Report - wumanchi.s3.eu-north-1.amazonaws.com/control_dbanty.html?page=

Report Overview

Submitted URL
wumanchi.s3.eu-north-1.amazonaws.com/control_dbanty.html?page=_wetransfer2&pcnt=3
IP
3.5.216.51
ASN
#16509 AMAZON-02
Submitted
2024-04-18 12:58:00
Access
public
Website Title
Wetransfer
Final URL
atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Tags
suspicious
urlquery detections
Suspicious - Anti-debugging code

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
brooden.site	unknown	unknown	No data	No data	528 B	3.7 kB	54.66.94.218
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-18	3.1 kB	7.2 kB	104.17.3.184
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-18	852 B	322 kB	142.250.74.106
atlantos.top	unknown	2024-02-02	2024-02-29	2024-04-17	8.0 kB	3.3 MB	188.114.97.1
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	1.3 kB	5.7 kB	142.250.74.164
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-18	451 B	11 kB	104.17.25.14
wumanchi.s3.eu-north-1.amazonaws.com	unknown	unknown	No data	No data	535 B	3.8 kB	16.12.11.46

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null	315 B	2023-09-12	2024-04-18
Pretty URL atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-12 03:37:56 Last Seen2024-04-18 14:58:07 Times Seen27 Hash 3a95bdac37f48eb615ab7c797aa388ff bf30a467721fb7f6a0d0e212c630aaaabe76f96a 284b91dca80d75055cfeb8adc0f1acc8afc01fba94efe999b6feb245d8491564 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js	289 kB	2023-03-07	2024-05-01
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:59 Last Seen2024-05-01 11:06:03 Times Seen5802 Hash 2849239b95f5a9a2aea3f6ed9420bb88 af32f706407ab08f800c5e697cce92466e735847 1fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239 Loading...

	atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null	429 B	2023-09-06	2024-04-18
Pretty URL atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-06 14:57:44 Last Seen2024-04-18 14:58:07 Times Seen7 Hash a8f8fca356f911ab738d9b416c6b9fac 22b3b80edc250def79c8d70f68016601e9d2037a a4c8da9de93aa800265dae88b10629656dbddb5fdd5b39b1c84f70ee68abe8af Loading...

	atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null	3.4 kB	2024-02-16	2024-04-18
Pretty URL atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-16 17:18:17 Last Seen2024-04-18 14:58:07 Times Seen3 Hash 1a6af7fa2b731873276cbf25d5b059e9 1fdafbe1a1659184058cb04ededfba5373ed19b3 6a6dfe163beebde1a00212b9db966eb62f10749158be469e3363e9f1f672ec82 Loading...

	atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null	309 B	2023-08-08	2024-04-18
Pretty URL atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-08 19:52:26 Last Seen2024-04-18 14:58:07 Times Seen32 Hash 9e37bc70db6180670552510fa51b523d 27e183ea1dabd0c4f13d0a40110356da82486549 793d64ddf99cd307f2bc137bc7c697900750c3528bf643adac68cb5e8ae054d1 Loading...

	atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null	612 B	2023-08-08	2024-04-18
Pretty URL atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-08 19:52:26 Last Seen2024-04-18 14:58:07 Times Seen34 Hash a7184883077990a8949791d90e916998 4f533c0386fbf4a5479d95b3f096751807afa3ee a62ef782a04cb960017c78fe542694d92f0fbf35e2ef2c32d8e87a9b5105d764 Loading...

		Size	First Seen	Last Seen
	#1 Eval - d7e13207a93760b594de140d4961cff8	161 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:30:15 Last Seen2024-04-19 09:43:07 Times Seen102 Hash d7e13207a93760b594de140d4961cff8 b62363a5d48a4d8c812c41c546852919ffd608bb 30a8a2ad53b8f62af74a96fbda1a34d23391bdcf90e9060af04d31a1834cf7de Loading...

	#2 Eval - 13b6c1cd9762f2773338f1ffe3122a73	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:58:07 Last Seen2024-04-18 14:58:07 Times Seen1 Hash 13b6c1cd9762f2773338f1ffe3122a73 a38400f7bce75c60f6ddc7d72cc99ca7d8937d2f 6ba9b08f0c0e144f75a5c68464da545ffcd4364353c78087594de1acbf4c25d1 Loading...

