| unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab/ | 23.83.114.131 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab/ IP23.83.114.131:80
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /da939cf3cf104b1388cda5a5f5f832ab/ HTTP/1.1
Host: unslowpokea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: fasthttp
Date: Wed, 17 Apr 2024 03:01:18 GMT
Content-Length: 0
Location: http://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab
|
|
| unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab | 23.83.114.131 | | 1.3 kB |
URL User Request GET unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab IP23.83.114.131:0
File typeJavaScript source, ASCII text, with very long lines (521) Hash6d9bfc93fb5ecec633d8cb4954d1f54a e23b0462b9c65da90393d53f17d3d6b84d2af080 7849395dd523239997120d25d90528044f8c12748eca848991a4757bcbfcc1e8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /da939cf3cf104b1388cda5a5f5f832ab HTTP/1.1
Host: unslowpokea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: fasthttp
Date: Wed, 17 Apr 2024 03:01:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1291
|
|
| unslowpokea.com/favicon.ico | 23.83.114.131 | 404 Not Found | 9 B |
URL GET HTTP/1.1unslowpokea.com/favicon.ico IP23.83.114.131:80
Requested byhttp://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab
File typeASCII text, with no line terminators Hash9e076f5885f5cc16a4b5aeb8de4adff5 475c848673a3f79fa778f01c2bd5a721d4c41707 e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: unslowpokea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: fasthttp
Date: Wed, 17 Apr 2024 03:01:19 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 9
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashe58e3737bf86d6590887bcb1928ea3aa ef36246ecfa9476aee6cf1c473521faa95426d6d 0626d248f98e259326c13263d7788112a5c760efdc734108822aba599568deb4
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Wed, 17 Apr 2024 03:01:20 GMT
Server: ECAcc (amb/6B67)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HmU0ms6F4-rmzXLgzrK_QIh5_OVEGC6RYStD9j5URJ12sO-1sQCflw==
|
|
| loshuaisonors.com/f8fe143c-d1d6-4131-ad49-bc8e0361f760?zoneid=2867031&bannerid=19850768&browser=firefox&os=ios&device=%7bdevice%7d®ion=%7bregion%7d&isp=%7bisp%7d&useragent=%7buseragent%7d&language=%7blanguage%7d&connectiontype=%7bconnection.type%7d&cost=0.009700&visitor_id=804220397011603456 | 54.230.111.105 | 302 Found | 0 B |
URL GET HTTP/2loshuaisonors.com/f8fe143c-d1d6-4131-ad49-bc8e0361f760?zoneid=2867031&bannerid=19850768&browser=firefox&os=ios&device=%7bdevice%7d®ion=%7bregion%7d&isp=%7bisp%7d&useragent=%7buseragent%7d&language=%7blanguage%7d&connectiontype=%7bconnection.type%7d&cost=0.009700&visitor_id=804220397011603456 IP54.230.111.105:443
Requested byhttp://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab CertificateIssuerAmazon Subjectloshuaisonors.com FingerprintA7:6C:48:4A:11:E6:6B:38:09:48:54:44:76:2B:52:53:41:54:15:00 ValidityMon, 12 Feb 2024 00:00:00 GMT - Wed, 12 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f8fe143c-d1d6-4131-ad49-bc8e0361f760?zoneid=2867031&bannerid=19850768&browser=firefox&os=ios&device=%7bdevice%7d®ion=%7bregion%7d&isp=%7bisp%7d&useragent=%7buseragent%7d&language=%7blanguage%7d&connectiontype=%7bconnection.type%7d&cost=0.009700&visitor_id=804220397011603456 HTTP/1.1
Host: loshuaisonors.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://unslowpokea.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
location: https://harmonicalhouse.com/refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2
date: Wed, 17 Apr 2024 03:01:20 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: f8fe143c-d1d6-4131-ad49-bc8e0361f760-v4=m55tvWfPHNvuijkhvs4Oyg1dMMUcnt7ASCQNXvYWy-I; Max-Age=86400; Expires=Thu, 18-Apr-2024 03:01:20 GMT; Domain=loshuaisonors.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22wn0kjl86go9gj3l0jan5sqfc%22%2C%22caid%22%3A%22f8fe143c-d1d6-4131-ad49-bc8e0361f760%22%7D; Max-Age=31536000; Expires=Thu, 17-Apr-2025 03:01:20 GMT; Domain=loshuaisonors.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jjQtjjIVuEr-1ksf5dF8czoH_yb--I6uMtscH7hPEu03Bt4Ykto4jg==
X-Firefox-Spdy: h2
|
|
| harmonicalhouse.com/refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2 | 104.21.14.43 | 302 Found | 24 kB |
URL GET HTTP/2harmonicalhouse.com/refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2 IP104.21.14.43:443
Requested byhttp://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab CertificateIssuerLet's Encrypt Subjectharmonicalhouse.com Fingerprint39:E7:1E:4D:38:48:59:48:28:E8:72:12:85:C5:2F:75:AF:C3:F3:24 ValidityThu, 21 Mar 2024 11:56:45 GMT - Wed, 19 Jun 2024 11:56:44 GMT
Hash759f6f1d9db486b6a7fb62e5f1080bfc 8d0e08d39f07f575fabc64f9a4a035aaa2e0274a 329f47e991b463363dd8f976c60d945c259eff7111442ed6bb32ccc16c4ab31d
