| xtrfr.com/t/1/m3uxUC?p=1kpU6Q6ZV-6QWzAiKa_1kpU72q8p-6R1gjhlS | 47.243.240.38 | 302 Found | 0 B |
URL User Request GET HTTP/2xtrfr.com/t/1/m3uxUC?p=1kpU6Q6ZV-6QWzAiKa_1kpU72q8p-6R1gjhlS IP47.243.240.38:443 ASN#45102 Alibaba US Technology Co., Ltd.
CertificateIssuerGlobalSign nv-sa Subjectxtrfr.com Fingerprint24:59:CD:67:49:12:E3:B6:D1:CA:F8:E4:CF:63:87:8D:0F:26:B7:B6 ValiditySun, 24 Dec 2023 06:28:52 GMT - Fri, 24 Jan 2025 06:28:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /t/1/m3uxUC?p=1kpU6Q6ZV-6QWzAiKa_1kpU72q8p-6R1gjhlS HTTP/1.1
Host: xtrfr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 20:25:55 GMT
content-length: 0
location: mailto:964726647@qq.com
sw-traceid: 892e23a89e424b7cb39be340a6611fbd.95.17140767557107145
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
set-cookie: acw_tc=b7f70fd3b4d0f4f33c9714b5d98601a58c5136583e2dcc9b57f5e2ecf19c24ef;path=/;HttpOnly;Max-Age=1800
XSRF-TOKEN=a0d1ad8a-afa4-4f77-91d8-eaf6f986271f; Domain=xtransfer.cn; Path=/; Secure
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
content-security-policy: style-src 'self' cdn-cn.xtransfer.cn 'unsafe-inline' pre.xtransfer.cn, script-src 'self' cdn-cn.xtransfer.cn www.google-analytics.com webapi.amap.com pre.xtransfer.cn serv-global.xtransfer.com at.alicdn.com cdn-global.xtransfer.com cdn.dingxiang-inc.com
referrer-policy: no-referrer
X-Firefox-Spdy: h2
|
| mail.google.com/favicon.ico | 172.217.21.165 | | 2.5 kB |
URL mail.google.com/favicon.ico IP172.217.21.165:0
File typegzip compressed data, max compression Hash13b1348e6c164b637b176f264bae8fb0 a433ba0e3a5e3d38a61093cc0b20d3636dc2a9d7 57c8cbe9ab9ab629e1772dd445ca73bbabf7fbfd0b065ecc9a1e0caa3e8b9352
GET /favicon.ico HTTP/1.1
Host: mail.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 20:25:56 GMT
strict-transport-security: max-age=10886400; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: clear
X-Firefox-Spdy: h2
|
IP47.243.240.38:0 ASN#45102 Alibaba US Technology Co., Ltd.
CertificateIssuerGlobalSign nv-sa Subjectxtrfr.com Fingerprint24:59:CD:67:49:12:E3:B6:D1:CA:F8:E4:CF:63:87:8D:0F:26:B7:B6 ValiditySun, 24 Dec 2023 06:28:52 GMT - Fri, 24 Jan 2025 06:28:51 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashca615333e365b1af99ae7e58d99fa4a1 06af983a61052f04fa0a3de6f61b0a34ca8eb8cc 1729833883aa3cbdf0c0cea4124eb3f4c8e9c2eb07817159f4b89e89f2ba7c17
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: xtrfr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 308 Permanent Redirect
Date: Thu, 25 Apr 2024 20:25:58 GMT
Content-Type: text/html
Content-Length: 180
Connection: keep-alive
Set-Cookie: acw_tc=e10b27bc8b19a80c481c7b48f5be6b122241ff3502e78c890c1a9966e2d27bf0;path=/;HttpOnly;Max-Age=1800
Location: https://xtrfr.com/
Via: HTTP/1.1 SLB.77
|
IP47.243.240.38:0 ASN#45102 Alibaba US Technology Co., Ltd.
CertificateIssuerGlobalSign nv-sa Subjectxtrfr.com Fingerprint24:59:CD:67:49:12:E3:B6:D1:CA:F8:E4:CF:63:87:8D:0F:26:B7:B6 ValiditySun, 24 Dec 2023 06:28:52 GMT - Fri, 24 Jan 2025 06:28:51 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: xtrfr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 20:25:59 GMT
content-type: text/html
content-length: 146
set-cookie: acw_tc=021d43c71e865bd9ecf69c7f8e184d2c777d66afecb1bc61181b5ba2fc3373d5;path=/;HttpOnly;Max-Age=1800
X-Firefox-Spdy: h2
|