst-crack.com/eset-nod32-crack/
Certificate IssuerGoogle Trust Services LLC
Subjectvst-crack.com
FingerprintC8:93:CE:3D:A2:94:97:5A:1E:61:7C:58:C7:5F:47:01:E2:35:4D:95
ValiditySat, 17 Feb 2024 14:11:48 GMT - Fri, 17 May 2024 14:11:47 GMT
File type ASCII text, with very long lines (3059), with no line terminators
Hash 8e9b190220c2b968efb5cea29f9b627b
f32241dab3b644a92db4705503b72562022913a6
5f82f6f63b65e1c7a1dac189201605fe4a848a73e41a24d54aa78de37b7d7fa7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /wp-content/litespeed/js/4eb9239ea039763acb9d80555b160952.js?ver=60952 HTTP/1.1
Host: vst-crack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vst-crack.com/eset-nod32-crack/
Cookie: wschkid=83f3e227860d873504e2502223d394a6bb0084d9.1708811013.1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 23 Feb 2024 21:43:39 GMT
content-type: text/javascript
last-modified: Fri, 23 Feb 2024 11:17:15 GMT
cache-control: max-age=2592000
expires: Sun, 24 Mar 2024 11:17:16 GMT
cf-cache-status: HIT
age: 37583
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G54peaJZWD5CTy2Cg0z0wMJsb0YZnUs7Lr3xOnkRHg1YszdzJVdyioMawHUhxtLq6lNLNtuH68N9gbBhL8KP5oUOB5sHPTTjbc6PLvE8Xk0cJ9XqPts9WiztDICPEBVh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a2a548698dabe7-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
188.114.96.1
192.0.76.3
18.193.155.8