GET /refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2 HTTP/1.1
Host: harmonicalhouse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://unslowpokea.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 17 Apr 2024 03:01:20 GMT
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
location: /refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2&tg_rid=661f3b80bd356983738045&tg_s=dr1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6%2FimNlo51OKoq7WniakUYmamG%2FX%2F6PZ43t0eijaTjK%2F2Am4oJPYXLW0xIglvW0Tuhb8DKWv95KAuiyXfK2p5a9E%2FnO2%2Btk5oVdMd%2Fj%2BPmmbWGWLBr0c3RLkzwXx04ipqQ%2BmPzXjd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87592b84babb56b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2 | 63.33.119.172 | 302 Found | 0 B |
URL GET HTTP/2linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2 IP63.33.119.172:443
Requested byhttp://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab CertificateIssuerLet's Encrypt Subjectlinksprf.com FingerprintE8:37:8D:0D:60:5C:56:CE:57:70:29:4D:DD:19:6D:20:11:B5:A6:95 ValidityMon, 15 Apr 2024 13:16:15 GMT - Sun, 14 Jul 2024 13:16:14 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2 HTTP/1.1
Host: linksprf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 17 Apr 2024 03:01:21 GMT
content-length: 0
location: http://www.kelz0r.dk
set-cookie: ykuid=2938bca4a21846e19ef35d52ccebb132; Path=/; Secure; Domain=.linksprf.com; Max-Age=31536000; SameSite=None
JSESSIONID=11C69BB03A29AF04A4AEF0E6A7A5C6FC; Path=/; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
|
|
| www.kelz0r.dk/ | 185.21.41.95 | 301 Moved Permanently | 230 B |
IP185.21.41.95:80 ASN#48854 team.blue Denmark A/S
Requested byhttp://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab
File typeHTML document, ASCII text Hash74a7fae1239b44b9784960daed7d3113 735595ed966fbee5dbfcc243834629eac37a8545 d26bd7ae507a3f02827287796ad42b4d4e40dbf97aafd84d56d927877c0d3b1c
GET / HTTP/1.1
Host: www.kelz0r.dk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 17 Apr 2024 03:01:21 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 230
Connection: keep-alive
Location: https://www.kelz0r.dk/
X-Powered-By: PleskLin
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=y9MA9-bT9vWnKnwRNzu6URckla9FAwpGVRGNf8dp5xVDzRJ6-9ES5XuFIID3NT2tNvPWiix8z-9Qnfxat8SPtO_78rFd0ojB-IU41XCJAXW7Hnj2QIS6o6A8qlrD3TeU
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Wed, 17 Apr 2024 03:00:07 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 91
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| harmonicalhouse.com/refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2&tg_rid=661f3b80bd356983738045&tg_s=dr1 | 104.21.14.43 | 302 Found | 0 B |
URL GET HTTP/2harmonicalhouse.com/refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2&tg_rid=661f3b80bd356983738045&tg_s=dr1 IP104.21.14.43:443
Requested byhttp://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab CertificateIssuerLet's Encrypt Subjectharmonicalhouse.com Fingerprint39:E7:1E:4D:38:48:59:48:28:E8:72:12:85:C5:2F:75:AF:C3:F3:24 ValidityThu, 21 Mar 2024 11:56:45 GMT - Wed, 19 Jun 2024 11:56:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /refes/?tg=https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2&tg_rid=661f3b80bd356983738045&tg_s=dr1 HTTP/1.1
Host: harmonicalhouse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 17 Apr 2024 03:01:20 GMT
content-type: text/html; charset=UTF-8
location: https://linksprf.com/v1/redirect?type=linkId&id=c5c1a250f52a42aab8eefeab8a2f57dd&api_key=a1828b216e7ff3e1eb5167151ce2a415&site_id=e8c48a5da067498289b15f9dd69ffa05&dch=feed&ad_t=advertiser&yk_tag=wn0kjl86go9gj3l0jan5sqfc&offerid=5e92f436df70404cb1c0d5e853c9b1c2
referrer-policy: no-referrer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZyrUF8MDcVheMSSKldyo6hrwUgyqZ6K8ICI%2B5ZW5vE0%2F7DTtywtstvq5Nm0d9%2Fm%2Fy9gi04rGlLzEIdypjHE50CWdoMh4vuZHh9Jo%2FJJzU%2BjtkiiU0MZ5r9s42Jys1PRNVUJNMT5I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87592b850ad356b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.kelz0r.dk/magic/index.php | 185.21.41.95 | 200 OK | 0 B |
URL GET HTTP/2www.kelz0r.dk/magic/index.php IP185.21.41.95:443 ASN#48854 team.blue Denmark A/S
Requested byhttp://unslowpokea.com/da939cf3cf104b1388cda5a5f5f832ab CertificateIssuerLet's Encrypt Subjectkelz0r.dk FingerprintCF:50:7E:D3:8A:FD:A4:39:E1:F0:14:3E:77:0A:3F:7E:1F:D4:A9:B7 ValidityMon, 01 Apr 2024 01:08:16 GMT - Sun, 30 Jun 2024 01:08:15 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /magic/index.php HTTP/1.1
Host: www.kelz0r.dk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 03:01:21 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: kosCsid=gh7tr3sapol0datarmqhcfvus4; path=/magic/; domain=.kelz0r.dk
x-frame-options: SAMEORIGIN
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: PleskLin
X-Firefox-Spdy: h2
|
|