	#3 Eval - 61fc88a7d96324003822777969f284ce	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:58:07 Last Seen2024-04-18 14:58:07 Times Seen1 Hash 61fc88a7d96324003822777969f284ce 2265d286865573214399068247ef5df7aeedc4b3 1bc9d29914749527863ca2ec46a43c362e5508795ccbe5450c9c1b3036f4169c Loading...

	#4 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-01
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-01 19:32:20 Times Seen351042 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#5 Eval - 48e7ec465766ccbc0863ed01962042f1	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:58:07 Last Seen2024-04-18 14:58:07 Times Seen1 Hash 48e7ec465766ccbc0863ed01962042f1 e29d2c6340f8d2c9963c2977ef06fb6eb78fb217 f4d9ac6afc15e46b306510aa0d6eb71949ef1e33c6437a283f9eebb32120235e Loading...

	#6 Eval - 94d515abf9100142e5c01f84d0900afe	28 B	2024-04-18	2024-04-18
Pretty Observations First Seen2024-04-18 14:58:07 Last Seen2024-04-18 14:58:07 Times Seen1 Hash 94d515abf9100142e5c01f84d0900afe cef44edb83439c0e817411385e4ba23302e1d859 496ad1b201f6e33d0586e10af3d5d15a265859a15c67e33653696eca063132ce Loading...

	#7 Eval - 9fba386b83419a08ff1faa8007dd23a1	60 B	2024-04-17	2024-04-19
Pretty Observations First Seen2024-04-17 14:11:25 Last Seen2024-04-19 12:29:21 Times Seen535 Hash 9fba386b83419a08ff1faa8007dd23a1 c6148c7d249ddcfe37f49e99ac7cb60fe3bd43f2 a197c137af56d7b49dd589ed67e397152047dea7b7a147b0403d07bd1c6d59ee Loading...

		Size	First Seen	Last Seen
	#1 Write - 086707e4369f60afedcafb16050a7618	39 B	2023-03-07	2024-05-01
Pretty Observations First Seen2023-03-07 01:03:24 Last Seen2024-05-01 17:22:06 Times Seen44700 Hash 086707e4369f60afedcafb16050a7618 8216b0cc6876cbd44f01c158e7dff3833ceccd41 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Loading...

HTTP Transactions (22)

URL IP Response Size

wumanchi.s3.eu-north-1.amazonaws.com/control_dbanty.html?page=_wetransfer2&pcnt=3

16.12.11.46

3.4 kB

URL
wumanchi.s3.eu-north-1.amazonaws.com/control_dbanty.html?page=_wetransfer2&pcnt=3
IP
16.12.11.46:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with CRLF line terminators
Size
3.4 kB (3404 bytes)
Hash
5bc9e41ea538ff368e17a9894d1424d1
1b862d698cd7c6c7e827954c758451819bd75d36
719161085a529b4af7d3d3b604f5ebf1407814ef50cc96143f547d565acf3b51

HTTP Headers

GET /control_dbanty.html?page=_wetransfer2&pcnt=3 HTTP/1.1
Host: wumanchi.s3.eu-north-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: etJ51TlXpJI8Odd54QTjN+jZmFVdAAV2nkMVgbZcAD7hHXngZFyD6kyy34DkcT7xU+1nFSVzS/k=
x-amz-request-id: 1DJXABDY0HAXV1HS
Date: Thu, 18 Apr 2024 12:57:34 GMT
Last-Modified: Sun, 14 Apr 2024 08:19:08 GMT
ETag: "5bc9e41ea538ff368e17a9894d1424d1"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/html
Server: AmazonS3
Content-Length: 3404

brooden.site/control_dbanty/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null

54.66.94.218

3.4 kB

URL
brooden.site/control_dbanty/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
IP
54.66.94.218:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with CRLF line terminators
Size
3.4 kB (3408 bytes)
Hash
ed6cc28a71a4e72a3a2d2ed182012e05
fa833419d1d7106979f870d44560cbaff942e49c
2ec72b90b6e579106118f25ed3935bd7c36683fdfb374301e58964624a02efb3

