| littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/commands_3.png | 104.22.25.116 | 200 OK | 4.6 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/commands_3.png IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 269 x 77, 8-bit colormap, non-interlaced Hashc01fd04615824cc88f750de10ae5ce12 134ec54c41168a037c85fd7d3c2c5fd99b3ae0f8 10cda2230829632ae11c180506968d69d8d16433c4320085539f56273add7f06
GET /cd-templates-landings/notification-modals/macos/build/images/commands_3.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/png
content-length: 4606
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-11fe"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c40d3fb524-OSL
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/pattern__safari1.jpg | 104.22.25.116 | 200 OK | 5.8 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/pattern__safari1.jpg IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 301x79, components 3 Hash7a0f7ed875d7bb68f7e8ae41e09fd855 628a922f931b9173bfcc97e5a2ecee570a73f9bf 39c245eec62bd3f9ffcb8b712ca4d1d38f6e6b28c295503632f36fbd5e80f555
GET /cd-templates-landings/notification-modals/macos/build/images/pattern__safari1.jpg HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/jpeg
content-length: 5771
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-168b"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c40d46b524-OSL
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/arrow__blue.png | 104.22.25.116 | 200 OK | 778 B |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/arrow__blue.png IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 111 x 113, 8-bit colormap, non-interlaced Hash811a1caeb9f318966d5ec403ea285fff bb7433601acddd90abc63415b77293324278df68 91184a211c49ba11ebb84a3bd12cfbbeea659ab0c8588e46d0536f6050c6699e
GET /cd-templates-landings/notification-modals/macos/build/images/arrow__blue.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/png
content-length: 778
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-30a"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c40d44b524-OSL
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/_assets/images/logo.png | 104.22.25.116 | 200 OK | 7.8 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/_assets/images/logo.png IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hash82eb2dea2b1166594c87038d540fdd4f 2c0d912580cf02bc5ba36f55eb9e91989a063993 f505997d2fb63eabc7a8e9139c4e0e35940ef97481c68f0d5b53fc0801b27acc
GET /cd-templates-landings/_assets/images/logo.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/png
content-length: 7753
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-1e49"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c40d3bb524-OSL
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/macos2.png | 104.22.25.116 | 200 OK | 12 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/macos2.png IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 154 x 154, 8-bit colormap, non-interlaced Hasha9038fc57b075aa3da6095c627117b09 2660046d3e6bc3af36d97e0418724948680b20a0 bb07a111143f08016d8b0bc40a8216585286f7f5439eca371c0bb718d959b4b9
GET /cd-templates-landings/notification-modals/macos/build/images/macos2.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/png
content-length: 12366
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-304e"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c40d3cb524-OSL
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/warning_yellow_gg2.png | 104.22.25.116 | 200 OK | 4.4 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/warning_yellow_gg2.png IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 140 x 140, 8-bit colormap, non-interlaced Hash2240b4a6475d040579a278be85e11a9a 990e69e88cc348cd73e0f25cd5367524681a24e3 d30c055a94700d329ffb3dcc33a89410f40a72a6cbb28e652ea8dc58cc50dfdf
GET /cd-templates-landings/notification-modals/macos/build/images/warning_yellow_gg2.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/png
content-length: 4372
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-1114"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c40d41b524-OSL
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/pattern__safari-arrow.png | 104.22.25.116 | 200 OK | 419 B |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/pattern__safari-arrow.png IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 48 x 30, 8-bit colormap, non-interlaced Hashef737d44e9efeb2b705061879a33ccb4 b18447f8c87dffcc08725f1b718102f95fc9134b 33becbabd1ebe9e73f06e96b92c0f1186e6b16f8ea7860cd024c147d73aaf03f
GET /cd-templates-landings/notification-modals/macos/build/images/pattern__safari-arrow.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/png
content-length: 419
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-1a3"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c40d3db524-OSL
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/shadow.png | 104.22.25.116 | 200 OK | 3.5 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/images/shadow.png IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 1170 x 53, 8-bit colormap, non-interlaced Hasha78fe596753efb7adec46540e2c003c6 b8ef888cbb92a6a1925b4602415241bee43c3d84 106ee77b22491dadd03a381a0e1c8ce7a1f7f9b6fef0707056db959dec6b6f09
