| code.jquery.com/jquery-3.5.1.min.js | 151.101.130.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.5.1.min.js IP151.101.130.137:443
Requested byhttps://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://oi8a.nowpizk.click
DNT: 1
Connection: keep-alive
Referer: https://oi8a.nowpizk.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 28 Mar 2024 20:38:46 GMT
age: 1615167
x-served-by: cache-lga21981-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 91372
x-timer: S1711658326.308405,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2
|
|
| oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 | 176.9.79.246 | 200 OK | 204 kB |
URL User Request GET HTTP/2oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 IP176.9.79.246:443 ASN#24940 Hetzner Online GmbH
CertificateIssuerLet's Encrypt Subjectnowpizk.click FingerprintDD:43:3C:44:2E:EF:12:4B:E6:D7:0C:EA:66:D8:AB:64:82:A2:DF:64 ValidityTue, 26 Mar 2024 07:30:57 GMT - Mon, 24 Jun 2024 07:30:56 GMT
Size204 kB (204538 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 HTTP/1.1
Host: oi8a.nowpizk.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Thu, 28 Mar 2024 20:38:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| oi8a.nowpizk.click/assets/styles/girl_video.css | 176.9.79.246 | 200 OK | 17 kB |
URL GET HTTP/2oi8a.nowpizk.click/assets/styles/girl_video.css IP176.9.79.246:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 CertificateIssuerLet's Encrypt Subjectnowpizk.click FingerprintDD:43:3C:44:2E:EF:12:4B:E6:D7:0C:EA:66:D8:AB:64:82:A2:DF:64 ValidityTue, 26 Mar 2024 07:30:57 GMT - Mon, 24 Jun 2024 07:30:56 GMT
File typeASCII text, with very long lines (6106) Hash0c6974404eefde33967a8e9427353787 610f18f1f540ebead9f0794e9dc04233f92b648f 96a9ee151d5ce2535a85059e35af3a3de7d59bd68c9f2c53c947b985634dcbee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/styles/girl_video.css HTTP/1.1
Host: oi8a.nowpizk.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Thu, 28 Mar 2024 20:38:46 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 08:56:04 GMT
etag: W/"65f018a4-441b"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| oi8a.nowpizk.click/assets/styles/captcha.css | 176.9.79.246 | 200 OK | 9.3 kB |
URL GET HTTP/2oi8a.nowpizk.click/assets/styles/captcha.css IP176.9.79.246:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 CertificateIssuerLet's Encrypt Subjectnowpizk.click FingerprintDD:43:3C:44:2E:EF:12:4B:E6:D7:0C:EA:66:D8:AB:64:82:A2:DF:64 ValidityTue, 26 Mar 2024 07:30:57 GMT - Mon, 24 Jun 2024 07:30:56 GMT
File typeASCII text, with very long lines (9448), with no line terminators Hash0d19cc2d9a6070ebd49fd2fd72d1fb80 8b62e62bb8d9d646d040811708b903e295174a33 d9b4f8700c01cb341ce0a837b35b010ca3794dd012c690b7fa20bf3efb3cab4d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/styles/captcha.css HTTP/1.1
Host: oi8a.nowpizk.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Thu, 28 Mar 2024 20:38:46 GMT
content-type: text/css
last-modified: Tue, 12 Mar 2024 08:56:04 GMT
etag: W/"65f018a4-2435"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| oi8a.nowpizk.click/assets/images/girl_video/preloader.webp | 176.9.79.246 | 200 OK | 5.9 kB |
URL GET HTTP/2oi8a.nowpizk.click/assets/images/girl_video/preloader.webp IP176.9.79.246:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 CertificateIssuerLet's Encrypt Subjectnowpizk.click FingerprintDD:43:3C:44:2E:EF:12:4B:E6:D7:0C:EA:66:D8:AB:64:82:A2:DF:64 ValidityTue, 26 Mar 2024 07:30:57 GMT - Mon, 24 Jun 2024 07:30:56 GMT
File typeRIFF (little-endian) data, Web/P image Hash732b4837844bf8fc39ce640123e19b92 f3b204db7685d6623713ac36505277410314c02a 0b0f7c1ef469e7b84fb81208731b9c97c1cb5baa3ca0d939971e44a1ea6b0cf7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/girl_video/preloader.webp HTTP/1.1
Host: oi8a.nowpizk.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Thu, 28 Mar 2024 20:38:46 GMT
content-type: image/webp
last-modified: Tue, 12 Mar 2024 08:56:04 GMT
etag: W/"65f018a4-172c"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| oi8a.nowpizk.click/assets/images/girl_video/img.webp | 176.9.79.246 | 200 OK | 36 kB |
URL GET HTTP/2oi8a.nowpizk.click/assets/images/girl_video/img.webp IP176.9.79.246:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1 CertificateIssuerLet's Encrypt Subjectnowpizk.click FingerprintDD:43:3C:44:2E:EF:12:4B:E6:D7:0C:EA:66:D8:AB:64:82:A2:DF:64 ValidityTue, 26 Mar 2024 07:30:57 GMT - Mon, 24 Jun 2024 07:30:56 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 856x872, Scaling: [none]x[none], YUV color, decoders should clamp Hashf1ee8b907d4c12eab38c82e6e049ec3d 534391609a0ccd172552fd0c48355fde475a684c 01fcc5a9d3ffe6ab490cc55dd0eac93025041ebec2ee54c9872204a6f330b02d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/girl_video/img.webp HTTP/1.1
Host: oi8a.nowpizk.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://oi8a.nowpizk.click/girl-video?tag_id=149367&cl=4&dp=https://htliaproject.com/in/p/?spot_id=398194&cat=25&sub_id=1034681072&click=1&r=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Thu, 28 Mar 2024 20:38:46 GMT
content-type: image/webp
last-modified: Tue, 12 Mar 2024 08:56:04 GMT
etag: W/"65f018a4-8d68"
content-encoding: gzip
X-Firefox-Spdy: h2
|
|