HTTP Headers

GET /control_dbanty/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null HTTP/1.1
Host: brooden.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 12:57:36 GMT
Server: Apache/2.4.54 (Win64) OpenSSL/1.1.1p PHP/7.4.30
X-Powered-By: PHP/7.4.30
Connection: keep-alive, Keep-Alive
Content-Length: 3408
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

0 B

URL
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Thu, 18 Apr 2024 12:57:37 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /turnstile/v0/g/54ea73d52131/api.js
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8764d259290d56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

142.250.74.106

31 kB

URL
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 198204
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3x1is/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:37 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8764d25aee971c12-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8764d25a7db41c12/1713445058066/D_GEgFI9qK2gLKT

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8764d25a7db41c12/1713445058066/D_GEgFI9qK2gLKT
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 65 x 24, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
c097ce28edf0e427646e7a587a81f844
6fb5c2dd52eccc97e982fb4b9d1e88eaf1e5cbca
19c38a28dc85c3e3b6469e2cbf092fa59892365f90cc60fa092e5ff18e2b3bfe

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/i/8764d25a7db41c12/1713445058066/D_GEgFI9qK2gLKT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3x1is/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:38 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8764d2607d311c12-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8764d25a7db41c12/1713445058070/08cf63910a65d88be53a6c518fd9e50807ab369c2725a4abba5e0b6e3b42be0f/NJYGjdKtutj10wX

104.17.3.184

1 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8764d25a7db41c12/1713445058070/08cf63910a65d88be53a6c518fd9e50807ab369c2725a4abba5e0b6e3b42be0f/NJYGjdKtutj10wX
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/pat/8764d25a7db41c12/1713445058070/08cf63910a65d88be53a6c518fd9e50807ab369c2725a4abba5e0b6e3b42be0f/NJYGjdKtutj10wX HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3x1is/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 401 Unauthorized
date: Thu, 18 Apr 2024 12:57:39 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gCM9jkQpl2IvlOmxRj9nlCAerNpwnJaSrul4LbjtCvg8AGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEArny_u1wyrVg8e-Kmwxyfb2WoiwwZ2VR7QAnot_CrcySq56Rui-jZM9090K9_dW6HmpAKhOjYXLCJ7g4U74G4z6SRM_YRj-GLp3EaBxay798DZIeAtv_N7Z9CHI_0VTYiqNXVm2z1bF5VtFasnv3JDaWb4yIjBd8vMfNUM4Y4nXXIeMIyXdVK2hlzVO8VxBkXca7UzhCq51WDKlSYPWUy9ieZTdwNf5Q49DwdF9woTnuKPY26TxVlEHMcf8JJiXLUR2bbdG-Qv1fqbwQloSjintj5uXWLsZd84bMpNedRNJBV22T0PgKNeip6oalvdYbaiHiyDATsKlA6-8KJ-CUQTQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIAjPY5EKZdiL5TpsUY_Z5QgHqzacJyWkq7peC247Qr4PABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 8764d2641aa91c12-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/921427500:1713443371:T83WWCRK1ibfy_to5FfI2dIEdMZpKY9qs1K62gMl7ko/8764d25a7db41c12/8899faf9ff752bb

104.17.3.184

4.2 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/921427500:1713443371:T83WWCRK1ibfy_to5FfI2dIEdMZpKY9qs1K62gMl7ko/8764d25a7db41c12/8899faf9ff752bb
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (4412), with no line terminators
Size
4.2 kB (4239 bytes)
Hash
e10cc5200019af0ad6c06dd06e926553
916879a203e4a30240bf6a2e423b024228d31c3e
21f3de628b2e63ea748fa359749a3b6ff5598d154391ed82660f00919a47e2b2