GET /cd-templates-landings/notification-modals/macos/build/images/shadow.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://littlecdn.com/cd-templates-landings/notification-modals/macos/build/css/style.css?v=1558719747366
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: image/png
content-length: 3469
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: "65b37db6-d8d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 876289c5af40b524-OSL
X-Firefox-Spdy: h2
|
|
| stoomawy.net/zone?&pub=0&zone_id=3683319&is_mobile=false&domain=oovaufty.com&var=mquoTbc8Ej4FZcc&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.500&trace_id=fe3be16a-686e-46d4-aa3b-8ee6c1f5b6b3&action=prerequest | 139.45.197.250 | 200 OK | 0 B |
URL POST HTTP/2stoomawy.net/zone?&pub=0&zone_id=3683319&is_mobile=false&domain=oovaufty.com&var=mquoTbc8Ej4FZcc&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.500&trace_id=fe3be16a-686e-46d4-aa3b-8ee6c1f5b6b3&action=prerequest IP139.45.197.250:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectstoomawy.net Fingerprint84:ED:8F:CC:56:72:B9:3F:F8:99:C7:8C:8E:28:99:5E:F7:05:72:ED ValidityMon, 15 Apr 2024 05:35:26 GMT - Sun, 14 Jul 2024 05:35:25 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /zone?&pub=0&zone_id=3683319&is_mobile=false&domain=oovaufty.com&var=mquoTbc8Ej4FZcc&ymid=&var_3=&var_4=&dsig=&tg=1&sw=3.1.500&trace_id=fe3be16a-686e-46d4-aa3b-8ee6c1f5b6b3&action=prerequest HTTP/1.1
Host: stoomawy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oovaufty.com
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-length: 0
x-trace-id: 4f75798150258fd11f14e7651f648e1a
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://oovaufty.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 300
Origin: https://oovaufty.com
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 09be4540881332469b2dd246a6718b35
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://oovaufty.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 302
Origin: https://oovaufty.com
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: fd84939aa68058122b8a23958c1792ca
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://oovaufty.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jouteetu.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectjouteetu.net FingerprintF5:94:3C:5E:6B:54:1A:97:82:F8:7E:1F:C2:51:04:8C:FB:F5:CF:65 ValidityWed, 13 Mar 2024 19:38:02 GMT - Tue, 11 Jun 2024 19:38:01 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: jouteetu.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 303
Origin: https://oovaufty.com
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 8aa3cbac45a0a3483f1885dcd2bff9aa
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://oovaufty.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://oovaufty.com/
Origin: https://oovaufty.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://oovaufty.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashfd1fd4464027a826173bb4cd772e5402 ae7a4be11693826d84810b62f4634a6ede31b460 9f3d049c4ba5e578f5ac47b71228d6a78d761b739f9f2f38155d42ac19dcd5e9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://oovaufty.com/
Content-Type: application/json
Content-Length: 988
Origin: https://oovaufty.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://oovaufty.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| oovaufty.com/favicon.ico | 139.45.197.153 | 204 No Content | 0 B |
IP139.45.197.153:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectoovaufty.com Fingerprint32:8B:C3:EB:0A:AB:5E:26:68:73:56:E4:F9:AB:98:35:CC:E4:99:4A ValidityFri, 12 Apr 2024 05:24:25 GMT - Thu, 11 Jul 2024 05:24:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: oovaufty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842
Cookie: reverse=iRUUieouAngqhsxCC5IWqSUrGBPS2kQLEWj8T7Lxs2k; OAID=1363aebd9992073de40350da9bf51a3f; oaidts=1713421112
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 | 139.45.197.153 | 200 OK | 48 kB |
URL User Request GET HTTP/2oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 IP139.45.197.153:443
CertificateIssuerLet's Encrypt Subjectoovaufty.com Fingerprint32:8B:C3:EB:0A:AB:5E:26:68:73:56:E4:F9:AB:98:35:CC:E4:99:4A ValidityFri, 12 Apr 2024 05:24:25 GMT - Thu, 11 Jul 2024 05:24:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 HTTP/1.1
Host: oovaufty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:32 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=TbSyReRgB0NfJiQSDyGBqO0d9qA9p4-5soVc26UM7Xo; expires=Thu, 18-Apr-2024 07:18:32 GMT; Max-Age=3600; path=/
OAID=1363aebd9992073de40350da9bf51a3f; expires=Fri, 04-Aug-2079 12:37:04 GMT; Max-Age=1744957112; path=/
oaidts=1713421112; expires=Fri, 04-Aug-2079 12:37:04 GMT; Max-Age=1744957112; path=/
syncedCookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/js/script.js?v=1558719747366 | 104.22.25.116 | 200 OK | 3.6 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/js/script.js?v=1558719747366 IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJavaScript source, ASCII text, with very long lines (3587), with no line terminators Hashb50c740c8a0ff172ea3f390540bdd221 19f7206378feec61fec7fbc3998794a096bf3687 af7c35134995c83a6c25247cf1f7654997b65ea193799cc2bdf092bdf3c94f32
GET /cd-templates-landings/notification-modals/macos/build/js/script.js?v=1558719747366 HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: application/javascript
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: W/"65b37db6-df2"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
server: cloudflare
cf-ray: 876289c41d58b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842&mprtr=1 | 139.45.197.153 | 200 OK | 48 kB |
URL POST HTTP/2oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842&mprtr=1 IP139.45.197.153:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectoovaufty.com Fingerprint32:8B:C3:EB:0A:AB:5E:26:68:73:56:E4:F9:AB:98:35:CC:E4:99:4A ValidityFri, 12 Apr 2024 05:24:25 GMT - Thu, 11 Jul 2024 05:24:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842&mprtr=1 HTTP/1.1
Host: oovaufty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oovaufty.com
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842
Cookie: reverse=TbSyReRgB0NfJiQSDyGBqO0d9qA9p4-5soVc26UM7Xo; OAID=1363aebd9992073de40350da9bf51a3f; oaidts=1713421112
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=iRUUieouAngqhsxCC5IWqSUrGBPS2kQLEWj8T7Lxs2k; expires=Thu, 18-Apr-2024 07:18:33 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
content-encoding: br
X-Firefox-Spdy: h2
|
|
| littlecdn.com/cd-templates-landings/notification-modals/macos/build/css/style.css?v=1558719747366 | 104.22.25.116 | 200 OK | 23 kB |
URL GET HTTP/2littlecdn.com/cd-templates-landings/notification-modals/macos/build/css/style.css?v=1558719747366 IP104.22.25.116:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeASCII text, with very long lines (22714) Hash5203c84c3f89f05ef72ab6a998913021 9c18188941541b17f56053f272a758ca39fe2750 6416c27287d736261ae26b4585c92f3d4546978ba9ddb2a43e9e973fc0638dd4
GET /cd-templates-landings/notification-modals/macos/build/css/style.css?v=1558719747366 HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: text/css
last-modified: Fri, 26 Jan 2024 09:39:02 GMT
vary: Accept-Encoding
etag: W/"65b37db6-58e2"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: MISS
server: cloudflare
cf-ray: 876289c40d39b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| oovaufty.com/sw-check-permissions/3683319?var=mquoTbc8Ej4FZcc&zoneId=3683319 | 139.45.197.153 | 200 OK | 1.3 kB |
URL GET HTTP/2oovaufty.com/sw-check-permissions/3683319?var=mquoTbc8Ej4FZcc&zoneId=3683319 IP139.45.197.153:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectoovaufty.com Fingerprint32:8B:C3:EB:0A:AB:5E:26:68:73:56:E4:F9:AB:98:35:CC:E4:99:4A ValidityFri, 12 Apr 2024 05:24:25 GMT - Thu, 11 Jul 2024 05:24:24 GMT
File typeASCII text, with very long lines (1414), with no line terminators Hash1e26d74bb7e0a275dac799fddf8b4ac5 bd8f466dd6d1342f7f599de9c4663a26286531b1 c651bb216a4cc9d75a2267b046a8bea7a604d703525b6c5d568d01ae094408de
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sw-check-permissions/3683319?var=mquoTbc8Ej4FZcc&zoneId=3683319 HTTP/1.1
Host: oovaufty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/?rzi=6937618&rsz=6937618&rid=
Cookie: reverse=TbSyReRgB0NfJiQSDyGBqO0d9qA9p4-5soVc26UM7Xo; OAID=1363aebd9992073de40350da9bf51a3f; oaidts=1713421112
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: application/javascript
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2
|
|
| stoomawy.net/pfe/current/micro.tag.min.js?sw=/sw-check-permissions/3683319&var=mquoTbc8Ej4FZcc&z=3683319 | 139.45.197.250 | 200 OK | 36 kB |
URL GET HTTP/2stoomawy.net/pfe/current/micro.tag.min.js?sw=/sw-check-permissions/3683319&var=mquoTbc8Ej4FZcc&z=3683319 IP139.45.197.250:443
Requested byhttps://oovaufty.com/?b=20791430&ba=1&campid=8106334&did=734&dm=1&g=US&l=mquoTbc8Ej4FZcc&oaid=1363aebd9992073de40350da9bf51a3f&s=804708896580050944&ssk=f02895f2fbd5994fd3ab93e9b9c54524&svar=1713421069&vi=1&vo=1&z=6937618&tr=default&stest=bbcae8223f27b15c1b19119f9e4bb842 CertificateIssuerLet's Encrypt Subjectstoomawy.net Fingerprint84:ED:8F:CC:56:72:B9:3F:F8:99:C7:8C:8E:28:99:5E:F7:05:72:ED ValidityMon, 15 Apr 2024 05:35:26 GMT - Sun, 14 Jul 2024 05:35:25 GMT
File typeJavaScript source, ASCII text, with very long lines (36528), with no line terminators Hashb64d3763f9aa99e7edc76dc0dd29d030 9b5d6da9384fe75fcc5a4f79ad2cde0399bfd523 e64712048ba884038027c9037196f430b7ae020a3ec9679dfd577a6fb58f9de3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pfe/current/micro.tag.min.js?sw=/sw-check-permissions/3683319&var=mquoTbc8Ej4FZcc&z=3683319 HTTP/1.1
Host: stoomawy.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oovaufty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 06:18:33 GMT
content-type: application/javascript
last-modified: Tue, 16 Apr 2024 15:56:42 GMT
etag: W/"661e9fba-8eb0"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|