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/flow/ov1/921427500:1713443371:T83WWCRK1ibfy_to5FfI2dIEdMZpKY9qs1K62gMl7ko/8764d25a7db41c12/8899faf9ff752bb HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/3x1is/0x4AAAAAAAQ0ZHmKholC9bE1/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 8899faf9ff752bb
Content-Length: 25831
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:39 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: FQveBArE+4Witiq7wvPuGUwB3jH+jRXbryTmCLaG4GhBChubEp43jv0zzS0m0xC2emFpA2ynot8a4kBlCcQAVsL43j6Fz6OoodCI7yFhbDK6Mf4wSJH/jd3jTANKa/IdJoUx4UOUmOzIE0TLpt6rkcVsvsCRWSVVfB5Boy2+LR2binNlfAsButfzTjWTIhnC$3FYCCDNCJjR3mkGYvK0+5A==
cf-chl-out: OH68qqfDs1dEvrh/OLKOUIX8ezKshthUbuLcfJSgD94P6OKcn/XvMVcSipHApTPnynHK9tTBZrzjAs9872h63X21vbhbhz0blbiKKkKLaBFkYTbJNC5qxsls4mL0GGsu$6emogg4d+tp37oU4F0KUnw==
vary: accept-encoding
server: cloudflare
cf-ray: 8764d264fbca1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

atlantos.top/_alphamoon_meta/validate.php

188.114.97.1

85 kB

URL
atlantos.top/_alphamoon_meta/validate.php
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
85 kB (85111 bytes)
Hash
e1c950acaf996ddafa6c42b4d0392485
c44cb50fb6c0952636308ff1d0a9b3aa4a7455d2
2191d321c07516d5a1aaeb9864d18d3cac650f725edb78840d08ebf244c6057d

HTTP Headers

POST /_alphamoon_meta/validate.php HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://atlantos.top
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:39 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
set-cookie: captcha=1; expires=Thu, 18-Apr-2024 13:27:39 GMT; Max-Age=1800; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0xNTjvBWtpYuVI9dmoCBu%2ByCS1ITMaDXV%2BEaKArl%2F76l1z%2BDpaNq34NX0%2FSdJkFJo%2BiT21NEU3adjqTDtk3bWmik80g9UuIFhuN6T5NI%2F46G9yiBdVEp28v4YmfmSLw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8764d265ad71712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.google.com/s2/favicons?domain=

142.250.74.164

1.6 kB

URL
www.google.com/s2/favicons?domain=
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1580 bytes)
Hash
4c897ae556077ac19ca558718789ba76
a673a81ea0a3e7a2fdf759a014a608df15efecbd
2d841defe31ddac7bb79861466085b6a632a04ea330532a98d8180f7dbaff68f

HTTP Headers

GET /s2/favicons?domain= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 18 Apr 2024 12:57:40 GMT
server: sffe
content-length: 1580
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/s2/favicons?domain=

142.250.74.164

1.6 kB

URL
www.google.com/s2/favicons?domain=
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1580 bytes)
Hash
4c897ae556077ac19ca558718789ba76
a673a81ea0a3e7a2fdf759a014a608df15efecbd
2d841defe31ddac7bb79861466085b6a632a04ea330532a98d8180f7dbaff68f

HTTP Headers

GET /s2/favicons?domain= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 18 Apr 2024 12:57:40 GMT
server: sffe
content-length: 1580
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/s2/favicons?domain=

142.250.74.164

1.6 kB

URL
www.google.com/s2/favicons?domain=
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.6 kB (1580 bytes)
Hash
4c897ae556077ac19ca558718789ba76
a673a81ea0a3e7a2fdf759a014a608df15efecbd
2d841defe31ddac7bb79861466085b6a632a04ea330532a98d8180f7dbaff68f

HTTP Headers

GET /s2/favicons?domain= HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 18 Apr 2024 12:57:40 GMT
server: sffe
content-length: 1580
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

atlantos.top/_alphamoon_meta/functions/spinner.gif

188.114.97.1

46 kB

URL
atlantos.top/_alphamoon_meta/functions/spinner.gif
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 48 x 48
Size
46 kB (46341 bytes)
Hash
bab0ad7ce20e911217791c00bcd4e35b
0822ac44951def4349090998b9ecb153128f03d5
bd750f550a5db2901c0bd52ec564da6adfbad55562b862b1f125d96d9d62b026

HTTP Headers

GET /_alphamoon_meta/functions/spinner.gif HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA; captcha=1; PHPSESSID=a5ln4uue9ila0er8af01d3v9ks
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:40 GMT
content-type: image/gif
content-length: 46341
last-modified: Wed, 07 Oct 2020 21:45:56 GMT
etag: "b505-5b11ba3eced00"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zzs%2B6rwwNwhqVkHBuw8rQWw9I4qtuPP%2BEeZUsjQ7SVlruRh%2FFPyni8mrSbCzRxfkvbykx%2BO2cjFUTFNedzoUijCsaVfstmP58X8Iha0O9Lwhuwi0U1dKf%2Bmx4gFVnCs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8764d269cc34712f-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/css/all.min.css

104.17.25.14

200 OK

10 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.13.0/css/all.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (58392)
Size
10 kB (10301 bytes)
Hash
76cb46c10b6c0293433b371bae2414b2
0038dc97c79451578b7bd48af60ba62282b4082b
876d023d9d10c97941b80c3b03e2a5b94631ff7a4af9cee5604a6a2d39718d84

HTTP Headers

GET /ajax/libs/font-awesome/5.13.0/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 12:57:42 GMT
content-type: text/css; charset=utf-8
content-length: 10301
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-e4d2"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2979433
expires: Tue, 08 Apr 2025 12:57:42 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mWvI8wWdq4OtrsG2ZrqrEQD27aF20o5Bc7hVuopXNq2eM3sp62dLs9IWOUXs7pki0y9%2BLJn%2BagiESgFSH1mOuS7iuAWnDwbayjnpWaVfJ5xDX14cugjVCS%2FrR6Y5dpqZw31Eq08g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8764d2767b1e0afa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null

188.114.97.1

200 OK

89 kB

URL User Request GET HTTP/3
atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectatlantos.top
Fingerprint10:31:C1:F3:6E:4B:0B:16:4B:8A:AA:CD:ED:25:A4:3A:99:C7:BB:6E
ValidityWed, 28 Feb 2024 23:39:33 GMT - Tue, 28 May 2024 23:39:32 GMT

File type
JavaScript source, ASCII text, with very long lines (3490)
Size
89 kB (88892 bytes)
Hash
f794f720bee4a596fedd1f02bfa2e094
2549f502e6e83b7b96930a9d97a545321fa87e80
6d0f3c5bbe82f444b52869a725cd3cc282a2d3fa865ba6d2e2d2f0ad997ef4a2

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Anti-debugging code

HTTP Headers

GET /_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA; captcha=1; PHPSESSID=a5ln4uue9ila0er8af01d3v9ks
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:42 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gdZdNewjUzr3hmz0L6z9JiPWup4CFpLJwAL2PtJHtEcvZe%2FrBL6oKubvw1kFxnF2ZC8NJlYjjUDkPKUz1E2%2FK8h6qG7S%2BkxLWGES26O%2B%2BH4CvXlNVH4hrkhRqqVp0yY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8764d2756d44712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/iili.io/HWFqWua.png

188.114.97.1

200 OK

21 kB

URL GET HTTP/3
atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/iili.io/HWFqWua.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Certificate
IssuerLet's Encrypt
Subjectatlantos.top
Fingerprint10:31:C1:F3:6E:4B:0B:16:4B:8A:AA:CD:ED:25:A4:3A:99:C7:BB:6E
ValidityWed, 28 Feb 2024 23:39:33 GMT - Tue, 28 May 2024 23:39:32 GMT

File type
PNG image data, 461 x 95, 8-bit/color RGBA, non-interlaced
Size
21 kB (20741 bytes)
Hash
57c3aedf50a28579248f0a06b05eb934
1a437cf0f10fbe028a0c8e6f4cafb58d221c22b6
5fe0a594bd49a0f29c5d484cb8883abcdfd613a67a4a1820d512c70b018f6f14

HTTP Headers

GET /_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/iili.io/HWFqWua.png HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA; captcha=1; PHPSESSID=a5ln4uue9ila0er8af01d3v9ks
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:42 GMT
content-type: image/png
content-length: 20741
last-modified: Fri, 03 Mar 2023 12:40:26 GMT
etag: "5105-5f5fe3fe4a280"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ef%2BvJW51pcy69IvA8NqKn6zdHfhN8gdJMpASpVjv6E29DeyCj%2FHUVDTHzRRQWT0ipodekCKoL5RX5iKBjIxOOxLU0CDvtt5tdBI9E02d8JmNW3lNqI%2Fal%2BVa8wuuOak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8764d2766eb4712f-OSL
alt-svc: h3=":443"; ma=86400

atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/i.im.ge/2023/07/19/5NWpyS.buHIXJt.png

188.114.97.1

200 OK

46 kB

URL GET HTTP/3
atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/i.im.ge/2023/07/19/5NWpyS.buHIXJt.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Certificate
IssuerLet's Encrypt
Subjectatlantos.top
Fingerprint10:31:C1:F3:6E:4B:0B:16:4B:8A:AA:CD:ED:25:A4:3A:99:C7:BB:6E
ValidityWed, 28 Feb 2024 23:39:33 GMT - Tue, 28 May 2024 23:39:32 GMT

File type
PNG image data, 599 x 864, 8-bit/color RGBA, non-interlaced
Size
46 kB (46290 bytes)
Hash
0fa37cbe9706e7f2f6b3bb53d2b627cf
e966aca23a109c0db366f669be39f85bfbf375ff
74ef9849ebb56ac6cce978273b7b67fba2c6b45744e14d8611f4bba9b1251103

HTTP Headers

GET /_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/i.im.ge/2023/07/19/5NWpyS.buHIXJt.png HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA; captcha=1; PHPSESSID=a5ln4uue9ila0er8af01d3v9ks
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:42 GMT
content-type: image/png
content-length: 46290
last-modified: Wed, 19 Jul 2023 00:11:04 GMT
etag: "b4d2-600cbde0cb600"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tHMlNG4xPcvFV0ZRkfDbi4Qdy6NnAvOJecXCIjhareJKWAdYP%2FGUCW21fIPEELR5epwLA8IRpVemqhtXII78nB%2Bmqe0NIlGp5ESoULP7tVKMC3gTXbnaEmg3fhTns6w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8764d2766ea8712f-OSL
alt-svc: h3=":443"; ma=86400

atlantos.top/_alphamoon_meta/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null

188.114.97.1

9.2 kB

URL
atlantos.top/_alphamoon_meta/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (729), with no line terminators
Size
9.2 kB (9207 bytes)
Hash
38284349c7e45876dd1e507faf539629
ae1fdcac1811b433754fd7684d2d9981f13f2826
59e7cbc4e743db72cf74522cdc4e49b788cb832b698246115e5b539e105b62bb

HTTP Headers

GET /_alphamoon_meta/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://brooden.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 12:57:37 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tb4UMvc3SqxySBI1G2jzLly7%2BkGVmd2vS5AJ2O2ZiyomqlHD8jIAG97wiCFlqYv%2FCe3wbNsnSZRNmpkBBsmZQ6V1JhywM4haao9yk197OFBN0elYQVBCqeoWEMhCabk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8764d256dd2b7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/iili.io/HWc0ccQ.png

188.114.97.1

200 OK

3.0 MB

URL GET HTTP/3
atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/iili.io/HWc0ccQ.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Certificate
IssuerLet's Encrypt
Subjectatlantos.top
Fingerprint10:31:C1:F3:6E:4B:0B:16:4B:8A:AA:CD:ED:25:A4:3A:99:C7:BB:6E
ValidityWed, 28 Feb 2024 23:39:33 GMT - Tue, 28 May 2024 23:39:32 GMT

File type
PNG image data, 2520 x 1418, 8-bit/color RGB, non-interlaced
Size
3.0 MB (2951034 bytes)
Hash
f6bff38070bfd3d282d210466a60e1c6
85eca30324f92ba85b219ecba3c16f168bb4dd4d
c6ac2574a38f9bb70e1f447d51769e392d4aa879fe164294070393175c734136

HTTP Headers

GET /_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/iili.io/HWc0ccQ.png HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA; captcha=1; PHPSESSID=a5ln4uue9ila0er8af01d3v9ks
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:43 GMT
content-type: image/png
content-length: 2951034
last-modified: Sun, 05 Mar 2023 11:42:10 GMT
etag: "2d077a-5f625ab32a880"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XD8d%2BRQHNGhZRgXLp9kmAKN6A451vuA8zjpEeYw9K5H2d6HCYfOWwL3Dfh0P1S3hvEViP3wVigWIDWhCC90yw1Vll2gdSy6UGkKFsH42couGApQCJ%2Fk%2Ff7RM7psIcf4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8764d276ff6c712f-OSL
alt-svc: h3=":443"; ma=86400

atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/favicon.ico

188.114.97.1

200 OK

42 kB

URL GET HTTP/3
atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Certificate
IssuerLet's Encrypt
Subjectatlantos.top
Fingerprint10:31:C1:F3:6E:4B:0B:16:4B:8A:AA:CD:ED:25:A4:3A:99:C7:BB:6E
ValidityWed, 28 Feb 2024 23:39:33 GMT - Tue, 28 May 2024 23:39:32 GMT

File type
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
Size
42 kB (41566 bytes)
Hash
692e1c7339c359b6412f059c9c9a0474
e7c1a53dca16b7664880e5b8a92524cf9a47fb62
d12161435ace47c6883360e08466508593325f134c1852b1d0e6e75d5f76adda

HTTP Headers

GET /_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/favicon.ico HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA; captcha=1; PHPSESSID=a5ln4uue9ila0er8af01d3v9ks
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:43 GMT
content-type: image/x-icon
last-modified: Wed, 09 Aug 2023 16:55:52 GMT
etag: W/"a25e-602805a297600"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hDbQV0FO54W92c4JIlFWjgj7%2BRS6x%2FDLoY4ndwOCusLs29aCr7GPu8jrtcWf0XQj%2FbBKFTSHQveDgEA2GRolO0CIhA8EoAyvy9i%2FwV2%2FsjKDqbrMhciGTWSUJyevqjw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8764d27a5c85712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null

188.114.97.1

200 OK

2.2 kB

URL User Request GET HTTP/3
atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectatlantos.top
Fingerprint10:31:C1:F3:6E:4B:0B:16:4B:8A:AA:CD:ED:25:A4:3A:99:C7:BB:6E
ValidityWed, 28 Feb 2024 23:39:33 GMT - Tue, 28 May 2024 23:39:32 GMT

File type
JavaScript source, ASCII text, with very long lines (2501), with no line terminators
Size
2.2 kB (2215 bytes)
Hash
2cee31e85470c8e86ceeb5eb72d29a01
3da09b7ba8777cf907b2bf5c8d0d7626b12374f3
e335232b7694b1b13a1d1006f0c37d7b4d78d2f071dbe934b9ed657379fcb7a7

HTTP Headers

GET /_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/index.php?login=&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null HTTP/1.1
Host: atlantos.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/_alphamoon_meta/?login=&page=_wetransfer2&request_type=null&page_bg=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=null&vcnt=null&use_cdtimr=null
Cookie: cf_clearance=dg4LnoKHGJHTaWkqzrgqLkrkn9goQDEXkvSamafO2wU-1713445059-1.0.1.1-p6ohpbfN62fRJU05eBApmmUyCC2qSwFfFe4MDK1sa.U3DAW5vPkgcvaVBkd5vpH_UzOQV480P0XvpkyjRE.AWA; captcha=1; PHPSESSID=a5ln4uue9ila0er8af01d3v9ks
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 12:57:41 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aplH%2FlTAjycIqIepsf7Xrmy6jC1WNHXXZnPWbwDnkxph%2Bmtbid1Y4IuABdNjjTfe7uw7%2B%2FuOqTuW9RTG92Hesxa%2BOMnAGplu4inQAL8Rz8hefupG7r4EpgJAcPwBWX0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8764d2746ba0712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js

142.250.74.106

200 OK

289 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://atlantos.top/_alphamoon_meta/zone/b3b32a2d422265cd25c3323ed0157f81/_we_transfer2/login.php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&pcnt=3&pmax=null
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text
Size
289 kB (288580 bytes)
Hash
2849239b95f5a9a2aea3f6ed9420bb88
af32f706407ab08f800c5e697cce92466e735847
1fe2bb5390a75e5d61e72c107cab528fc3c29a837d69aab7d200e1dbb5dcd239

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atlantos.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 85110
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:05:31 GMT
expires: Tue, 15 Apr 2025 23:05:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 222731
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash