Report - appnee.com/netgenius/

Report Overview

Visited public
2025-07-03 06:12:06
Tags
Submit Tags
URL
appnee.com/netgenius/
Finishing URL
appnee.com/netgenius/
IP / ASN
172.67.172.207
#13335 CLOUDFLARENET
Title
[v1.1] NetGenius – Internet connection monitoring, control and optimization tool | AppNee Freeware Group.

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
wearychallengeraise.com	unknown	2024-08-19	2025-01-23	2025-06-29	2.8 kB	15 kB	172.240.108.68
nannyirrationalacquainted.com	unknown	2024-08-19	2025-01-22	2025-06-30	2.8 kB	15 kB	192.243.59.12
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2025-07-02	498 B	20 kB	104.16.79.73
writingfreedomdecember.com	unknown	2025-04-19	2025-06-02	2025-07-02	2.3 kB	6.2 kB	192.243.61.227
cse.google.com	2642	1997-09-15	2015-03-18	2025-06-27	866 B	152 kB	142.250.178.46
professionaltrafficmonitor.com	unknown	2025-01-23	2025-01-25	2025-06-27	443 B	419 B	18.194.106.70
clients1.google.com	415	1997-09-15	2013-02-01	2025-06-30	436 B	202 B	142.250.178.110
static.addtoany.com	4091	2006-03-10	2012-05-21	2025-07-03	6.9 kB	100 kB	104.22.70.197
filletfiguredconstrain.com	unknown	2024-03-29	2024-03-31	2025-06-30	4.5 kB	279 kB	172.240.253.132
www.profitabledisplaycontent.com	138390	2020-10-14	2020-10-16	2025-06-27	17 kB	73 kB	172.240.253.132
appnee.com	103563	2012-05-22	2013-08-19	2025-06-30	21 kB	765 kB	172.67.172.207
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-07-02	461 B	7.1 kB	142.250.178.35
translate.google.com	1156	1997-09-15	2012-05-30	2025-06-26	938 B	81 kB	142.250.178.46
rashcolonizeexpand.com	unknown	2024-09-01	2025-06-27	2025-06-27	2.8 kB	15 kB	192.243.59.20
img.appnee.com	unknown	2012-05-22	2014-10-07	2025-06-30	1.3 kB	82 kB	172.67.172.207
translate.googleapis.com	1005	2005-01-25	2012-05-31	2025-07-02	1.7 kB	224 kB	142.250.178.42
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-07-02	1.7 kB	45 kB	142.250.74.99
cdn.storageimagedisplay.com	unknown	2024-09-13	2024-09-13	2025-06-27	4.2 kB	604 kB	45.133.44.1
www.google.com	7	1997-09-15	2015-05-10	2025-07-02	2.8 kB	350 kB	142.250.178.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-07-03	medium	rashcolonizeexpand.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (107)

	URL	From	Size	First Seen	Last Seen
	appnee.com/netgenius/	ScriptElement	168 B	2023-10-23	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 00:06 Last Seen2025-07-03 06:12 Times Seen21 Hash b47cf4af43458152d574b80989f36597 50181dd740d0e87d3d41e0bff3e67ee6ec19d1ea 9dd81a870d1aff52c4d6a947c52753b174a254eea62b7ce9cedb73e567102817 Loading...

	appnee.com/wp-content/plugins/dynamic-to-top/js/libs/jquery.easing.js	ScriptElement	3.7 kB	2023-03-09	2025-07-03
Pretty URL appnee.com/wp-content/plugins/dynamic-to-top/js/libs/jquery.easing.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:18 Last Seen2025-07-03 06:12 Times Seen24 Hash c6a0ac2322664d267c2c4aadd45ebb75 e0f356f7a87dbe88af9ea5e8f502aaa9caf9ab6a ce64de193caea884bd4d4a7723933ab844506b7a62ec35c52911e72588c0e62f Loading...

	cse.google.com/adsense/search/async-ads.js	ScriptElement	141 kB	2025-07-02	2025-07-10
Pretty URL cse.google.com/adsense/search/async-ads.js IP 142.250.178.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-02 17:40 Last Seen2025-07-10 20:59 Times Seen99 Hash ac4bbad262f688ed45b33b15f43f71bd c26b0014161522e67d655f8158aba3c7d63d8b70 6ce729e590b33cbf1a30b3f5b33cc681558cd6909a060a9c54cc5916e566031b Loading...

	about:blank	ScriptElement	236 B	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 6e7860d3fc4bcfcfcfcc4608612cfb21 e78e1b9b490456223b65758af4c449d7d19deef4 164bae66de4b215519194fdc77189d65c0cfe3b564c048ffde6aa9650e497898 Loading...

	about:blank	Eval	2.1 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 0749c690ebc1d83d9ceebf9577e5ee47 b19834ae96410f9742b6fb738ba6a7d9ca807e0c a0fd87c0a6b2abc533dd280d791f78dd9a83ee67431dbb7a017d924d74e3ee98 Loading...

	appnee.com/wp-includes/js/jquery/jquery.masonry.min.js	ScriptElement	1.8 kB	2023-03-07	2025-07-18
Pretty URL appnee.com/wp-includes/js/jquery/jquery.masonry.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-07-18 16:06 Times Seen6444 Hash cd0eb3406096ff80266e7c9d7d419186 0e3709691bf96233766de30e2fd473b84166c5b6 c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25 Loading...

	filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js	ScriptElement	26 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash 42d1f32e00274a2266c9c76eff529e19 7cd14ebe483be786464a9505aa18abaa73767982 0f771961c8ba258641b539279e4a414b851d91207a04c578f7b8dee975d3bb52 Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:43 Last Seen2025-07-03 06:12 Times Seen18 Hash b1fb8b7cb6cb14902c691c3109493d1b 6c6bef965ec0d0de16f77d8777f5dfa238b8f8be 4d43099bc01359e4e4ad7c48a6bfebcca3da3474ab148234cbb12ff21de65c77 Loading...

	about:blank	ScriptElement	236 B	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 6e7860d3fc4bcfcfcfcc4608612cfb21 e78e1b9b490456223b65758af4c449d7d19deef4 164bae66de4b215519194fdc77189d65c0cfe3b564c048ffde6aa9650e497898 Loading...

	appnee.com/wp-content/plugins/dynamic-to-top/js/dynamic.to.top.min.js	ScriptElement	1.2 kB	2023-03-08	2025-07-03
Pretty URL appnee.com/wp-content/plugins/dynamic-to-top/js/dynamic.to.top.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:58 Last Seen2025-07-03 06:12 Times Seen49 Hash b1b9a1203843f8dd39ce038034b28faf bac9bd7fa175760c9b5ab1b4e2d9203b6b875fcc ec62de9c54033f0163588e9d274e822708dc8e6d11c0b62cdd6c6fb16331df6d Loading...

	about:blank	Eval	1.7 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 27925dfe1eff7dd63af417bda089c121 fde679e8cf330bb2a220870c374265cc94b589bd 9cef90a72b7add08f2899e21b6e59c6a32eb29a6e60dc1b92e099e4134f83a37 Loading...

	static.addtoany.com/menu/svg/icons/telegram.js	ScriptElement	360 B	2023-03-08	2025-07-18
Pretty URL static.addtoany.com/menu/svg/icons/telegram.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:33 Last Seen2025-07-18 07:29 Times Seen1119 Hash 48f25c508c92c3601cf047609318001f 59117e825084c63a0dda48edec82c14a60e16f23 6415561e892cf9d614e7179f71353af4ceadfd641d71c42fe54c9420eb0d0138 Loading...

	appnee.com/netgenius/	ScriptElement	57 B	2023-03-07	2025-07-19
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-07-19 02:44 Times Seen11954 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	about:blank	Eval	1.7 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 39da207300fe13a51718d793a9fee376 4c42546ee62b39fce9c92f00ad839c538588c226 53955a08784451a2b55c31ef1edd5ee7ade95e466b8bcd2bdf56571b31869a70 Loading...

	appnee.com/wp-content/plugins/add-to-any/addtoany.min.js	ScriptElement	129 B	2023-03-07	2025-07-19
Pretty URL appnee.com/wp-content/plugins/add-to-any/addtoany.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-19 00:07 Times Seen5141 Hash 5ef26b5e47e6951f43ecf2b1fc645222 081afb52577f6f3bb044fdea6d34a632c3cce7e8 50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1 Loading...

	appnee.com/netgenius/	ScriptElement	120 B	2023-03-08	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:58 Last Seen2025-07-03 06:12 Times Seen21 Hash efda424aa4f42abd2d0843c8f488d46d 8e8e96a1c52c05a599c1033e40f7f9f0871db8bf 4d543b42e2c2f75fffc82ddbeb2bd6c68aa27ad28e9a283fe1c62f8f9a01934b Loading...

	about:blank	Eval	2.0 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 9cbc552e941a91538ab86ad4630c9795 67f93627ff4b96470edf3e8c5cf27f56ddd6aa9d 91158782ebe1effac3e6b1619f0555d4cbff164a87638f14b6d79b083d1ef639 Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash db31995ff2ac6ec4dfad494c282208fd f195b05e8547e813b500dbe7ba4b411246d6f429 cc3eb341d526df7366f72775955dcda52abea048f2d2717f29d9e7fb162165e6 Loading...

	about:blank	Eval	2.0 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash f555a38f8abd4514be4127fde3b3a738 67617e22b477127b861e1f0343db924224ff7fb3 3a16114bd309aeb6ae1d369989090f5edc830e1e7bbd670cc6a5d4a7a1c3c00a Loading...

	filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js	ScriptElement	27 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash f2cf719646570cc700b0125fa73911e9 4e75a2f4084a36b8af8ed57c884e956aef0e3307 5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423 Loading...

	about:blank	ScriptElement	5.5 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 640d0c3897bef20c318dc48f6e01e81c d0a8175f2839798c54bdeeccec8969a7c3dc72f7 8adc117ea845104c0c0fcc85a7ae77b77f4a0ea1d36349c0dc62cd304a7300a7 Loading...

	static.addtoany.com/menu/svg/icons/skype.js	ScriptElement	1.2 kB	2024-04-12	2025-07-12
Pretty URL static.addtoany.com/menu/svg/icons/skype.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 13:25 Last Seen2025-07-12 05:11 Times Seen70 Hash 16e4d1291a7f6efc800ff5f2ef376f4e af89d5da60be7025818656c5ee928a4fc1da3009 158f2be2af784b0790d99dd531a595e0f807dc382bb16ef427e0ce1c989c40af Loading...

	appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	10 kB	2025-07-03	2025-07-03
Pretty URL appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 05:30 Last Seen2025-07-03 06:15 Times Seen6 Hash 57ee397648549004e038d1fd843c20ae b1d747d16eeebcb6c6deee3d1526f927317f6945 2cd46a57bfd0d77ccf0bbaf9118582aec8b4b2d88d8c6c4ef98cb1352c6783f6 Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash aa8dff53679f2e849eff2a9d80f543a6 375a0373cb565e2422890a7ea57b976531362664 87d1d3f20bd419dc0a41e71cff5e748b8f7c21d3ce421e05c85f0eeee50e6cef Loading...

	www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D	ScriptElement	297 kB	2025-06-11	2025-07-18
Pretty URL www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D IP 142.250.178.68 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-11 22:38 Last Seen2025-07-18 14:21 Times Seen370 Hash 18b57f427b408e2c87b93f30bc7cf69f e1b840786160249f98d8aa4e1a95b2b865c33dfd 937019b2f2c823a521aaccc41ea6ac1d16a1ea18403fe840951da73b3d980171 Loading...

	static.addtoany.com/menu/modules/core.pt5ow5lr.js	ScriptElement	72 kB	2025-04-25	2025-07-19
Pretty URL static.addtoany.com/menu/modules/core.pt5ow5lr.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-25 03:57 Last Seen2025-07-19 00:10 Times Seen3646 Hash 7e998bb147b26903e88f08f39c0e2cfc 6c93ab9cb3371591d4031dc60b9c3ae571c3329e ef39bcc03d88448d0d38aba3dc609e9c9c444d037aebec926e6715e1cf956674 Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:58 Last Seen2025-07-03 06:12 Times Seen18 Hash 5afd21d50651e2d63aed364d8420a404 96ac51e0e03cf18f69a9afa3f779a09f76f54dc9 628004d0c33080914c9676207a88290292250c2a0b5907490e5e2bb93b090927 Loading...

	static.addtoany.com/menu/svg/icons/link.js	ScriptElement	1.4 kB	2024-05-01	2025-07-18
Pretty URL static.addtoany.com/menu/svg/icons/link.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-01 00:16 Last Seen2025-07-18 12:20 Times Seen318 Hash 2612b308f45d0aeddbd8540f3cf792f8 6c6a34a46b238ae0372b7f6126c8686a3c6b91d7 1b1e450814698cfd54d68f041c25c741d2adbde4e8e31a256db1be23d413d96c Loading...

	static.addtoany.com/menu/svg/icons/email.js	ScriptElement	415 B	2024-04-12	2025-07-18
Pretty URL static.addtoany.com/menu/svg/icons/email.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 16:11 Last Seen2025-07-18 04:02 Times Seen1120 Hash 452a9a6a280379512ab5764a1d42bae1 61e0f75ff25c554dbf65743f1f6bf9d003ddc905 d432ad1988efa5b258294f52dae3d1b4c10660aec15e49017e21a1ee74bfd453 Loading...

	about:blank	Eval	2.0 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 9d9f9268e2a312f81655e2ccb3cf2fe9 3f1f88fd01d9058ee018256ac692f1f09bae1899 223221650341167b3825cad8122cbd52a85eb86dbdb545bccfdcc54945915190 Loading...

	appnee.com/wp-content/plugins/super-rss-reader/public/js/jquery.easy-ticker.min.js	ScriptElement	2.8 kB	2023-03-07	2025-07-12
Pretty URL appnee.com/wp-content/plugins/super-rss-reader/public/js/jquery.easy-ticker.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:25 Last Seen2025-07-12 08:30 Times Seen166 Hash 07af979747ec64c6a535448e8302fefb 723a21f3ecdd604dc75d8be0f81a8bf7349f9471 6e4d0bfa049f2041b9db26d4d3bc3ffb0efd405ad37a8f95d70d45ecaca677a8 Loading...

	appnee.com/wp-includes/js/jquery/jquery.min.js	ScriptElement	88 kB	2023-11-03	2025-07-19
Pretty URL appnee.com/wp-includes/js/jquery/jquery.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26 Last Seen2025-07-19 06:05 Times Seen148727 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	about:blank	Eval	1.6 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash c05ad41485b6edc99c8cedd22bb0b3d5 1f495cc45f1725c51b7dc50bf2af3f95dc66c66c ab47db36223bc5594cda26b1e2890bb0b29f4046045769c93f1174fc6630d4b2 Loading...

	about:blank	Eval	2.1 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash ce03cef3a4f38e18b264822bd037a420 63b22e6685c05c0c0e5e8c34d57a7be7c8c4a4f8 2111e945ba07b11f6e1d2b28cf84411b93211537917b1293909797b31f81f7d8 Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:58 Last Seen2025-07-03 06:12 Times Seen18 Hash f0fa65193665f3105a8aeaf9be03b054 8f1b6e6ede1f9eab7b99683881918b16bcc2fe0d ec11fb28e7951bf5b0caf32aeedc40dc87c962fc19eb882b8e71894819c3d6ce Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:43 Last Seen2025-07-03 06:12 Times Seen18 Hash b1fb8b7cb6cb14902c691c3109493d1b 6c6bef965ec0d0de16f77d8777f5dfa238b8f8be 4d43099bc01359e4e4ad7c48a6bfebcca3da3474ab148234cbb12ff21de65c77 Loading...

	filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js	ScriptElement	27 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash f2cf719646570cc700b0125fa73911e9 4e75a2f4084a36b8af8ed57c884e956aef0e3307 5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423 Loading...

	appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/analytics.js	ScriptElement	1.2 kB	2023-03-10	2025-07-17
Pretty URL appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/analytics.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:37 Last Seen2025-07-17 11:56 Times Seen74 Hash 55f481bbcc52bf261cf2b5669ccf033e 2ab5cc9179e9bc759f699d74a267ec3427704102 c8683b8aa233904efcaceff3ac30e7e6e41a699736dcf541f72d8c8cd31eddf9 Loading...

	appnee.com/netgenius/	ScriptElement	3.3 kB	2025-07-03	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 83413477414911d82bf1ba46c6bf4efb bd4bd9c7520c5841e6f94846ff2b498e09a6e3bd bf5e7f33a297d1bb324d7be41906d9176800debe02c2cbfaacd521a45b82a9e4 Loading...

	filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js	ScriptElement	27 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash f2cf719646570cc700b0125fa73911e9 4e75a2f4084a36b8af8ed57c884e956aef0e3307 5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423 Loading...

	about:blank	ScriptElement	5.5 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 0938e6ba6e380a9d32b6a84db77741e1 100c1a799beb799bb1318ba44464da98d0c64c21 d1a92442a5126d6d4316fabccfb737b5a7402b48db3d793e4042ec3aa020f962 Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash db31995ff2ac6ec4dfad494c282208fd f195b05e8547e813b500dbe7ba4b411246d6f429 cc3eb341d526df7366f72775955dcda52abea048f2d2717f29d9e7fb162165e6 Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:43 Last Seen2025-07-03 06:12 Times Seen18 Hash b1fb8b7cb6cb14902c691c3109493d1b 6c6bef965ec0d0de16f77d8777f5dfa238b8f8be 4d43099bc01359e4e4ad7c48a6bfebcca3da3474ab148234cbb12ff21de65c77 Loading...

	about:blank	Eval	1.7 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 72a54a97d1d7e05183eeb8110de4bdaf b230af3fd4eebcf1a8500622cf11c93f850bd74b 929b8f648bf7421bad70b3e661945f6923b616543889e3c0ff72bcfda1a84380 Loading...

	static.addtoany.com/menu/svg/icons/wechat.js	ScriptElement	1.2 kB	2024-04-27	2025-07-16
Pretty URL static.addtoany.com/menu/svg/icons/wechat.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-27 04:58 Last Seen2025-07-16 22:43 Times Seen128 Hash b0e286d45d3573a78afc388522472eac 0981eaedebb795e282ce807724037b8088adf405 315a36857f81419cc32e1f7bf3caf201f1c28fb86e534d4084cea148cd3f4269 Loading...

	appnee.com/netgenius/	ScriptElement	921 B	2025-07-03	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash de0fcc243a7e0f2df6c2c4fbe87fbbaa a74bb2e39cdd6ae7f80fae1f53cc4431e595a622 d522ead39393523912da0c5174226650602ad424ccdec395553e43394517906c Loading...

	static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015	ScriptElement	20 kB	2024-06-07	2025-07-19
Pretty URL static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-07 09:21 Last Seen2025-07-19 06:10 Times Seen92292 Hash ec18af6d41f6f278b6aed3bdabffa7bc 62c9e2cab76b888829f3c5335e91c320b22329ae 8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f Loading...

	about:blank	Eval	2.0 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 88612130e3ea2843d3935593fd8ee40d 22f646a6f197ea0b1610cc100f31c98f5857fb70 cef7d0a46ae2e121ff9a5681415f47fd58205bd8cad545c9ea2f8905f60de389 Loading...

	appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	10 kB	2025-07-03	2025-07-03
Pretty URL appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:11 Last Seen2025-07-03 06:12 Times Seen2 Hash 3f04964068dc2ccda3261a55c04484a5 9d93300522a885e061b67b9a63ea7305c1d16891 732117adfd4a9534492e8c9c5dc8259fade4761d724bc0830cf0921c2fff81de Loading...

	filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js	ScriptElement	27 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash f2cf719646570cc700b0125fa73911e9 4e75a2f4084a36b8af8ed57c884e956aef0e3307 5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423 Loading...

	appnee.com/netgenius/sandbox%20eval%20code		128 B	2023-05-06	2025-07-19
Pretty URL appnee.com/netgenius/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-07-19 06:13 Times Seen30199 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	ScriptElement	1.6 kB	2023-05-06	2025-07-19
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-07-19 06:13 Times Seen29938 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:43 Last Seen2025-07-03 06:12 Times Seen18 Hash b1fb8b7cb6cb14902c691c3109493d1b 6c6bef965ec0d0de16f77d8777f5dfa238b8f8be 4d43099bc01359e4e4ad7c48a6bfebcca3da3474ab148234cbb12ff21de65c77 Loading...

	about:blank	Eval	2.1 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 21829e67aa21088accb67a469af17568 dc8bae6b8f62ef512e17f3a29b7bca3b76c16690 9848de613d06874318e4f01d6f74c3b8e31d569d6a27bdf4ad7d94aa98e46e6f Loading...

	about:blank	Eval	1.6 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 0a924af43efba794a8d58a7a217df68c 3165cba719d7d46e9586ac01e38b341306fe10c4 fb58c95361837ac66ccb90a19a6fcf06e3ae7a63574ffb6cd6cd551f891aff3e Loading...

	appnee.com/netgenius/	ScriptElement	332 B	2023-03-07	2025-07-17
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-07-17 19:52 Times Seen469 Hash 84be58780b9dd1989561983a925feed9 690428ad5e60bf3be4eea18f90b8fcdf9503e257 25e36dce3f326526d4e57666b54a95659065c273e1cbc094f9f7c59c9990e7c4 Loading...

	static.addtoany.com/menu/page.js	ScriptElement	3.2 kB	2025-04-25	2025-07-19
Pretty URL static.addtoany.com/menu/page.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-25 03:57 Last Seen2025-07-19 00:10 Times Seen3695 Hash 57b268c32627d8d13671f43be7c47b84 0eebe8bc9958922a2a354b4abdca2f4d326f49e9 53d16f311b01e5f9b5e7dcb2ec11b11e5ed23e155ed05727a7a42472d608118f Loading...

	about:blank	ScriptElement	4.9 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 229106b549b1c1f3e76922d9817005fd eb16802457f435fbbd90f675a45e771511c405e7 a85f3df8f6c3f6137728059a83f77bba2d1d0112f76ceef711da4e5ee1a62a02 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.keQt1s-0v6U.O/am=AAAC/d=1/exm=el_conf/ed=1/rs=AN8SPfp3eDIXUaRdDcCkDaAlGblibDcJ6w/m=el_main	ScriptElement	221 kB	2025-07-01	2025-07-09
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.keQt1s-0v6U.O/am=AAAC/d=1/exm=el_conf/ed=1/rs=AN8SPfp3eDIXUaRdDcCkDaAlGblibDcJ6w/m=el_main IP 142.250.178.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-01 20:52 Last Seen2025-07-09 19:44 Times Seen960 Hash 924548d1f97f5d62705738131ad69b8c a5346f6c4b2520381e47aa084220f5a4b0da87ce 1afb404248c137c2190c4612a050850771600d66bc8770dd9a38fd8c9d368e9b Loading...

	appnee.com/netgenius/	ScriptElement	368 B	2025-07-03	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash de17ca3b3912cb6c3bfc552ccfa343f5 6d281f8b2ba39fb56a24c66175dc932fc7c1e436 36b82252ea265d58df6089f4bbab80bf46656f8cedd63794a8b0c573e0d35be9 Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash db31995ff2ac6ec4dfad494c282208fd f195b05e8547e813b500dbe7ba4b411246d6f429 cc3eb341d526df7366f72775955dcda52abea048f2d2717f29d9e7fb162165e6 Loading...

	appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/js.cookie.min.js	ScriptElement	2.0 kB	2023-03-07	2025-07-19
Pretty URL appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/js.cookie.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-19 01:12 Times Seen244 Hash 6cd48c176636ab8c478eb0d9434d6f7e 913792a03a28335ebff35ff06f0371253cac4be2 a1e8ff6e3433451a637658e81616852233d86684186eab93629b79c94d15b28f Loading...

	about:blank	Eval	1.6 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 2088073e099bb62843521bf51d416e5f 2ab52c39e2fce448eec96ba5a0af789aa689b9f7 f67f6df87970bc41f803e248d118c631f7eead550a75ca0a12461117d04eb4c2 Loading...

	appnee.com/wp-content/plugins/super-rss-reader/public/js/script.min.js	ScriptElement	803 B	2023-03-07	2025-07-12
Pretty URL appnee.com/wp-content/plugins/super-rss-reader/public/js/script.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:25 Last Seen2025-07-12 08:30 Times Seen143 Hash 2de96ded897b3785b51654256860997e fd8ecb768712100810829955891eed68b033ea0a 080b4d816746205ae08e7fc3fff5a591d264f2e9ead0739d5e497d4014e676cc Loading...

	static.addtoany.com/menu/svg/icons/viber.js	ScriptElement	1.0 kB	2024-04-12	2025-07-12
Pretty URL static.addtoany.com/menu/svg/icons/viber.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 13:25 Last Seen2025-07-12 05:11 Times Seen320 Hash aeffbbeba6dd343b89fdc22cdf23f8c8 7be9f0a8fbd22f85cd4408ed04b69e98cbb79de7 c38246b300667ea8ab28940a729e65168f981baf8adc8d708c299e85b9e2dcee Loading...

	appnee.com/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js	ScriptElement	23 kB	2023-03-08	2025-07-17
Pretty URL appnee.com/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:35 Last Seen2025-07-17 12:06 Times Seen1347 Hash 63fad256b41b5d84bc1e86461a96a318 20d44c76509b9fb61a6e005112d60a1f3b73b8ec a69c12ccd186a899db79fce802b46c08e71f69c2c422be2666ed8565e3add026 Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:43 Last Seen2025-07-03 06:12 Times Seen18 Hash b1fb8b7cb6cb14902c691c3109493d1b 6c6bef965ec0d0de16f77d8777f5dfa238b8f8be 4d43099bc01359e4e4ad7c48a6bfebcca3da3474ab148234cbb12ff21de65c77 Loading...

	static.addtoany.com/menu/svg/icons/whatsapp.js	ScriptElement	1.1 kB	2024-04-12	2025-07-18
Pretty URL static.addtoany.com/menu/svg/icons/whatsapp.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 13:25 Last Seen2025-07-18 15:24 Times Seen1248 Hash 0e8b3ac6bda5451ff39c5ecd6d7b3873 fb477a11167000a30e45369e686ec43dd62d026b c15e1379ca2c59f99912500bbc23a0d1d88f43198cbe1b53d87776fa351385eb Loading...

	filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js	ScriptElement	27 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash f2cf719646570cc700b0125fa73911e9 4e75a2f4084a36b8af8ed57c884e956aef0e3307 5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423 Loading...

	static.addtoany.com/menu/svg/icons/a2a.js	ScriptElement	182 B	2023-03-08	2025-07-18
Pretty URL static.addtoany.com/menu/svg/icons/a2a.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25 Last Seen2025-07-18 19:14 Times Seen2575 Hash baf0595a19bdc7f7497b74731d2166c4 fd5714384c52fc0338083574434d12328313896c 3dab93242ee573bbcfc22c9d15acd47794e500ed44e6bd48a35400b39d65aa43 Loading...

	static.addtoany.com/menu/svg/icons/vk.js	ScriptElement	1.0 kB	2023-11-02	2025-07-14
Pretty URL static.addtoany.com/menu/svg/icons/vk.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 13:28 Last Seen2025-07-14 02:24 Times Seen376 Hash c04dea781d39cda7192e16e0210aebe1 53387a72b5046d96cbc057fbe8397ee867faeaea d5253661fb06ef994e0abfc00a99ee5fe2ed3971094b485a8a94bf9332877166 Loading...

	about:blank	Eval	2.1 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash ea56ce450cec9b95dd436ab96cc3e85d 5e4bddfb5cb14569557a1699392c5062941ee84f 13b29ea06d344370f63f874d49b42f7b74ca44d1d2e476a4a818a2368a6cc18a Loading...

	cse.google.com/cse.js?cx=013013290873966176362:95o1jilldgw	ScriptElement	9.2 kB	2025-07-03	2025-07-03
Pretty URL cse.google.com/cse.js?cx=013013290873966176362:95o1jilldgw IP 142.250.178.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash a4e4e519d58dcc61ea43fdb4d752f9ea f7e995ebbb5ae77b0e31dd5e6e6d8ac23b971a71 bd947e6ed2115810b2ded15fc63880f596c99894676cc2eb975f33c0b8e8fc95 Loading...

	about:srcdoc#316	ScriptElement	1.7 kB	2025-06-11	2025-07-19
Pretty URL about:srcdoc#316 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-11 00:07 Last Seen2025-07-19 05:26 Times Seen3094 Hash 888a21ab7fc56d220a59dd25a83b18b6 3bc9b8d495cf8e016aadf7e2bba091f2bd8b7188 18c0d112e350349ca7390bc25c50a5fc92e9dc9b63416147c7e57851d105237e Loading...

	appnee.com/_/translate_http/_/js/k=translate_http.tr.no.keQt1s-0v6U.O/am=AGA/d=1/rs=AN8SPfoXdOKlJkLcNGmZe9KoIDQhogAnlA/m=el_conf	ScriptElement	79 kB	2025-07-03	2025-07-03
Pretty URL appnee.com/_/translate_http/_/js/k=translate_http.tr.no.keQt1s-0v6U.O/am=AGA/d=1/rs=AN8SPfoXdOKlJkLcNGmZe9KoIDQhogAnlA/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 9b56d7eb04f679a242e278f88e2b113b e0409412bb636441267fd016d60ca81058845d84 d1da29296d7c595c19f9d8727d950e2afe9bd557c9b79e25daf48b06bcc6c90b Loading...

	appnee.com/wp-includes/js/masonry.min.js	ScriptElement	24 kB	2023-03-07	2025-07-19
Pretty URL appnee.com/wp-includes/js/masonry.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-19 02:51 Times Seen12494 Hash 3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash 4b7f75defc6933e7dbc1174d602e6f72 266247aebbb95fa0b71a73a2a742e44af2017a09 b6a112e6a21ee030cef8980a67162eaff8feea88a3dbb20f91bcb0127c0ec59d Loading...

	about:blank	ScriptElement	5.5 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 4e03f90381753d0251db65e03b9148e7 63e9a78d54f4d00d47c369b92c30a80cccef9848 0c2525dfae2279e52bf470d6acc2bb25f9e501cadefd8d5096d996f239f10023 Loading...

	about:blank	ScriptElement	145 B	2023-03-08	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:58 Last Seen2025-07-03 06:12 Times Seen18 Hash 5afd21d50651e2d63aed364d8420a404 96ac51e0e03cf18f69a9afa3f779a09f76f54dc9 628004d0c33080914c9676207a88290292250c2a0b5907490e5e2bb93b090927 Loading...

	about:blank	ScriptElement	5.4 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 5b468019838ec883ff72bf551a06902a 1c20af3ff9a6104d6927df9ac618f48941157597 bc1af915ba9f05d9f7df728043d1f6ba6942e0565610e59e8892af58f0c6b074 Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash aa8dff53679f2e849eff2a9d80f543a6 375a0373cb565e2422890a7ea57b976531362664 87d1d3f20bd419dc0a41e71cff5e748b8f7c21d3ce421e05c85f0eeee50e6cef Loading...

	about:blank	Eval	1.7 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 0875b043d742e444a7dd6ef0c046213c 4458f2b05a047cd82966c4c1da7809768530dcd6 4190923929a1443816e3ffc0ca087fdb2ff6b206e14f1d389dd9dda21aac3763 Loading...

	about:blank	ScriptElement	5.4 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash f5ff88e24fcffcdaae9b7781946d17fc cdb311e00adb0b72a73507fa0c80bdfefec3d0a3 bbdfa34615f0831580a4612ee156bc1f01cd4b40e8cf9bcc61d10b560039edb7 Loading...

	about:blank	ScriptElement	5.1 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash c39bd56f8d55c7e68c5725c164d22e69 01a2f99241dfd5549417cb73ebf25c016ca2c44d 9aee56b1d8431f3d9929f40ba5966ecd02db6961e5945e97b13cee239386b18c Loading...

	about:blank	ScriptElement	5.4 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash e05cb7d932e17ace61039291bf8686bb 536e7203ddd7f3180c507ddb0b4cbea294fdb960 3ffb735368ac2330ae8d14aa5a49fd538cd187233a068d5b4efba1501c9a1c88 Loading...

	appnee.com/netgenius/	ScriptElement	57 B	2023-03-07	2025-07-19
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-07-19 02:44 Times Seen11954 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	appnee.com/netgenius/	ScriptElement	405 B	2023-10-23	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-23 00:06 Last Seen2025-07-03 06:12 Times Seen21 Hash 3d4feaf05871ecf5653e0cab0a4ee472 34ac7a05f5960ab57cc120bab8a0b67b02a4ba20 d485b126a654d0e7dd8ab98c5adda34d51f45a4325c51f353a7c0fc2d59dd3e2 Loading...

	appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/frontend.js	ScriptElement	19 kB	2024-07-04	2025-07-17
Pretty URL appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/frontend.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-04 18:40 Last Seen2025-07-17 11:56 Times Seen41 Hash 9c030405c93af16af604a1068be8b527 4a9c2fea21d3ad57910894affd94c1a77bb1289c 740c09c2237345e11719f24efeedcada2fe664d57768fcc61c2d8531840e2041 Loading...

	appnee.com/netgenius/	ScriptElement	231 B	2023-03-08	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:58 Last Seen2025-07-03 06:12 Times Seen25 Hash 92b47bb5ac0ec5e60f80106cf8734fcd 31af159e186967e1ce29442b1f1d87eae8892e4f 0cfd74aad924a757919f2c25b3e8b36f319a0155181ae0708234e5f1afdcc60a Loading...

	appnee.com/wp-content/themes/twentyfourteen/js/functions.js	ScriptElement	5.4 kB	2023-08-10	2025-07-16
Pretty URL appnee.com/wp-content/themes/twentyfourteen/js/functions.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 19:05 Last Seen2025-07-16 07:52 Times Seen144 Hash 20ea6bb2e918feb5392be0617397ec15 0164130ce5cb19b9cc60faff5ce9cfa0ec874c63 1b37e5c81077342fa855ca18e5802fb629fef3ab2f93a655108dc0e5827d99c6 Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash db31995ff2ac6ec4dfad494c282208fd f195b05e8547e813b500dbe7ba4b411246d6f429 cc3eb341d526df7366f72775955dcda52abea048f2d2717f29d9e7fb162165e6 Loading...

	filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js	ScriptElement	26 kB	2025-07-03	2025-07-03
Pretty URL filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 8e955a2ed2ff4a12978e1018981684e8 ad065d65cfed390d1c8d7551df6cc1d38d735a06 d07d76eaf96a7b2eb576ec626f7af677dd959a46197e4e645b6e827bda394dff Loading...

	appnee.com/netgenius/	ScriptElement	140 B	2024-06-09	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-09 00:16 Last Seen2025-07-03 06:12 Times Seen8 Hash db31995ff2ac6ec4dfad494c282208fd f195b05e8547e813b500dbe7ba4b411246d6f429 cc3eb341d526df7366f72775955dcda52abea048f2d2717f29d9e7fb162165e6 Loading...

	filletfiguredconstrain.com/c69e2bcba375713b49986b2e97d7ece9/invoke.js	ScriptElement	27 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/c69e2bcba375713b49986b2e97d7ece9/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash 4620f243ca82fea2b346236fad54ebdc 7b1514e2ece0cba5c1a42eecea65a668a57f24e6 4997c20986df351725bfd47ba462eba2f2d277a85201791e65d93a6496e9bf6d Loading...

	filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js	ScriptElement	27 kB	2025-07-03	2025-07-03
Pretty URL filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 9e05efadc800f793362cb0f2b42008b1 ac4b45b39b09a20f64873fa909396ea442a52950 20480e561f3914655bebdb737e426d2d648e5ff924918bd06a582ac950385aa9 Loading...

	static.addtoany.com/menu/svg/icons/x.js	ScriptElement	297 B	2023-09-17	2025-07-18
Pretty URL static.addtoany.com/menu/svg/icons/x.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-17 09:47 Last Seen2025-07-18 12:20 Times Seen727 Hash 885be296b72c01b844a2addc97be03db 0696c38c7746aa5c930b4a679282a156fc69784f 122ed4db2019348aef89a605e3eb79c6004f5727f16144dc46b61f31ee131764 Loading...

	static.addtoany.com/menu/svg/icons/printfriendly.js	ScriptElement	577 B	2024-05-02	2025-07-12
Pretty URL static.addtoany.com/menu/svg/icons/printfriendly.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 12:25 Last Seen2025-07-12 12:10 Times Seen27 Hash b7aa7a7b2e6901e257d676204d347269 eae92efbad32024bd4bef8138622b2e92ecb69f6 2fb7a4f164485fa03752eee7056601df281faa3e83b1d9ecad5495eef58428f2 Loading...

	appnee.com/wp-includes/js/imagesloaded.min.js	ScriptElement	5.5 kB	2023-11-08	2025-07-19
Pretty URL appnee.com/wp-includes/js/imagesloaded.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-08 01:34 Last Seen2025-07-19 05:53 Times Seen25041 Hash 6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1 Loading...

	appnee.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-07-19
Pretty URL appnee.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-19 06:11 Times Seen41746 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js	ScriptElement	27 kB	2025-06-30	2025-07-03
Pretty URL filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-30 21:32 Last Seen2025-07-03 06:12 Times Seen2 Hash 5706978016ee03687421b4696a4d74b9 9506c2c8e74c49b6af9741e543f638531689cec4 79ff2a0183a6433cf33576ea55f359a23229f14b2d6332dc703b1d28998ba194 Loading...

	appnee.com/netgenius/	ScriptElement	135 B	2025-07-03	2025-07-03
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash 38a9a2aa6ddcf2eefff9f7bed746abd1 93b9e929ec71ce507563d176e94c3fc1e5e7e0a5 ea494ba3e5f5c9c4637f60019e05a51b628e2eef09fe41b36526b678384550e4 Loading...

	appnee.com/netgenius/	ScriptElement	113 B	2023-03-07	2025-07-19
Pretty URL appnee.com/netgenius/ IP 172.67.172.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-19 00:07 Times Seen860 Hash 9efb9f3f2410506c59f3f679002e6707 96fde248ab9455c53f9205a0b75c133a39d87156 6868576dfe490569034a480a1368369c1b81470651ca70b5ff1e82de507ff6ea Loading...

	about:blank	Eval	1.6 kB	2025-07-03	2025-07-03
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by eval Embedded in HTML false Observations First Seen2025-07-03 06:12 Last Seen2025-07-03 06:12 Times Seen1 Hash e1ac50dd219867830a0aae46f712ac9d 46fe9e507ed4dd58b2528b3573198363a95eb488 5a1a06f5428cfda328e4bd83f60675d7dbfe306887f8e0496f428e9ab23240dd Loading...

	static.addtoany.com/menu/svg/icons/facebook.js	ScriptElement	429 B	2024-04-12	2025-07-18
Pretty URL static.addtoany.com/menu/svg/icons/facebook.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-12 16:11 Last Seen2025-07-18 19:14 Times Seen2346 Hash 014bcc757e484e12e3aea6c9d768fd4b 4c17157d0012f8002e4e6cf77c5f4a9747792cf4 4b475960843a5619b907af1f0a89e3136bd5e6a4a700ec78cb417f302647cf49 Loading...

	static.addtoany.com/menu/sm.25.html#type=core&event=load	ScriptElement	552 B	2025-03-02	2025-07-19
Pretty URL static.addtoany.com/menu/sm.25.html#type=core&event=load IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-02 13:21 Last Seen2025-07-19 00:10 Times Seen4254 Hash 107e713ee1be819b72679a9b20d1b704 1d4a8f1f9af8ae391110851b0c5df66d50a1d8dd 8eb57361472f7fa5e3b2def7d28f9a03330413fd300a2223ee2ca3291782a41f Loading...

		Size	First Seen	Last Seen
	#1 Write - fb60c200efa74bb5a2c66b37c26daf0d	469 B	2025-07-01 20:52	2025-07-10 19:26
Pretty Observations First Seen2025-07-01 20:52 Last Seen2025-07-10 19:26 Times Seen278 Hash fb60c200efa74bb5a2c66b37c26daf0d a35e24997a01f17ea69b755e50d01c64bc2d1847 1fccaf6d5a0c7fc421cd0ee7b7a852adc2d7f872db7e6e250ef6dfbacd416900 Loading...

	#2 Write - c80df76e46d30b04e1d63fc6895a7ec5	3.0 kB	2025-07-01 22:07	2025-07-10 17:37
Pretty Observations First Seen2025-07-01 22:07 Last Seen2025-07-10 17:37 Times Seen142 Hash c80df76e46d30b04e1d63fc6895a7ec5 9944633bb27f5ca719825ae5f32aa51b0978f16f 9a522102eb62c6b0af52f18552fa3da50cfc345bf39cc736d389c95fa5608163 Loading...

HTTP Transactions (114)

URL IP Response Size

GET static.addtoany.com/menu/svg/icons/whatsapp.js

104.22.70.197

200 OK

1.1 kB

URL GET
static.addtoany.com/menu/svg/icons/whatsapp.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (1108), with no line terminators
Size
1.1 kB (1108 bytes)
Hash
0e8b3ac6bda5451ff39c5ecd6d7b3873
fb477a11167000a30e45369e686ec43dd62d026b
c15e1379ca2c59f99912500bbc23a0d1d88f43198cbe1b53d87776fa351385eb

HTTP Headers

GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"83af4df8173e43227812296bb8542dcf"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fFh%2B4XJojK8xddBiXjMlB0SEtURRlOarRYIy70uPryIC%2BEYRyc7JWSdYMw6B9gOZtSOkxvKnStRilRB1ahk2CuN4nEoKoYGiMJhaHQHOXCdcPbPRX%2B5Bid4VU3PI68v84PyPJzZbzxH16PBaXXncPyCl"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 959439f7981eabd2-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET rashcolonizeexpand.com/watch.1220376755056.js?dev=e&key=c69e2bcba375713b49986b2e97d7ece9&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=6c31c1963e09e48ddae33d54bd648312e0dbdd9a8d7aec84704e270b6ed997de3124ed8649a22bb3d6bb3f1a61efc1f023e62b111a02d007f0b60492ab13cedc01e3bbd7275538cca2edc91ce7a38cc76112a0a91e3f60fc7af9&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

200 OK

5.4 kB

URL GET
rashcolonizeexpand.com/watch.1220376755056.js?dev=e&key=c69e2bcba375713b49986b2e97d7ece9&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=6c31c1963e09e48ddae33d54bd648312e0dbdd9a8d7aec84704e270b6ed997de3124ed8649a22bb3d6bb3f1a61efc1f023e62b111a02d007f0b60492ab13cedc01e3bbd7275538cca2edc91ce7a38cc76112a0a91e3f60fc7af9&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectrashcolonizeexpand.com
FingerprintC7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92
ValiditySat, 28 Jun 2025 22:10:41 GMT - Fri, 26 Sep 2025 22:10:40 GMT

File type
JavaScript source, ASCII text, with very long lines (4510)
Size
5.4 kB (5386 bytes)
Hash
7fdfc943f0290dfc266fbe65d9af4932
684202b3689c438025402f5ce5baf8395db543d0
f40ff0cbddb3f88c0e5f51ef1db2f9e24bf864b9e85c43a60af4062ef0b0055d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1220376755056.js?dev=e&key=c69e2bcba375713b49986b2e97d7ece9&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=6c31c1963e09e48ddae33d54bd648312e0dbdd9a8d7aec84704e270b6ed997de3124ed8649a22bb3d6bb3f1a61efc1f023e62b111a02d007f0b60492ab13cedc01e3bbd7275538cca2edc91ce7a38cc76112a0a91e3f60fc7af9&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: rashcolonizeexpand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.hzIk9x6W_YZNwi_K81ZuKLKj2n9RCkOfOQdt5I-KGf8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
pdhtkv26=true; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs26=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
u_pl17061882=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
Host: rashcolonizeexpand.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 587e3649b90e5489415931dc45528844
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js

172.240.253.132

200 OK

26 kB

URL GET
filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (25612), with no line terminators
Size
26 kB (25614 bytes)
Hash
8e955a2ed2ff4a12978e1018981684e8
ad065d65cfed390d1c8d7551df6cc1d38d735a06
d07d76eaf96a7b2eb576ec626f7af677dd959a46197e4e645b6e827bda394dff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:33 GMT
Content-Type: application/javascript
Content-Length: 9549
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 2
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: da3916ee61c2b0714d6d48b940df12a6
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET www.profitabledisplaycontent.com/watch.271811411458.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=14c785d8aeaaef3d3df09be285a21ccad75952ab0e72bc9171ed11832731cb3dbd4b8735ce9dcebfd4a9b133469b7db318c2a11c4616483b9b5f4ba497eb44d79415adddf94a21848ac04c93842b8c22b277f33df2713f2342796c&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

172.240.253.132

200 OK

5.1 kB

URL GET
www.profitabledisplaycontent.com/watch.271811411458.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=14c785d8aeaaef3d3df09be285a21ccad75952ab0e72bc9171ed11832731cb3dbd4b8735ce9dcebfd4a9b133469b7db318c2a11c4616483b9b5f4ba497eb44d79415adddf94a21848ac04c93842b8c22b277f33df2713f2342796c&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type
JavaScript source, ASCII text, with very long lines (4230)
Size
5.1 kB (5106 bytes)
Hash
1e30f1615694d39a0bdc7ea740ff3629
5077d1e6387699e7ffb91d9c25cb1d275d50e8bf
ce033304500991e1c1ad134b16e7bc06d744464f323ca2e2e59c6471745eebf5

HTTP Headers

GET /watch.271811411458.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=14c785d8aeaaef3d3df09be285a21ccad75952ab0e72bc9171ed11832731cb3dbd4b8735ce9dcebfd4a9b133469b7db318c2a11c4616483b9b5f4ba497eb44d79415adddf94a21848ac04c93842b8c22b277f33df2713f2342796c&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; u_pl13336275=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://appnee.com
access-control-allow-credentials: true
set-cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
u_pl13336275=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 14
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8c7c095bb73c8f8ddd62a62b094b72ea
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET static.addtoany.com/menu/sm.25.html#type=core&event=load

104.22.70.197

200 OK

716 B

URL GET
static.addtoany.com/menu/sm.25.html#type=core&event=load
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
HTML document, ASCII text, with very long lines (624)
Size
716 B (716 bytes)
Hash
41b7ed0cbe240173eea85148fcba633e
39acd5fe099974486a1c9ba11ba0fe7be6bc97ca
274d4116239b63097bb7c16e56e27cbb5a77be20392fb8e2317c0a0235185cad

HTTP Headers

GET /menu/sm.25.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: text/html; charset=utf-8
cf-ray: 959439f65eb0abd2-CPH
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vZ0J3TDi4jLyTzLUFLAU9ZVmKfTulKlHgEOSYEstB08uAX0v3WLWYqVdYD7Cy%2FPmXV83Jhj3J97xxNivZ0X3xP8fUStxg6bdgDs4Pw%2BosEzhR6GC8ZXYJpnuZT04DxfopGAtJ68z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: HIT
age: 6578
last-modified: Thu, 03 Jul 2025 04:21:58 GMT
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET static.addtoany.com/menu/svg/icons/vk.js

104.22.70.197

200 OK

1.0 kB

URL GET
static.addtoany.com/menu/svg/icons/vk.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (1012), with no line terminators
Size
1.0 kB (1012 bytes)
Hash
c04dea781d39cda7192e16e0210aebe1
53387a72b5046d96cbc057fbe8397ee867faeaea
d5253661fb06ef994e0abfc00a99ee5fe2ed3971094b485a8a94bf9332877166

HTTP Headers

GET /menu/svg/icons/vk.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f7981babd2-CPH
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"f0929767d4055d34e4c94493038aeee6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PB64f1BZ%2Fw%2F6XqS06SpBg2KYLUIidOXjV4DkAug46ag1YqhM2OIdq88CdM3eUZszYHbQ7T4b9uWrrO8QQHMxFyaLW9Xms8rOzl5jaBtbbXYYY7CkPf2ps5QJ088gVCMs7w5Nz1b5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET static.addtoany.com/menu/svg/icons/telegram.js

104.22.70.197

200 OK

360 B

URL GET
static.addtoany.com/menu/svg/icons/telegram.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (360), with no line terminators
Size
360 B (360 bytes)
Hash
48f25c508c92c3601cf047609318001f
59117e825084c63a0dda48edec82c14a60e16f23
6415561e892cf9d614e7179f71353af4ceadfd641d71c42fe54c9420eb0d0138

HTTP Headers

GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"fb47b4f6548b6499923a1beed7472419"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ygsj61oOUAup5E5jzlqtbm8T1Gdyn0aOtPx4%2FlFKUJrDuWSp5FL9XjL7PQr3xhrWr20LKw%2FKTs2wuxddQ7FDX7%2B5Te3ftbCWgA6cQcWlVsoDV3nxf%2BdQjivimjLwWayotNImCq8Q"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 959439f7c83babd2-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET appnee.com/wp-content/themes/twentyfourteen/genericons/genericons.css

172.67.172.207

200 OK

31 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/genericons/genericons.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text, with very long lines (23046)
Size
31 kB (31045 bytes)
Hash
8604c201ca1b346289d82daf2b6c91f6
a2f313157b00dc601ce25da4fe43f14b9e7e5974
4d5679eb4ffe764c49e2fb1386bf3ef04139e7a5a9e867da46aa1045374d6925

HTTP Headers

GET /wp-content/themes/twentyfourteen/genericons/genericons.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H2gTwESCqnJXK%2FSRte%2FeQCFZI27JTjHB4QqKVdelHNxFBhSQ9MWdezJbAGjGadA3UI%2FIxIio8RhXON0SI9IXd7qoL35dhNCJDl35HfRmx02nKBJnuiF374U2QHcV"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
vary: Accept-Encoding
etag: W/"677d06c5-7945"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e5ca8d56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5418&min_rtt=84&rtt_var=5481&sent=69&recv=28&lost=0&retrans=0&sent_bytes=56461&recv_bytes=5427&delivery_rate=2836612&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=529&inflight_dur=75&x=40"

GET filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27404), with no line terminators
Size
27 kB (27404 bytes)
Hash
f2cf719646570cc700b0125fa73911e9
4e75a2f4084a36b8af8ed57c884e956aef0e3307
5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /89ed111dc7633df620ed792e7fb6678a/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: application/javascript
Content-Length: 11501
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 8
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 26e29c5715170c924b219b7a21655462
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET img.appnee.com/appnee.com/2025/NetGenius-1.webp

172.67.172.207

200 OK

45 kB

URL GET
img.appnee.com/appnee.com/2025/NetGenius-1.webp
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
RIFF (little-endian) data, Web/P image
Size
45 kB (45266 bytes)
Hash
78227076b146f1752541fd30a7cffe67
b9e49fc7f12ab0799defef3a4863f85975ed1317
1b57c6d9de0384649a8a0cd3fc945cc52e8117c5539e136c9a88716bb134a8b0

HTTP Headers

GET /appnee.com/2025/NetGenius-1.webp HTTP/1.1
Host: img.appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: image/webp
content-length: 45266
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EHkWoARZR48hLp2bDpp0BkY40sNdy0CDBdT5o1TQs004yAZUP173JtDhPzwwuGh65J7OiA6Wxk%2F3H0919h8IflRQRb6OPdHzhc7W8AMNZMyjtgMbpnVdQy23fX0nAkdGcg%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 30 May 2025 01:59:21 GMT
etag: "683910f9-b0d2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
cf-cache-status: MISS
cf-ray: 959439e5ea9156a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2616&min_rtt=0&rtt_var=2840&sent=90&recv=35&lost=0&retrans=0&sent_bytes=82420&recv_bytes=5737&delivery_rate=3271948&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=20159&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=592&inflight_dur=106&x=40"

GET static.addtoany.com/menu/page.js

104.22.70.197

200 OK

3.2 kB

URL GET
static.addtoany.com/menu/page.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
JavaScript source, ASCII text, with very long lines (3179), with no line terminators
Size
3.2 kB (3179 bytes)
Hash
57b268c32627d8d13671f43be7c47b84
0eebe8bc9958922a2a354b4abdca2f4d326f49e9
53d16f311b01e5f9b5e7dcb2ec11b11e5ed23e155ed05727a7a42472d608118f

HTTP Headers

GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript
cf-ray: 959439eabf849298-CPH
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
etag: W/"060b0026b51016bf08c9d4b4a73b7960"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0lIFM3bMTXormETVGYt3PcWDl0CQYBhqrP6wgDshgz8pBa7tZKMMErCPiQIQYSJg8yaFfRx6OWepPisOQ33ZPir0XqzfZWuwXdFVKU1NRUZ1ukzMoSx78g84PuC2IS1CwiI1zI8Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: HIT
age: 11080
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn.storageimagedisplay.com/cti/d5/a3/12/d5a312abfdfa9ee20e1f48212f48cae1/1722092076.jpg

45.133.44.1

200 OK

53 kB

URL GET
cdn.storageimagedisplay.com/cti/d5/a3/12/d5a312abfdfa9ee20e1f48212f48cae1/1722092076.jpg
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, progressive, precision 8, 300x250, components 3
Size
53 kB (53117 bytes)
Hash
fbcdfdb3ce4255e61104b2001d97dd66
93a76f55d716c3cc097648a3d86999889548b5b5
ac583640fff0c325cb5b2e65b0047953139ee94ddef253a7161fb305c6f58da1

HTTP Headers

GET /cti/d5/a3/12/d5a312abfdfa9ee20e1f48212f48cae1/1722092076.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:35 GMT
content-type: image/jpeg
content-length: 53117
server: nginx/1.21.6
last-modified: Sat, 27 Jul 2024 14:54:36 GMT
etag: "66a50a2c-cf7d"
expires: Sat, 05 Jul 2025 06:11:35 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D

142.250.178.68

200 OK

297 kB

URL GET
www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D
IP
142.250.178.68:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
JavaScript source, ASCII text, with very long lines (2279)
Size
297 kB (296856 bytes)
Hash
18b57f427b408e2c87b93f30bc7cf69f
e1b840786160249f98d8aa4e1a95b2b865c33dfd
937019b2f2c823a521aaccc41ea6ac1d16a1ea18403fe840951da73b3d980171

HTTP Headers

GET /cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 97217
date: Thu, 03 Jul 2025 06:11:36 GMT
expires: Thu, 03 Jul 2025 06:11:36 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 27 May 2025 21:10:37 GMT
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/css/frontend.css

172.67.172.207

200 OK

34 kB

URL GET
appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/css/frontend.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text, with very long lines (18284)
Size
34 kB (33992 bytes)
Hash
bdb1b1875211810615983dfa58586b0d
f0c26ffe3e1d419de28aebb826280fa0267f9698
8fe01562f90904b25111b17f00d653f60abab63182649ef0b5717a374402d60a

HTTP Headers

GET /wp-content/plugins/hashbar-wp-notification-bar/assets/css/frontend.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6rG4CNUOmWR82HJS59d2ROD4ldT5o1j07Y%2FMWBQmQWXN8yG9H%2FkGsebWcYiNqQRyHOdA7HEUayLDJDtJBOJtTdDE7q262M075Ro7OfRdbneVDmmsWdly9QUYkcAn"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 16 Apr 2025 08:53:02 GMT
vary: Accept-Encoding
etag: W/"67ff6fee-84c8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 1253307
cf-cache-status: HIT
cf-ray: 959439e5ca8956a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8730&min_rtt=1680&rtt_var=6352&sent=24&recv=19&lost=0&retrans=0&sent_bytes=5444&recv_bytes=4056&delivery_rate=328385&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=18049&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=364&inflight_dur=32&x=40"

GET appnee.com/wp-content/themes/twentyfourteen/fonts/font-lato.css

172.67.172.207

200 OK

6.1 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/fonts/font-lato.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text
Size
6.1 kB (6063 bytes)
Hash
20b7c6576519dc76c59d545a3cce9e78
9a0e25d74c0e0fdd24836841f84ed37cb402e016
54ea14ce19de326ac9b955d72710646a2c4ba477904cee6886618e9acfe6fb04

HTTP Headers

GET /wp-content/themes/twentyfourteen/fonts/font-lato.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qZ51JMdnJ5%2BFwdHx069imliS7R%2FCAprt5LaSRXd5ILSrm98%2B6WEJdqbFwtPA0lIOR34e42W%2B51BSO4%2FDEfIzWEyPtRXust8xMiEKl1sLc8vSo%2BpW3EIekWdnzi8%2F"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
vary: Accept-Encoding
etag: W/"677d06c5-17af"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 663580
cf-cache-status: HIT
cf-ray: 959439e5ca8c56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=7746&min_rtt=856&rtt_var=6732&sent=29&recv=20&lost=0&retrans=0&sent_bytes=12444&recv_bytes=4099&delivery_rate=2264221&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=22249&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=367&inflight_dur=34&x=40"

GET appnee.com/wp-content/plugins/add-to-any/addtoany.min.js

172.67.172.207

200 OK

129 B

URL GET
appnee.com/wp-content/plugins/add-to-any/addtoany.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
129 B (129 bytes)
Hash
5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HECrIc7B%2Bhc3JqTI%2FC86V%2BdWpvzM1x4dmQpZgpJiAU90%2FPfvB%2F%2FnMFgd2WcHdX7huOUJqRpq7BuvsbG8hmRAA0IzV9m3Ap42bMGqzB3owj4KyD3QlzC180WqDgL7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Fri, 22 Nov 2024 06:52:57 GMT
etag: W/"67402a49-81"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 464072
cf-cache-status: HIT
content-encoding: br
cf-ray: 959439e9eab156a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2531&min_rtt=0&rtt_var=1926&sent=269&recv=83&lost=0&retrans=0&sent_bytes=292716&recv_bytes=12858&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1020&inflight_dur=221&x=40"

GET filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27388), with no line terminators
Size
27 kB (27388 bytes)
Hash
9e05efadc800f793362cb0f2b42008b1
ac4b45b39b09a20f64873fa909396ea442a52950
20480e561f3914655bebdb737e426d2d648e5ff924918bd06a582ac950385aa9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /236ae4a58f1fd2df2e19cd1891936576/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: application/javascript
Content-Length: 11483
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 2
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0ca5745a7f9b122b58596a5bfb6e01f5
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-300-normal.woff2?ver=23

172.67.172.207

200 OK

23 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-300-normal.woff2?ver=23
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23236, version 1.0
Size
23 kB (23236 bytes)
Hash
716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429

HTTP Headers

GET /wp-content/themes/twentyfourteen/fonts/lato/lato-latin-300-normal.woff2?ver=23 HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/wp-content/themes/twentyfourteen/fonts/font-lato.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: font/woff2
content-length: 23236
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UHGQe%2B9b0w%2FZLthSrtyMPrYtpX%2ByrpL%2FSS7IR801yeA7n0cAqIjQ4GRFmfti040gSfLYC62cu3Eo0J3UKR3ftReRpUar2%2BUvA9W%2FmYokM6r%2BtW2io4tHcTrx5oig"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
etag: "677d06c5-5ac4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 223791
cf-cache-status: HIT
cf-ray: 959439e7ea9e56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2031&min_rtt=0&rtt_var=2728&sent=176&recv=59&lost=0&retrans=0&sent_bytes=190085&recv_bytes=8504&delivery_rate=8370852&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=31415&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=701&inflight_dur=151&x=40"

GET appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/frontend.js

172.67.172.207

200 OK

19 kB

URL GET
appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/frontend.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text
Size
19 kB (18618 bytes)
Hash
9c030405c93af16af604a1068be8b527
4a9c2fea21d3ad57910894affd94c1a77bb1289c
740c09c2237345e11719f24efeedcada2fe664d57768fcc61c2d8531840e2041

HTTP Headers

GET /wp-content/plugins/hashbar-wp-notification-bar/assets/js/frontend.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zy%2FeirleHiBbOHZ1g5ry56N3xAUKIIZAYzxxJ8kzFdjeb8JAXLvmL6%2BXcRMO8P%2FPOootarFeNT0FW6BnZFpmUYhYijaGgy%2Fr1i8kxfNkC77VH4feVG0zNfOcz5YF"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 16 Apr 2025 08:53:02 GMT
vary: Accept-Encoding
etag: W/"67ff6fee-48ba"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 1513527
cf-cache-status: HIT
cf-ray: 959439e9dab056a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2278&min_rtt=0&rtt_var=1894&sent=263&recv=81&lost=0&retrans=0&sent_bytes=287751&recv_bytes=12547&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1012&inflight_dur=214&x=40"

GET appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.172.207

302 Found

10 kB

URL GET
appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type

Size
10 kB (10098 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=Q_qlBmpy2qPOxpIfX6RgIuOEozUILgk2EyHNxGNPtDg-1751523094-1.2.1.1-9t_fm5QQ5Fg1_JR7cEx2oZZ5YjbJKf7UFCF17PdhiM3oSM1UzcL1V2GFo.YFMfYoIOmY_DG9Bfvisjs_MVw9oEu3APHBd74AW0eYaBoCMuTfY5nbpNDXtCOh0HWE6Ev_wVkeh6ACwjOdj.PNKlxVYy.xOFbP4SU49FFA2Ac3dnzwKZhq1pHvuc3OM8BhKLJcRaRbRJgkHbAfFKDP94dpwRD3xm9vIiH.Di7A8iZ8psY; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=writingfreedomdecember.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Thu, 03 Jul 2025 06:11:36 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CDPvfAHbczRuXvXXV9krw59ma7cK6qT9ULsU%2BqC91KJJtcdt187zrskK318NDJkTLLopHeQqz5lxp%2BZInJ5CxLnVE6KFBU11FjXp8Cc0apTT7%2FM0iHKGaA8qqEtL"}],"group":"cf-nel","max_age":604800}
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
cf-ray: 959439f64b0f56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2383&min_rtt=0&rtt_var=1242&sent=321&recv=107&lost=0&retrans=0&sent_bytes=338439&recv_bytes=27547&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=2999&inflight_dur=327&x=40"

POST translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.178.42

200 OK

131 B

URL POST
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.178.42:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://appnee.com/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 1177
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"clearcut-frontend-http-prod-hiqos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/httpsserver2/clearcut-frontend-http-prod-hiqos"}]}
content-security-policy-report-only: script-src 'none';form-action 'none';frame-src 'none'; report-uri https://csp.withgoogle.com/csp/httpsserver2/clearcut-frontend-http-prod-hiqos
access-control-allow-origin: https://appnee.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 03 Jul 2025 06:11:47 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.MOhKAPSS1-s.L.F4.O/am=AGA/d=0/rs=AN8SPfrxFroEQ0mmbIPJ8GhnCu7pfJQCLw/m=el_main_css

142.250.74.99

200 OK

20 kB

URL GET
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.MOhKAPSS1-s.L.F4.O/am=AGA/d=0/rs=AN8SPfrxFroEQ0mmbIPJ8GhnCu7pfJQCLw/m=el_main_css
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
ASCII text, with very long lines (20298), with no line terminators
Size
20 kB (20298 bytes)
Hash
183cb263396f0b39789db1ae3f1e1b20
502fcf18fa8d865213e282824ab2dfaadb9b8beb
6a91c12a6fd1664f4d594040374fda61fe5b02fd3aee5f0c877ccbfc49488ec5

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.MOhKAPSS1-s.L.F4.O/am=AGA/d=0/rs=AN8SPfrxFroEQ0mmbIPJ8GhnCu7pfJQCLw/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3969
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Jul 2025 18:27:38 GMT
expires: Wed, 01 Jul 2026 18:27:38 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 May 2025 01:09:21 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 128637
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdn.storageimagedisplay.com/cti/41/00/e1/4100e1ec48d8ae82b50d31d374fc4537/1707813732.png

45.133.44.1

200 OK

104 kB

URL GET
cdn.storageimagedisplay.com/cti/41/00/e1/4100e1ec48d8ae82b50d31d374fc4537/1707813732.png
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size
104 kB (103467 bytes)
Hash
e661e37b3ce102135ded3de19e25ca47
cf4180faec136ff3e1a04b059676bde9c9654bee
b6f3a2708c6c43dfca6ee30be64a520089afce3736ec5cdad8a26336a9c4eff3

HTTP Headers

GET /cti/41/00/e1/4100e1ec48d8ae82b50d31d374fc4537/1707813732.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:35 GMT
content-type: image/png
content-length: 103467
server: nginx/1.21.6
last-modified: Tue, 13 Feb 2024 08:42:21 GMT
etag: "65cb2b6d-1942b"
expires: Sat, 05 Jul 2025 06:11:35 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET static.addtoany.com/menu/svg/icons/wechat.js

104.22.70.197

200 OK

1.2 kB

URL GET
static.addtoany.com/menu/svg/icons/wechat.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (1193), with no line terminators
Size
1.2 kB (1193 bytes)
Hash
b0e286d45d3573a78afc388522472eac
0981eaedebb795e282ce807724037b8088adf405
315a36857f81419cc32e1f7bf3caf201f1c28fb86e534d4084cea148cd3f4269

HTTP Headers

GET /menu/svg/icons/wechat.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"9c881a24f86ad7f3784640135b65b7a0"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=spwZbyjz%2BIJCJb0FmUkxZodFcS%2BGjP%2FFVNpxT9bA%2BMd67U%2FozCZGhSK8JI0tgTfWgvX%2Fcg3Rp16GVDHg09Wjzg5yAO5Yyc5pAd0ayF2yWHleE7%2Foa%2FfYds59lHYw3l6ZderyweaC5CEKeet1eqe8AHvI"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 959439f7a822abd2-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET cse.google.com/adsense/search/async-ads.js

142.250.178.46

200 OK

141 kB

URL GET
cse.google.com/adsense/search/async-ads.js
IP
142.250.178.46:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
JavaScript source, ASCII text, with very long lines (1888)
Size
141 kB (140792 bytes)
Hash
ac4bbad262f688ed45b33b15f43f71bd
c26b0014161522e67d655f8158aba3c7d63d8b70
6ce729e590b33cbf1a30b3f5b33cc681558cd6909a060a9c54cc5916e566031b

HTTP Headers

GET /adsense/search/async-ads.js HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Thu, 03 Jul 2025 06:11:37 GMT
expires: Thu, 03 Jul 2025 06:11:37 GMT
cache-control: private, max-age=3600
etag: "7200681302754757675"
x-content-type-options: nosniff
link: <https://syndicatedsearch.goog>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.google.com/cse/static/images/1x/en/branding.png

142.250.178.68

200 OK

1.6 kB

URL GET
www.google.com/cse/static/images/1x/en/branding.png
IP
142.250.178.68:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
PNG image data, 123 x 15, 8-bit/color RGBA, non-interlaced
Size
1.6 kB (1556 bytes)
Hash
9a63187ccc27d018cedb3a932f5aa9aa
5a59b006635e93492bfd06a5c26f8b6e4181dc71
6ca8050d203fbcb8613c5b13d0bf8cfccb60e97f82334702edd7a48d09489d68

HTTP Headers

GET /cse/static/images/1x/en/branding.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1556
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jun 2025 18:02:10 GMT
expires: Fri, 26 Jun 2026 18:02:10 GMT
cache-control: public, max-age=31536000
age: 562167
last-modified: Thu, 07 Dec 2023 21:00:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

POST appnee.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.8307993564694984:1751519594:D4C0dCshdrFYuU7-y1UbGYJeRlvWaYTmO-y0rEpOPEE/959439ce0c21b4ff

172.67.172.207

200 OK

0 B

URL POST
appnee.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.8307993564694984:1751519594:D4C0dCshdrFYuU7-y1UbGYJeRlvWaYTmO-y0rEpOPEE/959439ce0c21b4ff
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.8307993564694984:1751519594:D4C0dCshdrFYuU7-y1UbGYJeRlvWaYTmO-y0rEpOPEE/959439ce0c21b4ff HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12072
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WwEvHl4uTENPGB%2Fx%2FLOaO4%2B0gkJLYCaIqOrwzsKtB9Fh%2FIiEhdj%2FUKwgPdVSMFHMXfAAYdnBxKWfUxcH75Hr075FbMBCNfS6ITTDEt%2Fgd%2Fhb5GPW06O9Wmp%2F2NGU"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=Q_qlBmpy2qPOxpIfX6RgIuOEozUILgk2EyHNxGNPtDg-1751523094-1.2.1.1-9t_fm5QQ5Fg1_JR7cEx2oZZ5YjbJKf7UFCF17PdhiM3oSM1UzcL1V2GFo.YFMfYoIOmY_DG9Bfvisjs_MVw9oEu3APHBd74AW0eYaBoCMuTfY5nbpNDXtCOh0HWE6Ev_wVkeh6ACwjOdj.PNKlxVYy.xOFbP4SU49FFA2Ac3dnzwKZhq1pHvuc3OM8BhKLJcRaRbRJgkHbAfFKDP94dpwRD3xm9vIiH.Di7A8iZ8psY; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=appnee.com; Expires=Fri, 03 Jul 2026 06:11:34 GMT
cf-ray: 959439eeaabf56a2-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2340&min_rtt=0&rtt_var=1541&sent=319&recv=105&lost=0&retrans=0&sent_bytes=337467&recv_bytes=26898&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1783&inflight_dur=304&x=40"

GET cdn.storageimagedisplay.com/si/39/cd/60/39cd60aea51a57d4d8f6ba7061da8ba4/1723680004.png

45.133.44.1

200 OK

21 kB

URL GET
cdn.storageimagedisplay.com/si/39/cd/60/39cd60aea51a57d4d8f6ba7061da8ba4/1723680004.png
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3
Size
21 kB (21151 bytes)
Hash
b312b07679c37478b2be46280bd8966f
c5d1b6d62319dec8d2127dbe5074b6aeec16de72
7e8eb92872d20ea1ecd58aa4a8763a7e0a6399479429f831210f5ec41b44b445

HTTP Headers

GET /si/39/cd/60/39cd60aea51a57d4d8f6ba7061da8ba4/1723680004.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:35 GMT
content-type: image/png
content-length: 21151
server: nginx/1.21.6
last-modified: Thu, 15 Aug 2024 00:00:05 GMT
etag: "66bd4505-529f"
expires: Sat, 05 Jul 2025 06:11:35 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET appnee.com/wp-includes/js/jquery/jquery.masonry.min.js

172.67.172.207

200 OK

1.8 kB

URL GET
appnee.com/wp-includes/js/jquery/jquery.masonry.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (1626)
Size
1.8 kB (1819 bytes)
Hash
cd0eb3406096ff80266e7c9d7d419186
0e3709691bf96233766de30e2fd473b84166c5b6
c2e606e1fc82ea3a554aad5d0520e25d2677b89a891dc5c49e7ace08fce92e25

HTTP Headers

GET /wp-includes/js/jquery/jquery.masonry.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mavNGpGadtHRPWYiVZ8BKfedltMse6XEv8gCmZQeSJi69AItXGlawk%2FnE3edrjo%2BMYr67Gyx22zRR6fLCE6HkYMaUrg%2FTnXSIjGdDWuk3R9MLWaQDFL6APnAMU1t"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 19 Aug 2016 08:55:30 GMT
vary: Accept-Encoding
etag: W/"57b6c982-71b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 927121
cf-cache-status: HIT
cf-ray: 959439e9aaa456a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1576&min_rtt=0&rtt_var=957&sent=242&recv=73&lost=0&retrans=0&sent_bytes=272358&recv_bytes=10759&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=983&inflight_dur=200&x=40"

GET www.google.com/cse/static/element/197b0e284b1b1f14/default+en.css

142.250.178.68

200 OK

42 kB

URL GET
www.google.com/cse/static/element/197b0e284b1b1f14/default+en.css
IP
142.250.178.68:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint4F:74:10:0A:01:21:55:4F:03:B9:F9:8B:6A:DE:A2:47:7C:44:89:73
ValidityMon, 02 Jun 2025 08:37:21 GMT - Mon, 25 Aug 2025 08:37:20 GMT

File type
ASCII text
Size
42 kB (41700 bytes)
Hash
baccb7180fe061b63ed061ec10c3b0c8
bfb31590ba6e758eb8f25735b564d7e4a0919025
a5402de70228d4bf5379b518225b702918f6ae277e9293f9d16334c2b1fa31e3

HTTP Headers

GET /cse/static/element/197b0e284b1b1f14/default+en.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 9068
date: Thu, 03 Jul 2025 06:11:35 GMT
expires: Thu, 03 Jul 2025 06:11:35 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 27 May 2025 21:10:37 GMT
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET professionaltrafficmonitor.com/stats

18.194.106.70

200 OK

40 B

URL GET
professionaltrafficmonitor.com/stats
IP
18.194.106.70:443
ASN
#16509 AMAZON-02

Requested by
https://appnee.com/netgenius/
Certificate
IssuerAmazon
Subjectprotrafficinspector.com
Fingerprint5D:D5:8D:EB:A4:50:13:0D:7C:33:71:82:B8:02:49:4F:D6:31:B6:E6
ValidityTue, 01 Jul 2025 00:00:00 GMT - Thu, 30 Jul 2026 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
953f7e72d8292d7ac3f4e225f46db500
0a570f808ab778817225d6492da5a0038211f167
102fb9e511a205832012ed3c056f20292906bd0390944d36c10d1e2604c98945

HTTP Headers

GET /stats HTTP/1.1
Host: professionaltrafficmonitor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://appnee.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Sun, 01 Jul 2035 06:11:34 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET wearychallengeraise.com/watch.924748863845.js?key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

172.240.108.68

307 Temporary Redirect

5.4 kB

URL GET
wearychallengeraise.com/watch.924748863845.js?key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type

Size
5.4 kB (5401 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.924748863845.js?key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://appnee.com
access-control-allow-credentials: true
location: https://wearychallengeraise.com/watch.924748863845.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=7517b2e25ad68e4df6071639b3ee36c85c30c6cb2c9d70bdd827389f41b98125efcced182815c7373c22ad703dbee749393476162b67d8045ca0675d07b2fc8bcb4d8452ac6e6c8a9cc5ee3a77eec6dadd653661d01660810da200&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
set-cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoxNzA2MTkxMSwiayI6IjIzNmFlNGE1OGYxZmQyZGYyZTE5Y2QxODkxOTM2NTc2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo1OTc5NCwicGlkIjo0OTIxNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjoyNSwicHQiOjQsInBrIjoibjBqY3ZzdDE2IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjI2NjU2MTExNSwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEzNjkyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMzQuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2FwcG5lZS5jb20vbmV0Z2VuaXVzLyIsImFyIjpbXX19.05kucGwDvXztM8WBvySSz7UN-A0Tyzf1TnuARohsVmU; expires=Thu, 03 Jul 2025 06:12:36 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 1
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 42e70ef229315cf667806ef835fb472e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET static.addtoany.com/menu/svg/icons/x.js

104.22.70.197

200 OK

297 B

URL GET
static.addtoany.com/menu/svg/icons/x.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with no line terminators
Size
297 B (297 bytes)
Hash
885be296b72c01b844a2addc97be03db
0696c38c7746aa5c930b4a679282a156fc69784f
122ed4db2019348aef89a605e3eb79c6004f5727f16144dc46b61f31ee131764

HTTP Headers

GET /menu/svg/icons/x.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f78815abd2-CPH
access-control-allow-origin: *
cache-control: max-age=864000, stale-while-revalidate=30, public
etag: W/"7cdbf2d5d94ad6e7bf6e7cc1418dd608"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZMz9rRO6qni39RWQSra1azz6YWZWAJteG1cQj4nUpKJGS1QPPUA%2FuOBmv7TlHKjPXbhIfFOUMLPY%2F69GVgzWqyFsOgBRIiM3qLBIHjSNBZqITrnZVYIkZb3V9NRNGRz0DFvmS5fc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: MISS
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET appnee.com/wp-content/plugins/dynamic-to-top/js/libs/jquery.easing.js

172.67.172.207

200 OK

3.7 kB

URL GET
appnee.com/wp-content/plugins/dynamic-to-top/js/libs/jquery.easing.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
Unicode text, UTF-8 text, with very long lines (1956)
Size
3.7 kB (3678 bytes)
Hash
c6a0ac2322664d267c2c4aadd45ebb75
e0f356f7a87dbe88af9ea5e8f502aaa9caf9ab6a
ce64de193caea884bd4d4a7723933ab844506b7a62ec35c52911e72588c0e62f

HTTP Headers

GET /wp-content/plugins/dynamic-to-top/js/libs/jquery.easing.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=13AuKdyRDywgnhdX0I0plRY1N40TT%2BKRlRcrEaiHtwL3ghxp0evCg6gg4Zu3dwqkC%2F88M8vPYwujYBLmaX4gIaVYMzO5%2Bwnu3aX5AQs7cSVsrsuPc83muI%2B4EzHi"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 20 Dec 2017 14:27:22 GMT
vary: Accept-Encoding
etag: W/"5a3a734a-e5e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 45474
cf-cache-status: HIT
cf-ray: 959439e9aaa556a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1576&min_rtt=0&rtt_var=957&sent=249&recv=73&lost=0&retrans=0&sent_bytes=280117&recv_bytes=10759&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=987&inflight_dur=202&x=40"

GET cse.google.com/cse.js?cx=013013290873966176362:95o1jilldgw

142.250.178.46

200 OK

9.2 kB

URL GET
cse.google.com/cse.js?cx=013013290873966176362:95o1jilldgw
IP
142.250.178.46:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
JavaScript source, ASCII text, with very long lines (3486)
Size
9.2 kB (9201 bytes)
Hash
a4e4e519d58dcc61ea43fdb4d752f9ea
f7e995ebbb5ae77b0e31dd5e6e6d8ac23b971a71
bd947e6ed2115810b2ded15fc63880f596c99894676cc2eb975f33c0b8e8fc95

HTTP Headers

GET /cse.js?cx=013013290873966176362:95o1jilldgw HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-_fHBPVfveyAHBJyMUHHRZg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Thu, 03 Jul 2025 06:11:34 GMT
server: gws
content-length: 3236
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET appnee.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js?

172.67.172.207

200 OK

10 kB

URL GET
appnee.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js?
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (10054), with no line terminators
Size
10 kB (10054 bytes)
Hash
57ee397648549004e038d1fd843c20ae
b1d747d16eeebcb6c6deee3d1526f927317f6945
2cd46a57bfd0d77ccf0bbaf9118582aec8b4b2d88d8c6c4ef98cb1352c6783f6

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js? HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uWFxnZ2r2ChwqZVHp7fhXIyyxSt6TeIfXaIwGE8YYqsT1CXopmUlOrK0zKC9nqSk8Kcej%2FBHgKbojZy%2BJp9RPJD1b0tTOU5%2FJaGyNNWWc%2FnZUtAnwN4cZYlLPkiC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
content-encoding: br
cf-ray: 959439eb9ab656a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2768&min_rtt=0&rtt_var=1435&sent=305&recv=92&lost=0&retrans=0&sent_bytes=330864&recv_bytes=13691&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1286&inflight_dur=301&x=40"

GET www.profitabledisplaycontent.com/watch.271811411458.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

172.240.253.132

307 Temporary Redirect

5.1 kB

URL GET
www.profitabledisplaycontent.com/watch.271811411458.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type

Size
5.1 kB (5106 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.271811411458.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://appnee.com
access-control-allow-credentials: true
location: https://www.profitabledisplaycontent.com/watch.271811411458.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=14c785d8aeaaef3d3df09be285a21ccad75952ab0e72bc9171ed11832731cb3dbd4b8735ce9dcebfd4a9b133469b7db318c2a11c4616483b9b5f4ba497eb44d79415adddf94a21848ac04c93842b8c22b277f33df2713f2342796c&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
set-cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; expires=Thu, 03 Jul 2025 06:12:35 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 1
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2af1d9b767a45b416cb8b4be28b8c59f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET static.addtoany.com/menu/svg/icons/a2a.js

104.22.70.197

200 OK

182 B

URL GET
static.addtoany.com/menu/svg/icons/a2a.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with no line terminators
Size
182 B (182 bytes)
Hash
baf0595a19bdc7f7497b74731d2166c4
fd5714384c52fc0338083574434d12328313896c
3dab93242ee573bbcfc22c9d15acd47794e500ed44e6bd48a35400b39d65aa43

HTTP Headers

GET /menu/svg/icons/a2a.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f7d861abd2-CPH
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"0aca4ea1e5f8f250126a8e0c597dd969"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vbmPYV5d9krrzua%2FPZQIhOznAmwcaTD4abG%2BdbDvo5HBy%2FABuCRmxukpFsHGbR%2BhGGJOhnZxpCtG0jVzHfNW8aB%2FJjhD3v9J1Dgw1aTKgQLZFdBtSwnkwe5317nJc4e5t3arBem6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET cdn.storageimagedisplay.com/cti/27/79/a6/2779a63682a334fb81f67fec567c61bf/1716370124.jpg

45.133.44.1

200 OK

56 kB

URL GET
cdn.storageimagedisplay.com/cti/27/79/a6/2779a63682a334fb81f67fec567c61bf/1716370124.jpg
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, baseline, precision 8, 160x300, components 3
Size
56 kB (56348 bytes)
Hash
4ac88fa7584329c978329f8fac34c81d
e95bf132fc680635062ca29fd2a324bb689c4425
baee96cea974c341128cb905b194bd031cb1f60ff4fcdd25507450dc00e44239

HTTP Headers

GET /cti/27/79/a6/2779a63682a334fb81f67fec567c61bf/1716370124.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:37 GMT
content-type: image/jpeg
content-length: 56348
server: nginx/1.21.6
last-modified: Wed, 22 May 2024 09:28:52 GMT
etag: "664dbad4-dc1c"
expires: Sat, 05 Jul 2025 06:11:37 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET www.google.com/cse/static/css/v2/clear.png

142.250.178.68

200 OK

1.0 kB

URL GET
www.google.com/cse/static/css/v2/clear.png
IP
142.250.178.68:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced
Size
1.0 kB (1018 bytes)
Hash
2df778bf2e22d52fe849babb330ec977
0f833f030bb43f282473bddd3a33b5f8cba7a845
329d1a750114920332eadc55c129957d9dbe5a1b25745e2f7e0ed4fad75e04cd

HTTP Headers

GET /cse/static/css/v2/clear.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/cse/static/element/197b0e284b1b1f14/default+en.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jun 2025 13:05:25 GMT
expires: Tue, 30 Jun 2026 13:05:25 GMT
cache-control: public, max-age=31536000
age: 234372
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET appnee.com/wp-content/themes/twentyfourteen/style.css

172.67.172.207

200 OK

82 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/style.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text, with very long lines (417)
Size
82 kB (82533 bytes)
Hash
a28f954fe0ab4447a8defae7103b5388
8cc082e87e19f211c8089ffe328f87779de4f670
be8e85c02a8536a02f0e2f031e3db5a92f73ce26d4719334b436b78c6580dd99

HTTP Headers

GET /wp-content/themes/twentyfourteen/style.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cMbiu6873BAy3%2Bz2dt5qOwbvGP5seHgl04QqAJHjo4v3H9D7ntrs7NGI%2BtT3uydBxdQTtxv58TqSXz8W7yl4Y2JXhpWj655vPNvb4VGOJB6wW4mHrZhCeOAnd%2FUe"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
vary: Accept-Encoding
etag: W/"677d06c5-14265"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 464072
cf-cache-status: HIT
cf-ray: 959439e5ca8e56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8730&min_rtt=1680&rtt_var=6352&sent=29&recv=19&lost=0&retrans=0&sent_bytes=12444&recv_bytes=4056&delivery_rate=328385&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=18049&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=366&inflight_dur=34&x=40"

GET appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/js.cookie.min.js

172.67.172.207

200 OK

2.0 kB

URL GET
appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/js.cookie.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (1689)
Size
2.0 kB (2022 bytes)
Hash
6cd48c176636ab8c478eb0d9434d6f7e
913792a03a28335ebff35ff06f0371253cac4be2
a1e8ff6e3433451a637658e81616852233d86684186eab93629b79c94d15b28f

HTTP Headers

GET /wp-content/plugins/hashbar-wp-notification-bar/assets/js/js.cookie.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2oeUdwSGInw86nVUHOE%2FIU1%2FPVO16EFpHfQNI2ULSF6KTpo2oRUUqKWJY%2FbHr0xVT8lZqOuVUFR5AwLHXog68sNZ6tjdGi4mgSsG8iWNBd5LMzr20Bq2R9jQN6HX"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 16 Apr 2025 08:53:02 GMT
vary: Accept-Encoding
etag: W/"67ff6fee-7e6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 45474
cf-cache-status: HIT
cf-ray: 959439e9daaf56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2278&min_rtt=0&rtt_var=1894&sent=261&recv=81&lost=0&retrans=0&sent_bytes=285853&recv_bytes=12547&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1011&inflight_dur=214&x=40"

GET appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-400-normal.woff2?ver=23

172.67.172.207

200 OK

24 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-400-normal.woff2?ver=23
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /wp-content/themes/twentyfourteen/fonts/lato/lato-latin-400-normal.woff2?ver=23 HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/wp-content/themes/twentyfourteen/fonts/font-lato.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: font/woff2
content-length: 23580
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kcoVgnIx6mqS00RXeKa5a4O9deymiQrB4Y8NvhluWmnnKtabIv5R7xjwtZ6NA3EBj4vwdQwTLZ80h6ymE%2FwNbTDDF5pkL%2F%2FcDovucR1sJTIvfPIeblIVa4tGj3zC"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
etag: "677d06c5-5c1c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 16708
cf-cache-status: HIT
cf-ray: 959439e7da9d56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3117&min_rtt=0&rtt_var=4122&sent=157&recv=54&lost=0&retrans=0&sent_bytes=165256&recv_bytes=7935&delivery_rate=6696649&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=29285&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=691&inflight_dur=147&x=40"

GET appnee.com/netgenius/

172.67.172.207

200 OK

90 kB

URL User Request GET
appnee.com/netgenius/
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9009), with CRLF, LF line terminators
Size
90 kB (89996 bytes)
Hash
2fb3e0bb941ecfa83b483baa2499cd5c
48e61bd9126598bd71c9b924ae002f16fcec5c81
e03bea38c6b6a4d1548f75118f2cc579191ecc918975d2842145b627e262a1a3

HTTP Headers

GET /netgenius/ HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
link: <https://appnee.com/wp-json/>; rel="https://api.w.org/", <https://appnee.com/wp-json/wp/v2/posts/7499>; rel="alternate"; title="JSON"; type="application/json", <https://appnee.com/?p=7499>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2R3uO28sOsGL%2Bddxs0PIq448iTPp04fNy6u9%2FI%2B33q4o5fsACPVuHLbBN48N0GpbcTaU7mVp9g9DKCNRccTGPbt0uy2IScL7JFwGo7rfA7TPzxvP8dBUeuU0%2FfqH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 959439ce0c21b4ff-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfCacheStatus;desc="DYNAMIC", cfOrigin;dur=3389,cfEdge;dur=40, cfL4;desc="?proto=TCP&rtt=6130&min_rtt=463&rtt_var=11341&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3267&recv_bytes=1251&delivery_rate=8074349&cwnd=254&unsent_bytes=0&cid=b07bf93187270947&ts=3459&x=0"
X-Firefox-Spdy: h2

GET appnee.com/wp-content/plugins/cool-tag-cloud/inc/images/silver-right.png

172.67.172.207

200 OK

843 B

URL GET
appnee.com/wp-content/plugins/cool-tag-cloud/inc/images/silver-right.png
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
PNG image data, 402 x 50, 8-bit colormap, non-interlaced
Size
843 B (843 bytes)
Hash
c52275a9a06bc620fd6781e7482c13dd
ba455abaf216ad05f398ce6989290652f09bddb0
2d27c29095dea63352f123ae16072ffbc141969fd70133b3b7c8cef75f0bcb47

HTTP Headers

GET /wp-content/plugins/cool-tag-cloud/inc/images/silver-right.png HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/wp-content/plugins/cool-tag-cloud/inc/cool-tag-cloud.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: image/png
content-length: 843
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FShL6pvXKrQNKRyu3ol%2FPwm9uEcUKytAU2hpMO77wBxMcfTtE6WUVdgCPzGwqqyioBQO%2BBDOs7KtrxtkPgGPw6%2FSoAGlAnJk9Ru3O472DHuPsI6GH5Q2tVbA4kuH"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 11 Apr 2023 18:52:56 GMT
etag: "6435ac88-34b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 45473
cf-cache-status: HIT
cf-ray: 959439e7aa9a56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1363&min_rtt=0&rtt_var=821&sent=153&recv=51&lost=0&retrans=0&sent_bytes=163595&recv_bytes=6756&delivery_rate=6696649&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=29285&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=656&inflight_dur=130&x=40"

GET www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.99

200 OK

1.8 kB

URL GET
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.MOhKAPSS1-s.L.F4.O/am=AGA/d=0/rs=AN8SPfrxFroEQ0mmbIPJ8GhnCu7pfJQCLw/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Jul 2025 02:22:04 GMT
expires: Thu, 02 Jul 2026 02:22:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 100173
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET nannyirrationalacquainted.com/watch.1246839373931.js?key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.12

307 Temporary Redirect

5.4 kB

URL GET
nannyirrationalacquainted.com/watch.1246839373931.js?key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectnannyirrationalacquainted.com
Fingerprint2A:C3:FA:F0:67:BA:AA:76:2F:14:F9:D5:47:AA:D5:03:EA:52:31:54
ValidityThu, 19 Jun 2025 00:50:28 GMT - Wed, 17 Sep 2025 00:50:27 GMT

File type

Size
5.4 kB (5405 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1246839373931.js?key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: nannyirrationalacquainted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Location: https://nannyirrationalacquainted.com/watch.1246839373931.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=15328ededab6b2fae4605a2838b4a5a6ba3e6771ba588b1d3a404264a43c7bf8e20b4bfa5ac7ddc9c16b17999f2b907e643c5761f1b4d4a24148466794f5fef3bc047d45c4d226dcd413a85cb940632cf9a2aaccfe91915f4ee4&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.05kucGwDvXztM8WBvySSz7UN-A0Tyzf1TnuARohsVmU; expires=Thu, 03 Jul 2025 06:12:36 GMT; path=/; secure; SameSite=None
Host: nannyirrationalacquainted.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 57b28d69b9d663828535c576329acbfe
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

POST appnee.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.5579669740853394:1751519593:nHJD-jrmBOfcxFD_rxDy_viHjrROevgynXDhPA9YmJk/959439ce0c21b4ff

172.67.172.207

200 OK

0 B

URL POST
appnee.com/cdn-cgi/challenge-platform/h/g/jsd/r/0.5579669740853394:1751519593:nHJD-jrmBOfcxFD_rxDy_viHjrROevgynXDhPA9YmJk/959439ce0c21b4ff
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.5579669740853394:1751519593:nHJD-jrmBOfcxFD_rxDy_viHjrROevgynXDhPA9YmJk/959439ce0c21b4ff HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12074
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Cookie: cf_clearance=Q_qlBmpy2qPOxpIfX6RgIuOEozUILgk2EyHNxGNPtDg-1751523094-1.2.1.1-9t_fm5QQ5Fg1_JR7cEx2oZZ5YjbJKf7UFCF17PdhiM3oSM1UzcL1V2GFo.YFMfYoIOmY_DG9Bfvisjs_MVw9oEu3APHBd74AW0eYaBoCMuTfY5nbpNDXtCOh0HWE6Ev_wVkeh6ACwjOdj.PNKlxVYy.xOFbP4SU49FFA2Ac3dnzwKZhq1pHvuc3OM8BhKLJcRaRbRJgkHbAfFKDP94dpwRD3xm9vIiH.Di7A8iZ8psY; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=writingfreedomdecember.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iVTOysWE7VEvqamqqVa%2F4bId94GcaDl8xJLv2EFWmGxm1MrBcAtOEumMTxlpmsXlaPkTTR7YJeaFK0WIe4Eob2I%2B0v09G2JaxuaYSNe9q0SFFU26x6hPcKSVK9To"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=g2SGAAgFeVZnSP5WUDsnSTUO5YxvBrnp51nMJpbzURo-1751523096-1.2.1.1-jDvwmVuvg_Hg9egyZWaot.uqd94CJXUwRyJ5Z77kHlgsDy3U1lCQX0_tgh7NIgUok790GlWkY5TTjDqBZb8AuT8vLcP0PVTSsiRmHkqT8EPQWqobxkT5_37YthcpzFLFtARqHYIS_iiIBnEGTX0mM.rBjonyRSaikRNbt0eCD4y6xeYXrVCsK0m65ouMf4gBgx015X5dO56qMPiGAxI.xjPeFENsPwSlTc9XEVpNV3Q; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=appnee.com; Expires=Fri, 03 Jul 2026 06:11:36 GMT
cf-ray: 959439fbbb7656a2-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2412&min_rtt=0&rtt_var=1369&sent=338&recv=122&lost=0&retrans=0&sent_bytes=345138&recv_bytes=43518&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=3868&inflight_dur=375&x=40"

GET filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27404), with no line terminators
Size
27 kB (27404 bytes)
Hash
f2cf719646570cc700b0125fa73911e9
4e75a2f4084a36b8af8ed57c884e956aef0e3307
5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /89ed111dc7633df620ed792e7fb6678a/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: application/javascript
Content-Length: 11501
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 6
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: bd2b31dbcb64981e94c73211f519729f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET clients1.google.com/generate_204

142.250.178.110

204 No Content

0 B

URL GET
clients1.google.com/generate_204
IP
142.250.178.110:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /generate_204 HTTP/1.1
Host: clients1.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 03 Jul 2025 06:11:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js

172.240.253.132

200 OK

26 kB

URL GET
filletfiguredconstrain.com/34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (25594), with no line terminators
Size
26 kB (25596 bytes)
Hash
42d1f32e00274a2266c9c76eff529e19
7cd14ebe483be786464a9505aa18abaa73767982
0f771961c8ba258641b539279e4a414b851d91207a04c578f7b8dee975d3bb52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /34c6e2cfaa7bc9c51be929ea9e1ad9eb/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:33 GMT
Content-Type: application/javascript
Content-Length: 9535
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 7
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 63322e6a7ff129268b321c78125c8eed
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-900-normal.woff2?ver=23

172.67.172.207

200 OK

22 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-900-normal.woff2?ver=23
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22504, version 1.0
Size
22 kB (22504 bytes)
Hash
1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92

HTTP Headers

GET /wp-content/themes/twentyfourteen/fonts/lato/lato-latin-900-normal.woff2?ver=23 HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/wp-content/themes/twentyfourteen/fonts/font-lato.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: font/woff2
content-length: 22504
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mzxaA3hhyBEZ%2FNNOJgbw1pQOqbBxDz8tkU5aKa2wQ5NCcBTHeEPuxA6csXb8v8WLv23YMlFDj4OG%2Fy3tUoLYqB7pMG3e7E5z4ID%2Btv%2FnSGr3L5Jp7LK0%2BlCnQSkT"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
etag: "677d06c5-57e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
cf-cache-status: MISS
cf-ray: 959439e7da9c56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2092&min_rtt=0&rtt_var=1793&sent=194&recv=62&lost=0&retrans=0&sent_bytes=214563&recv_bytes=8637&delivery_rate=8370852&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=31415&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=778&inflight_dur=158&x=40"

GET appnee.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js?

172.67.172.207

200 OK

10 kB

URL GET
appnee.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js?
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (10098), with no line terminators
Size
10 kB (10098 bytes)
Hash
3f04964068dc2ccda3261a55c04484a5
9d93300522a885e061b67b9a63ea7305c1d16891
732117adfd4a9534492e8c9c5dc8259fade4761d724bc0830cf0921c2fff81de

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js? HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=Q_qlBmpy2qPOxpIfX6RgIuOEozUILgk2EyHNxGNPtDg-1751523094-1.2.1.1-9t_fm5QQ5Fg1_JR7cEx2oZZ5YjbJKf7UFCF17PdhiM3oSM1UzcL1V2GFo.YFMfYoIOmY_DG9Bfvisjs_MVw9oEu3APHBd74AW0eYaBoCMuTfY5nbpNDXtCOh0HWE6Ev_wVkeh6ACwjOdj.PNKlxVYy.xOFbP4SU49FFA2Ac3dnzwKZhq1pHvuc3OM8BhKLJcRaRbRJgkHbAfFKDP94dpwRD3xm9vIiH.Di7A8iZ8psY; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=writingfreedomdecember.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript; charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7%2ByfrPzbZWhRX7dOIyAoqKiTZ9r7KWhNcUpvd2C0u2IwZ%2BQJlH85rPCMI937Y3Joq9wqRFFWnWJmJnsoIKepRtJKkgkIS6Vt8pBUdiy2%2BMvWaZ0Po2BFYay0ERoz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
content-encoding: br
cf-ray: 959439f8bb4b56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2655&min_rtt=0&rtt_var=1177&sent=325&recv=111&lost=0&retrans=0&sent_bytes=339393&recv_bytes=30281&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=3391&inflight_dur=374&x=40"

GET static.addtoany.com/menu/svg/icons/viber.js

104.22.70.197

200 OK

1.0 kB

URL GET
static.addtoany.com/menu/svg/icons/viber.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (1003), with no line terminators
Size
1.0 kB (1003 bytes)
Hash
aeffbbeba6dd343b89fdc22cdf23f8c8
7be9f0a8fbd22f85cd4408ed04b69e98cbb79de7
c38246b300667ea8ab28940a729e65168f981baf8adc8d708c299e85b9e2dcee

HTTP Headers

GET /menu/svg/icons/viber.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f7c84cabd2-CPH
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"ab1da422605fdb35fd02440984d36475"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jy2ADAEtoPfurlGThiIP17a%2BjJg6bKsxxG4jOeDsYnHfwlNfD1q3eguidwO5f1WrtWxV0j7eu%2FRIAYUczkntpNBoBw8jO0AktQo3aJ9UfHORmidbBCXletVF71lgJEumZSf4sJ%2Bw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.172.207

302 Found

10 kB

URL GET
appnee.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type

Size
10 kB (10054 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Thu, 03 Jul 2025 06:11:34 GMT
content-length: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WR%2BeFfFjul9UJVUl64HVPS40vDIpOs6oFx0DwS3Ng6GzoalrW5%2FdWq%2Fcm7KYS6G2HiSTRWQCtwsIm1JxuH%2BQPbuJOVuViuizxTQmHe%2B3DRaOHcd6Av24jml3dPzI"}],"group":"cf-nel","max_age":604800}
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/5f8a20c0c87c/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
cf-ray: 959439ea7ab356a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3453&min_rtt=0&rtt_var=3288&sent=272&recv=85&lost=0&retrans=0&sent_bytes=293612&recv_bytes=13152&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1111&inflight_dur=232&x=40"

GET static.addtoany.com/menu/svg/icons/facebook.js

104.22.70.197

200 OK

429 B

URL GET
static.addtoany.com/menu/svg/icons/facebook.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (429), with no line terminators
Size
429 B (429 bytes)
Hash
014bcc757e484e12e3aea6c9d768fd4b
4c17157d0012f8002e4e6cf77c5f4a9747792cf4
4b475960843a5619b907af1f0a89e3136bd5e6a4a700ec78cb417f302647cf49

HTTP Headers

GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f7880babd2-CPH
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"68925fa8e347041c6006837e73c518bc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8q7PcAvnFE8YpU2IdXZrNwGUgZADShxUo7f6FUkphlu5wOLbFizIt3ns8kqsrftY1IDtJ1dm2fzywlqKtINqA8DzhBHAZtAfDvZ6CWbSm0%2FwWCNXEM4qQvsfzFHUOkJWdG6sMmx%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: MISS
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/236ae4a58f1fd2df2e19cd1891936576/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27364), with no line terminators
Size
27 kB (27364 bytes)
Hash
5706978016ee03687421b4696a4d74b9
9506c2c8e74c49b6af9741e543f638531689cec4
79ff2a0183a6433cf33576ea55f359a23229f14b2d6332dc703b1d28998ba194

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /236ae4a58f1fd2df2e19cd1891936576/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:34 GMT
Content-Type: application/javascript
Content-Length: 11495
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 9
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8f25c3b5d622906c6ad2da1f636b94fa
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

142.250.178.35

200 OK

6.2 kB

URL GET
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
142.250.178.35:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
SVG Scalable Vector Graphics image
Size
6.2 kB (6225 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Jul 2025 18:55:08 GMT
expires: Wed, 01 Jul 2026 18:55:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 126989
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20250630

142.250.178.46

204 No Content

0 B

URL GET
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20250630
IP
142.250.178.46:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20250630 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
content-type: image/gif; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 03 Jul 2025 06:11:37 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-Fi1OedDvK4qKz05c8iRsrw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/TranslateApiHttp/web-reports?context=eJzj4tDikmLw15BiEOLhmLlvxmE2gY5pJ5cxKykl5RfGlxQl5hXnJJakFqcWlaUWxRsZGJkamBkb6BmYxxcYAAALDBI_"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=28.SE=TjXbZQ01zm7SzDAcnuwjuHG4fxN0TGOyvjd1uB9n8b_AsMfyhMn3W0m_gjHicJ0_0EXwVNtQQ9hDKyaO2KqGd62S69uFXW4yrwbrypQXcxxA1G4q6SGgAhal_7oS4kG-JE5bAWCb0PMXOWh_1u8J0EtX4KOL1OS86rE3rlXcM-7jOew5VAkoTjKnog0DNdQgcNJZHDgIcLULncDQyb1vMDzXzsJ3jc44Zvp6ABjocn-gnOc; expires=Sun, 02-Aug-2026 22:29:55 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015

104.16.79.73

200 OK

20 kB

URL GET
static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectcloudflareinsights.com
Fingerprint9D:9F:FB:08:8A:BA:46:3F:69:F6:F3:D7:AE:78:13:8D:FD:5A:C8:D5
ValidityWed, 25 Jun 2025 22:10:34 GMT - Tue, 23 Sep 2025 23:10:19 GMT

File type
JavaScript source, ASCII text, with very long lines (19948), with no line terminators
Size
20 kB (19948 bytes)
Hash
ec18af6d41f6f278b6aed3bdabffa7bc
62c9e2cab76b888829f3c5335e91c320b22329ae
8a18d13015336bc184819a5a768447462202ef3105ec511bf42ed8304a7ed94f

HTTP Headers

GET /beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.6.1"
last-modified: Thu, 06 Jun 2024 15:52:56 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 959439e65f49b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

GET wearychallengeraise.com/watch.924748863845.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=7517b2e25ad68e4df6071639b3ee36c85c30c6cb2c9d70bdd827389f41b98125efcced182815c7373c22ad703dbee749393476162b67d8045ca0675d07b2fc8bcb4d8452ac6e6c8a9cc5ee3a77eec6dadd653661d01660810da200&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

172.240.108.68

200 OK

5.4 kB

URL GET
wearychallengeraise.com/watch.924748863845.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=7517b2e25ad68e4df6071639b3ee36c85c30c6cb2c9d70bdd827389f41b98125efcced182815c7373c22ad703dbee749393476162b67d8045ca0675d07b2fc8bcb4d8452ac6e6c8a9cc5ee3a77eec6dadd653661d01660810da200&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectwearychallengeraise.com
FingerprintC2:9A:4F:D1:20:4F:D6:7B:AD:D9:F3:AE:DB:94:98:E2:A5:BE:EF:8B
ValidityThu, 19 Jun 2025 03:13:57 GMT - Wed, 17 Sep 2025 03:13:56 GMT

File type
JavaScript source, ASCII text, with very long lines (4525)
Size
5.4 kB (5401 bytes)
Hash
f530f1672b47f0d6a366bcad44831f1f
1b6c761f9fc7cc2a9bb3d4ef803d31c8fc38b0ab
e22bf6152f542dddf0d8a2334732488b665b621a1a80dfe6f97a0161b3b2ba5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.924748863845.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=7517b2e25ad68e4df6071639b3ee36c85c30c6cb2c9d70bdd827389f41b98125efcced182815c7373c22ad703dbee749393476162b67d8045ca0675d07b2fc8bcb4d8452ac6e6c8a9cc5ee3a77eec6dadd653661d01660810da200&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: wearychallengeraise.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoxNzA2MTkxMSwiayI6IjIzNmFlNGE1OGYxZmQyZGYyZTE5Y2QxODkxOTM2NTc2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo1OTc5NCwicGlkIjo0OTIxNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjoyNSwicHQiOjQsInBrIjoibjBqY3ZzdDE2IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjI2NjU2MTExNSwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEzNjkyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMzQuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2FwcG5lZS5jb20vbmV0Z2VuaXVzLyIsImFyIjpbXX19.05kucGwDvXztM8WBvySSz7UN-A0Tyzf1TnuARohsVmU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://appnee.com
access-control-allow-credentials: true
set-cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
pdhtkv25=true; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs25=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
u_pl17061911=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 40
Host: wearychallengeraise.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 45aff10b1a0217f921c4b412e093d136
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET www.profitabledisplaycontent.com/watch.738475691290.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

172.240.253.132

307 Temporary Redirect

5.5 kB

URL GET
www.profitabledisplaycontent.com/watch.738475691290.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type

Size
5.5 kB (5518 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.738475691290.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://appnee.com
access-control-allow-credentials: true
location: https://www.profitabledisplaycontent.com/watch.738475691290.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=4a3e26a59001462148eb095a68861b190e8d74d9a39dc8af2e1f61237975ce39eda887af366b0ec97ca3db0be4b7f056027f832bdb36c384cf85f2347e58d5766326103fbee6aff9b3d1fed3158d2b01cdd3107f6755ab84c0a07e&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
set-cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; expires=Thu, 03 Jul 2025 06:12:35 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 1
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cbb5bda48f3a900c0f2ab21c6a8bd6c3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET static.addtoany.com/menu/svg/icons/link.js

104.22.70.197

200 OK

1.4 kB

URL GET
static.addtoany.com/menu/svg/icons/link.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (1437), with no line terminators
Size
1.4 kB (1437 bytes)
Hash
2612b308f45d0aeddbd8540f3cf792f8
6c6a34a46b238ae0372b7f6126c8686a3c6b91d7
1b1e450814698cfd54d68f041c25c741d2adbde4e8e31a256db1be23d413d96c

HTTP Headers

GET /menu/svg/icons/link.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
content-encoding: br
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
cf-bgj: minify
etag: W/"dd9ed66e949db0815ba57f9db1b47951"
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F9Pi%2FZo4XBevhvgAzlhUuJl1UCRE7hg5csaU4ZhLR4%2Bs%2FQevodg5iGzDk%2FRuJlUfyTNbdP0Ym6lI5d1K5TOK3HNdhoLdrqr7gUmh6ugEmrWfPD4MixdGca2MKhXVdenxw5FR6inymgagL%2BpWB46hE51a"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 959439f77ffdabd2-CPH
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.MOhKAPSS1-s.L.F4.O/am=AGA/d=0/rs=AN8SPfrxFroEQ0mmbIPJ8GhnCu7pfJQCLw/m=el_main_css

142.250.74.99

200 OK

20 kB

URL GET
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.MOhKAPSS1-s.L.F4.O/am=AGA/d=0/rs=AN8SPfrxFroEQ0mmbIPJ8GhnCu7pfJQCLw/m=el_main_css
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint6C:DD:E7:B7:B0:02:A6:B7:4F:2D:EB:A1:11:A3:4B:1C:31:F9:07:F7
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
ASCII text, with very long lines (20298), with no line terminators
Size
20 kB (20298 bytes)
Hash
183cb263396f0b39789db1ae3f1e1b20
502fcf18fa8d865213e282824ab2dfaadb9b8beb
6a91c12a6fd1664f4d594040374fda61fe5b02fd3aee5f0c877ccbfc49488ec5

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.MOhKAPSS1-s.L.F4.O/am=AGA/d=0/rs=AN8SPfrxFroEQ0mmbIPJ8GhnCu7pfJQCLw/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3969
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Jul 2025 18:27:38 GMT
expires: Wed, 01 Jul 2026 18:27:38 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 May 2025 01:09:21 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 128639
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET appnee.com/wp-content/themes/twentyfourteen/css/blocks.css

172.67.172.207

200 OK

8.9 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/css/blocks.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text
Size
8.9 kB (8879 bytes)
Hash
771589fa25c8eeeda3062ff8d15e29a8
a7bd17c468e7d9e219f820393c119f5dc3e15a76
bee245c361e11418089d88079b90fe566072e99370399899889f828b6dbe4399

HTTP Headers

GET /wp-content/themes/twentyfourteen/css/blocks.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ok1SnO6adJANqOHwLAce%2Fv46CtUJyNDuf0ofhV%2B35agucZv%2F34NsSeSzArWix9tMmGvmJkfS3EyipeIr%2B7hR3y1DokurHsXtzoNHs0SpxhYaHFkWeyK1Nct13wY6"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
vary: Accept-Encoding
etag: W/"677d06c5-22af"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 45473
cf-cache-status: HIT
cf-ray: 959439e5da8f56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6051&min_rtt=84&rtt_var=6755&sent=56&recv=23&lost=0&retrans=0&sent_bytes=45230&recv_bytes=4723&delivery_rate=2836612&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=33449&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=374&inflight_dur=41&x=40"

GET appnee.com/wp-includes/js/imagesloaded.min.js

172.67.172.207

200 OK

5.5 kB

URL GET
appnee.com/wp-includes/js/imagesloaded.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (4358)
Size
5.5 kB (5520 bytes)
Hash
6823120876c9afc8929418c9a6f8e343
90b0adb37d70ffec5f9189c36bb0027c310c9502
b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m059Ywehs%2BWyV%2BpTQRZScmETrjUm8sCDXwi1mjlsuLIIIyVkZDbRmCClnZzc1eOOesHWOapFMpJejwWGM4zwsgBMGgOUruDG5XG9eFrYqfLBdT9rHXBQXn1%2FLtvL"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 08 Nov 2023 02:09:23 GMT
vary: Accept-Encoding
etag: W/"654aedd3-1590"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 45474
cf-cache-status: HIT
cf-ray: 959439e9aaa756a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1576&min_rtt=0&rtt_var=957&sent=253&recv=73&lost=0&retrans=0&sent_bytes=283094&recv_bytes=10759&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=988&inflight_dur=205&x=40"

GET www.profitabledisplaycontent.com/watch.1415944921519.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

307 Temporary Redirect

5.5 kB

URL GET
www.profitabledisplaycontent.com/watch.1415944921519.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type

Size
5.5 kB (5518 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.1415944921519.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Location: https://www.profitabledisplaycontent.com/watch.1415944921519.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=27a4032e266a8e65fb68dd33e593192e529cb514e32bbf4694c0cea72e87f48be99d1bdac01f837150057b7846b2c1451426e220ea65ffbe0c4f7b2c5934f02aa6405c5d1cbde72d3f89685b9973776756e717b9842a4adc55e5&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; expires=Thu, 03 Jul 2025 06:12:35 GMT; path=/; secure; SameSite=None
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: dee312d35dba6b4adfa08946b442b3c6
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.keQt1s-0v6U.O/am=AAAC/d=1/exm=el_conf/ed=1/rs=AN8SPfp3eDIXUaRdDcCkDaAlGblibDcJ6w/m=el_main

142.250.178.42

200 OK

221 kB

URL GET
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.keQt1s-0v6U.O/am=AAAC/d=1/exm=el_conf/ed=1/rs=AN8SPfp3eDIXUaRdDcCkDaAlGblibDcJ6w/m=el_main
IP
142.250.178.42:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type
JavaScript source, ASCII text, with very long lines (2544)
Size
221 kB (221222 bytes)
Hash
924548d1f97f5d62705738131ad69b8c
a5346f6c4b2520381e47aa084220f5a4b0da87ce
1afb404248c137c2190c4612a050850771600d66bc8770dd9a38fd8c9d368e9b

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.keQt1s-0v6U.O/am=AAAC/d=1/exm=el_conf/ed=1/rs=AN8SPfp3eDIXUaRdDcCkDaAlGblibDcJ6w/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 76379
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Jul 2025 18:27:12 GMT
expires: Wed, 01 Jul 2026 18:27:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Jun 2025 17:10:15 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 128664
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET cdn.storageimagedisplay.com/cti/7d/b9/cc/7db9ccacd96a1433001a2ae7cd594c0f/1716370283.jpg

45.133.44.1

200 OK

91 kB

URL GET
cdn.storageimagedisplay.com/cti/7d/b9/cc/7db9ccacd96a1433001a2ae7cd594c0f/1716370283.jpg
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, baseline, precision 8, 300x250, components 3
Size
91 kB (91391 bytes)
Hash
c7dd9f77103233f83950545ef5875633
0b32c30a243b18bfe2b8d05cde9f17a3535c7034
eb0f2225b581caaa8dc9440b6af5caf7fb1560beae36947062e5d391089a6cd1

HTTP Headers

GET /cti/7d/b9/cc/7db9ccacd96a1433001a2ae7cd594c0f/1716370283.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:37 GMT
content-type: image/jpeg
content-length: 91391
server: nginx/1.21.6
last-modified: Wed, 22 May 2024 09:31:34 GMT
etag: "664dbb76-164ff"
expires: Sat, 05 Jul 2025 06:11:37 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET img.appnee.com/appnee.com/2025/NetGenius-2.webp

172.67.172.207

200 OK

33 kB

URL GET
img.appnee.com/appnee.com/2025/NetGenius-2.webp
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
RIFF (little-endian) data, Web/P image
Size
33 kB (32668 bytes)
Hash
ec4d48b95526d3e9201d50626701e86f
145b5059e13ed4c0b295a311b2a81e995518dff6
17184555d377d828acaf65c6b82d3c8ff24e894257a916f172063b1ef6db7faf

HTTP Headers

GET /appnee.com/2025/NetGenius-2.webp HTTP/1.1
Host: img.appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: image/webp
content-length: 32668
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=12y11E%2FXTHPExIfNLMXJ4smWUOFkl3jkmNl3bL4Qn0o1FJBtD5MVqPcSDLGrhmofDiwQToEjDESYCxxLdYaDSUfIIjVWMO3lBsJjB1PrtRV1LJomeYtw6Rc2jdpAKaBI1g%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 30 May 2025 01:59:46 GMT
etag: "68391112-7f9c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
cf-cache-status: MISS
cf-ray: 959439e5ea9256a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1664&min_rtt=0&rtt_var=2113&sent=106&recv=39&lost=0&retrans=0&sent_bytes=104123&recv_bytes=5913&delivery_rate=4328228&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=19239&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=617&inflight_dur=110&x=40"

GET filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27404), with no line terminators
Size
27 kB (27404 bytes)
Hash
f2cf719646570cc700b0125fa73911e9
4e75a2f4084a36b8af8ed57c884e956aef0e3307
5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /89ed111dc7633df620ed792e7fb6678a/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:34 GMT
Content-Type: application/javascript
Content-Length: 11501
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 2
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2c71fb8743028b787cefdde060478ea5
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET www.profitabledisplaycontent.com/watch.1415944921519.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=27a4032e266a8e65fb68dd33e593192e529cb514e32bbf4694c0cea72e87f48be99d1bdac01f837150057b7846b2c1451426e220ea65ffbe0c4f7b2c5934f02aa6405c5d1cbde72d3f89685b9973776756e717b9842a4adc55e5&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

200 OK

5.5 kB

URL GET
www.profitabledisplaycontent.com/watch.1415944921519.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=27a4032e266a8e65fb68dd33e593192e529cb514e32bbf4694c0cea72e87f48be99d1bdac01f837150057b7846b2c1451426e220ea65ffbe0c4f7b2c5934f02aa6405c5d1cbde72d3f89685b9973776756e717b9842a4adc55e5&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type
JavaScript source, ASCII text, with very long lines (4642)
Size
5.5 kB (5518 bytes)
Hash
a6ecfdcdee1ebf3a7ab7b7aeff8bc031
99dc40db71630a661c1faeaac546be4558827ae1
48685596d96ed86234d0865f650ca189de0fb731e8429ee34c42c5be6c8adae1

HTTP Headers

GET /watch.1415944921519.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=27a4032e266a8e65fb68dd33e593192e529cb514e32bbf4694c0cea72e87f48be99d1bdac01f837150057b7846b2c1451426e220ea65ffbe0c4f7b2c5934f02aa6405c5d1cbde72d3f89685b9973776756e717b9842a4adc55e5&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoxMzMzNjI3NSwiayI6Ijg5ZWQxMTFkYzc2MzNkZjYyMGVkNzkyZTdmYjY2NzhhIiwic2lkIjoiIiwiaXNpZCI6NCwiYXNpZCI6MSwiemlkIjo1OTc5NCwicGlkIjo0OTIxNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjo1LCJwdCI6NCwicGsiOiJ1eTNiOXlzYiIsImNwa3MiOnsiNDYiOiIxYWEzYzIxMTJjNmNlOTZhOWEzZjc3YzE3NjZiM2QyNSJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6MjY2NTYxMTE1LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6Mzg5MTQsIm9uIjoiV2luZG93cyIsIm92IjoiMTAuMCIsImJpZCI6MTM2OTI1LCJibiI6IkZpcmVmb3giLCJidiI6IjEzNC4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vYXBwbmVlLmNvbS9uZXRnZW5pdXMvIiwiYXIiOltdfX0.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; u_pl13336275=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
u_pl13336275=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 04db52ea8b72c5d06eb00534fb42f1f0
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET appnee.com/wp-includes/css/dist/block-library/style.min.css

172.67.172.207

200 OK

116 kB

URL GET
appnee.com/wp-includes/css/dist/block-library/style.min.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text, with very long lines (55654)
Size
116 kB (116363 bytes)
Hash
dfe67cbbac3da53fdbbaed71c91db428
8c82643ef63a8389c1b800b7c5d0af9d684b8b24
597ddfdee7171750c16ec5aafd392cf992e9c53386d6bb6061d48e30334f09e9

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lSAL8GhojlzfB1bsHLas%2BZhtppa1H8W45MjYj%2FOT201DA2k95A3Mrs3%2FjdAh8bGJ0KWtErqbPAtysInHxMjyCm1M0x8BWD7eL8XrKIXjJBhcqk%2FzhmOM9VlVdoag"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 16 Apr 2025 09:48:45 GMT
vary: Accept-Encoding
etag: W/"67ff7cfd-1c68b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 1253307
cf-cache-status: HIT
cf-ray: 959439e5ba8756a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=8730&min_rtt=1680&rtt_var=6352&sent=24&recv=19&lost=0&retrans=0&sent_bytes=5444&recv_bytes=4056&delivery_rate=328385&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=18049&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=364&inflight_dur=32&x=40"

GET filletfiguredconstrain.com/c69e2bcba375713b49986b2e97d7ece9/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/c69e2bcba375713b49986b2e97d7ece9/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27360), with no line terminators
Size
27 kB (27360 bytes)
Hash
4620f243ca82fea2b346236fad54ebdc
7b1514e2ece0cba5c1a42eecea65a668a57f24e6
4997c20986df351725bfd47ba462eba2f2d277a85201791e65d93a6496e9bf6d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c69e2bcba375713b49986b2e97d7ece9/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:34 GMT
Content-Type: application/javascript
Content-Length: 11494
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 7
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 856243458abfe5cb2b992f73db3f52ff
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET cdn.storageimagedisplay.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg

45.133.44.1

200 OK

79 kB

URL GET
cdn.storageimagedisplay.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:16 15:04:57], progressive, precision 8, 300x250, components 3
Size
79 kB (79010 bytes)
Hash
325d5a8fd98bd4abebe19e1ea0bfa6b5
724b06f3b7fd7b0e958b59c4c4afb2813a5f5c17
710e54e782c441ef1ce60c52642dae8084dbbaa413343ff13f86c1e53c981318

HTTP Headers

GET /cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:35 GMT
content-type: image/jpeg
content-length: 79010
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:30:40 GMT
etag: "65d222a0-134a2"
expires: Sat, 05 Jul 2025 06:11:35 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET www.profitabledisplaycontent.com/watch.369980463846.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

172.240.253.132

307 Temporary Redirect

5.5 kB

URL GET
www.profitabledisplaycontent.com/watch.369980463846.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type

Size
5.5 kB (5514 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.369980463846.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; u_pl13336275=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
access-control-allow-origin: https://appnee.com
access-control-allow-credentials: true
location: https://www.profitabledisplaycontent.com/watch.369980463846.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=8ae2777d92efe096bec983a288708820d26304229e9f587540b9c7f062e4be2bdd96d12ebf644df703f9dbacc3a86930baca8266c7cbeb18fbfc0025848a543be9d342d59800677bd9c95edb0e7f8e3a9bb9c95e115b9ef2a3d7ca&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
set-cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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._TowwV61ZWDljYEpbltE7UiDHzbBY3Y_QHcJWS93cRQ; expires=Thu, 03 Jul 2025 06:12:36 GMT; path=/; secure; SameSite=None
x-envoy-upstream-service-time: 1
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8680a285f9618f2bb91ddccce7986006
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET static.addtoany.com/menu/svg/icons/printfriendly.js

104.22.70.197

200 OK

577 B

URL GET
static.addtoany.com/menu/svg/icons/printfriendly.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (577), with no line terminators
Size
577 B (577 bytes)
Hash
b7aa7a7b2e6901e257d676204d347269
eae92efbad32024bd4bef8138622b2e92ecb69f6
2fb7a4f164485fa03752eee7056601df281faa3e83b1d9ecad5495eef58428f2

HTTP Headers

GET /menu/svg/icons/printfriendly.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f7b839abd2-CPH
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"e2c6faa1d41926e8c46f7115742b7d50"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KiUI%2BAkH%2FUg8Rp2xsHI01MOCKZo%2BFx4V5xQueY3bqXkd%2BK28umEQ9UCrdXe3V%2FIUZVj1wDbtsamqYWdDo2hN2vPO72MdhVAdGZJsPFpcjBNXxFUSfbKjF9H1dW%2FyQrdFpyl4Rtsk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: MISS
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET appnee.com/wp-includes/js/masonry.min.js

172.67.172.207

200 OK

24 kB

URL GET
appnee.com/wp-includes/js/masonry.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (23966)
Size
24 kB (24138 bytes)
Hash
3b3fc826e58fc554108e4a651c9c7848
76778fd446e2ff2377588a7b4ac4d79f258427c9
e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb

HTTP Headers

GET /wp-includes/js/masonry.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4c8kvJJczviLIkdez%2FcDXJnLMaC6L3imdBF2ISVudiJ%2F8FyFVBqRiJV0R1r9SrUxrD%2B5Ui6K5tT%2FKxNC2iz%2FkpAY1%2FLr3L0WAyLDL5zCtfoDiEeKhSg3Tsz02kTJ"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 12 Aug 2020 23:34:29 GMT
vary: Accept-Encoding
etag: W/"5f347c85-5e4a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 45474
cf-cache-status: HIT
cf-ray: 959439e9aaa656a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1576&min_rtt=0&rtt_var=957&sent=235&recv=73&lost=0&retrans=0&sent_bytes=264037&recv_bytes=10759&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=982&inflight_dur=195&x=40"

GET appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/analytics.js

172.67.172.207

200 OK

1.2 kB

URL GET
appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/js/analytics.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text
Size
1.2 kB (1234 bytes)
Hash
55f481bbcc52bf261cf2b5669ccf033e
2ab5cc9179e9bc759f699d74a267ec3427704102
c8683b8aa233904efcaceff3ac30e7e6e41a699736dcf541f72d8c8cd31eddf9

HTTP Headers

GET /wp-content/plugins/hashbar-wp-notification-bar/assets/js/analytics.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BFtTlnsgxVyUuIiRbRgh1VjEyQzG%2BklSkaYL5QPTgoCtW4EHZXWwqZXtt8hHzoIISK%2FrgRMCSxYLVItxBJu38GdFrwMuut9hn%2B3EMJ28xVSMe4wp5O5EyvFy2fn9"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 16 Apr 2025 08:53:02 GMT
vary: Accept-Encoding
etag: W/"67ff6fee-4d2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 45474
cf-cache-status: HIT
cf-ray: 959439e9aaa856a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1576&min_rtt=0&rtt_var=957&sent=251&recv=73&lost=0&retrans=0&sent_bytes=281823&recv_bytes=10759&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=988&inflight_dur=205&x=40"

GET appnee.com/wp-content/themes/twentyfourteen/js/functions.js

172.67.172.207

200 OK

5.4 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/js/functions.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text
Size
5.4 kB (5409 bytes)
Hash
20ea6bb2e918feb5392be0617397ec15
0164130ce5cb19b9cc60faff5ce9cfa0ec874c63
1b37e5c81077342fa855ca18e5802fb629fef3ab2f93a655108dc0e5827d99c6

HTTP Headers

GET /wp-content/themes/twentyfourteen/js/functions.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qG1ZYM9pp4tAzE2UYYpwfMT%2Bqtzcfg27GEK2RxI6sa6Pyw2%2BxJaoORRpCB7Y9CdiwhwxXt9YJuZBSuBGPpJo4bZ1%2B3ZAq4MYe7nSwOa%2BFWO2LpN5NZ3CU7S32l9q"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
vary: Accept-Encoding
etag: W/"677d06c5-1521"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e9daac56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3248&min_rtt=0&rtt_var=2876&sent=275&recv=86&lost=0&retrans=0&sent_bytes=296275&recv_bytes=13197&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1142&inflight_dur=255&x=40"

GET writingfreedomdecember.com/ntv.json?key=34c6e2cfaa7bc9c51be929ea9e1ad9eb&vstc=1&rb=

192.243.61.227

200 OK

4.0 kB

URL GET
writingfreedomdecember.com/ntv.json?key=34c6e2cfaa7bc9c51be929ea9e1ad9eb&vstc=1&rb=
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint49:E1:6D:67:07:D9:7B:3A:7E:92:9A:AE:18:14:FC:71:08:F1:FB:FC
ValidityWed, 18 Jun 2025 15:55:54 GMT - Tue, 16 Sep 2025 15:55:53 GMT

File type
JSON text data
Size
4.0 kB (3979 bytes)
Hash
0ba83fb4f6fbf8c9c9a613aa9a524467
d563a9b20ab94584215c031813648940310bd3dc
14b23e01308399d254f428a5a8143c891ef0f847808a054d0d75ea6c8d151adb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ntv.json?key=34c6e2cfaa7bc9c51be929ea9e1ad9eb&vstc=1&rb= HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:34 GMT
Content-Type: application/json
Content-Length: 3979
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Set-Cookie: pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:34 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:34 GMT; path=/; secure; SameSite=None
pdhtkv49=true; expires=Fri, 04 Jul 2025 06:11:34 GMT; path=/; secure; SameSite=None
uncs49=1; expires=Fri, 04 Jul 2025 06:11:34 GMT; path=/; secure; SameSite=None
u_pl14925862=1; expires=Fri, 04 Jul 2025 06:11:34 GMT; path=/; secure; SameSite=None
nlec34c6e2cfaa7bc9c51be929ea9e1ad9eb=[5474028]; expires=Thu, 03 Jul 2025 06:11:39 GMT; path=/; secure; SameSite=None
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: c6da56fd483028319384a4430864ceb3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET static.addtoany.com/menu/modules/core.pt5ow5lr.js

104.22.70.197

200 OK

72 kB

URL GET
static.addtoany.com/menu/modules/core.pt5ow5lr.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
72 kB (71871 bytes)
Hash
7e998bb147b26903e88f08f39c0e2cfc
6c93ab9cb3371591d4031dc60b9c3ae571c3329e
ef39bcc03d88448d0d38aba3dc609e9c9c444d037aebec926e6715e1cf956674

HTTP Headers

GET /menu/modules/core.pt5ow5lr.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f65eb5abd2-CPH
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
etag: W/"6e938442141e4680b5bd4187b8d6c216"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YdoSXyUYz%2FDua434Ln6xk32Oc8zUDwHNLW7ApORoBuKkJiCaU0tCCCDtyFs4vImPjLfxwJfKYH1qXIBUv%2BcXdALaTFIiq%2BktsMtIDaRSGTO8vw5SD%2BciOgWj2o8GwwacfUC0K24H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET appnee.com/wp-content/plugins/super-rss-reader/public/css/style.min.css

172.67.172.207

200 OK

4.0 kB

URL GET
appnee.com/wp-content/plugins/super-rss-reader/public/css/style.min.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text, with very long lines (3960)
Size
4.0 kB (3961 bytes)
Hash
f920aac1c6ea571a58d80f6ef7274000
609c8b2adc5bc1160f20e6b76d005f12580d561d
2c1c0d88b951deca50e03530fcb1437a8fa5a789d19ea2a1b928009a338221e7

HTTP Headers

GET /wp-content/plugins/super-rss-reader/public/css/style.min.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=asix1g%2F2ZTO6hTPH5jzcOTM6fH2GqMKqD1i0yxBJLzlG4cR234413T%2BTzmgCSNlka0GPTPUzbbLPhLONHNdYTI5SmLmyIO9SSS%2FHYxZSHBwL3YgC7oo70TzTUZ0i"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 20 Apr 2025 18:52:55 GMT
vary: Accept-Encoding
etag: W/"68054287-f79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e5ca8b56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=6090&min_rtt=84&rtt_var=5518&sent=66&recv=27&lost=0&retrans=0&sent_bytes=54574&recv_bytes=5383&delivery_rate=2836612&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=33449&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=490&inflight_dur=62&x=40"

GET appnee.com/wp-content/plugins/add-to-any/addtoany.min.css

172.67.172.207

200 OK

1.6 kB

URL GET
appnee.com/wp-content/plugins/add-to-any/addtoany.min.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text, with very long lines (1604), with no line terminators
Size
1.6 kB (1604 bytes)
Hash
2a489d28e2fc2088b3fe0bcda8417525
af48dd19c11ceac12d2473b2b8e216da9d9d432c
c19e3e4151ea4933fa9ba9703c51fe20ad469237771214b1c5001d1b107ddef5

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AB%2FfIXSin6m0k5ziaFhSc7EyVT5U%2BVo6yYZfIEpSSTHIVdLS4hO7ZntWc0gPCiDpx6XdgZc%2FYEcZoSROZETxaKYweBu0rILMYYmuPOY71Wh%2BbYLT7csK7VdFBX9D"}],"group":"cf-nel","max_age":604800}
last-modified: Fri, 22 Nov 2024 06:52:57 GMT
vary: Accept-Encoding
etag: W/"67402a49-644"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e5da9056a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3788&min_rtt=0&rtt_var=4831&sent=79&recv=31&lost=0&retrans=0&sent_bytes=68446&recv_bytes=5560&delivery_rate=2985910&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=20284&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=553&inflight_dur=79&x=40"

GET appnee.com/favicon.ico

172.67.172.207

200 OK

4.3 kB

URL GET
appnee.com/favicon.ico
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
4.3 kB (4286 bytes)
Hash
cce2fcb0fccd00ab70337b8f4a8e4da6
38370d31675ead1291bdf55d1dc0b09ec0c8a3c0
351638f18e6c50a46c8479040b112fbea35c0e4efc02e29e22dc190c1ee1f089

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: image/x-icon
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WrdP1xwdRCHsPfDxDrBzYXuKTxqhxI%2BZF71QtHVQqdcffXeTw%2FiGXws6%2F8s57881J4PvGimbHJReokU0YmvdK7nK9KNhQ0rRATKhJHzKBE6nzmwLXNyAdT%2BcdWQf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
last-modified: Fri, 02 Jun 2017 23:03:36 GMT
etag: W/"5931eec8-10be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
age: 927121
cf-cache-status: HIT
content-encoding: br
cf-ray: 959439edeabb56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2522&min_rtt=0&rtt_var=1569&sent=310&recv=94&lost=0&retrans=0&sent_bytes=336356&recv_bytes=14015&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1664&inflight_dur=302&x=40"

GET filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27404), with no line terminators
Size
27 kB (27404 bytes)
Hash
f2cf719646570cc700b0125fa73911e9
4e75a2f4084a36b8af8ed57c884e956aef0e3307
5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /89ed111dc7633df620ed792e7fb6678a/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: application/javascript
Content-Length: 11501
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 2
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 6d6a7d5d0ef6401b7831636e4cc11d8b
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET www.profitabledisplaycontent.com/watch.1352853603086.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=2b4e6da5563b458454d9a8e261e0283a85a18c2a09bff15c19ad775f2ded3f09caf893d85ff058b299a484abb3fab0a112ac92a189067bf249c5764e72463f285d704bc9499dbe91f0438f0d90b559e30f6fa8ce02e5c1c3dfe3&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

200 OK

4.9 kB

URL GET
www.profitabledisplaycontent.com/watch.1352853603086.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=2b4e6da5563b458454d9a8e261e0283a85a18c2a09bff15c19ad775f2ded3f09caf893d85ff058b299a484abb3fab0a112ac92a189067bf249c5764e72463f285d704bc9499dbe91f0438f0d90b559e30f6fa8ce02e5c1c3dfe3&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type
JavaScript source, ASCII text, with very long lines (4046)
Size
4.9 kB (4922 bytes)
Hash
2f0ec929eba39793bb717413d20d17ab
0fa05616d27707fde8c53565391f5e037bbb734b
afe93fb2641418ac3b7f50a29d5254f1ddf8ab1ccfbbdf5db79343f85514e037

HTTP Headers

GET /watch.1352853603086.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=2b4e6da5563b458454d9a8e261e0283a85a18c2a09bff15c19ad775f2ded3f09caf893d85ff058b299a484abb3fab0a112ac92a189067bf249c5764e72463f285d704bc9499dbe91f0438f0d90b559e30f6fa8ce02e5c1c3dfe3&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
u_pl13336275=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0fb8ad8336ba2405919367fee492c55c
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET appnee.com/wp-content/plugins/dynamic-to-top/js/dynamic.to.top.min.js

172.67.172.207

200 OK

1.2 kB

URL GET
appnee.com/wp-content/plugins/dynamic-to-top/js/dynamic.to.top.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (453)
Size
1.2 kB (1192 bytes)
Hash
b1b9a1203843f8dd39ce038034b28faf
bac9bd7fa175760c9b5ab1b4e2d9203b6b875fcc
ec62de9c54033f0163588e9d274e822708dc8e6d11c0b62cdd6c6fb16331df6d

HTTP Headers

GET /wp-content/plugins/dynamic-to-top/js/dynamic.to.top.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nTM4pE95U3l%2BiWpjJHqtuTu%2Bg94OMQ5joOaOwCw8E%2BWrRTdtiJxArfRy9iUvOPwTDBZ6tZsu7VG6seI8MFmdpgeastBcOFa0MOENhYJYUce2aO5l6FDtz4CWVtHE"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 20 Dec 2017 14:27:22 GMT
vary: Accept-Encoding
etag: W/"5a3a734a-4a8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 587339
cf-cache-status: HIT
cf-ray: 959439e9aaa256a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1576&min_rtt=0&rtt_var=957&sent=234&recv=73&lost=0&retrans=0&sent_bytes=262698&recv_bytes=10759&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=977&inflight_dur=195&x=40"

GET appnee.com/wp-content/plugins/super-rss-reader/public/js/script.min.js

172.67.172.207

200 OK

803 B

URL GET
appnee.com/wp-content/plugins/super-rss-reader/public/js/script.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (802)
Size
803 B (803 bytes)
Hash
2de96ded897b3785b51654256860997e
fd8ecb768712100810829955891eed68b033ea0a
080b4d816746205ae08e7fc3fff5a591d264f2e9ead0739d5e497d4014e676cc

HTTP Headers

GET /wp-content/plugins/super-rss-reader/public/js/script.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ecjusHV6cacpvKANVc9I5kKYEO5NhGXau3K0Xqas7msaTam%2BfqVXCYnGR8Lk3%2BLrsm3yrWI%2F81np2il%2Feemd9Y4Qfj%2BInCnN8r9Y3qdiL%2Fkp3ZsAHfeZndGJpDuK"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 20 Apr 2025 18:52:55 GMT
vary: Accept-Encoding
etag: W/"68054287-323"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 927121
cf-cache-status: HIT
cf-ray: 959439e9daad56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2278&min_rtt=0&rtt_var=1894&sent=267&recv=81&lost=0&retrans=0&sent_bytes=291594&recv_bytes=12547&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1012&inflight_dur=215&x=40"

GET cdn.storageimagedisplay.com/cti/d5/a3/12/d5a312abfdfa9ee20e1f48212f48cae1/1722092076.jpg

45.133.44.1

200 OK

53 kB

URL GET
cdn.storageimagedisplay.com/cti/d5/a3/12/d5a312abfdfa9ee20e1f48212f48cae1/1722092076.jpg
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, progressive, precision 8, 300x250, components 3
Size
53 kB (53117 bytes)
Hash
fbcdfdb3ce4255e61104b2001d97dd66
93a76f55d716c3cc097648a3d86999889548b5b5
ac583640fff0c325cb5b2e65b0047953139ee94ddef253a7161fb305c6f58da1

HTTP Headers

GET /cti/d5/a3/12/d5a312abfdfa9ee20e1f48212f48cae1/1722092076.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: image/jpeg
content-length: 53117
server: nginx/1.21.6
last-modified: Sat, 27 Jul 2024 14:54:36 GMT
etag: "66a50a2c-cf7d"
expires: Sat, 05 Jul 2025 06:11:36 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET www.profitabledisplaycontent.com/watch.738475691290.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=4a3e26a59001462148eb095a68861b190e8d74d9a39dc8af2e1f61237975ce39eda887af366b0ec97ca3db0be4b7f056027f832bdb36c384cf85f2347e58d5766326103fbee6aff9b3d1fed3158d2b01cdd3107f6755ab84c0a07e&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

200 OK

5.5 kB

URL GET
www.profitabledisplaycontent.com/watch.738475691290.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=4a3e26a59001462148eb095a68861b190e8d74d9a39dc8af2e1f61237975ce39eda887af366b0ec97ca3db0be4b7f056027f832bdb36c384cf85f2347e58d5766326103fbee6aff9b3d1fed3158d2b01cdd3107f6755ab84c0a07e&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type
JavaScript source, ASCII text, with very long lines (4642)
Size
5.5 kB (5518 bytes)
Hash
6bd52e2e34b3b32eb5853bb10524d43a
b2f5bbfd7890d12fa6b858ce887bdd1f444cbbec
dff08bca38628b387c213de6c815fe2c3683f7c25e01775cef40a84550ea27ab

HTTP Headers

GET /watch.738475691290.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=4a3e26a59001462148eb095a68861b190e8d74d9a39dc8af2e1f61237975ce39eda887af366b0ec97ca3db0be4b7f056027f832bdb36c384cf85f2347e58d5766326103fbee6aff9b3d1fed3158d2b01cdd3107f6755ab84c0a07e&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; u_pl13336275=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
u_pl13336275=1; expires=Fri, 04 Jul 2025 06:11:35 GMT; path=/; secure; SameSite=None
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: c86f27380e294616510c79b0e9985cf4
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

OPTIONS translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.178.42

200 OK

0 B

URL OPTIONS
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.178.42:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint58:09:05:96:27:31:E2:3D:AB:89:AD:1C:2E:C3:03:82:B0:27:3D:86
ValidityMon, 02 Jun 2025 08:36:37 GMT - Mon, 25 Aug 2025 08:36:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://appnee.com/
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"clearcut-frontend-http-prod-hiqos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/httpsserver2/clearcut-frontend-http-prod-hiqos"}]}
content-security-policy-report-only: script-src 'none';form-action 'none';frame-src 'none'; report-uri https://csp.withgoogle.com/csp/httpsserver2/clearcut-frontend-http-prod-hiqos
access-control-allow-origin: https://appnee.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Thu, 03 Jul 2025 06:11:47 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/css/block-style-index.css

172.67.172.207

200 OK

2.0 kB

URL GET
appnee.com/wp-content/plugins/hashbar-wp-notification-bar/assets/css/block-style-index.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text
Size
2.0 kB (1991 bytes)
Hash
91eb0f4f92b1d2304188411e7558072f
f0ae02d49ffe47e8d3cf98d31e664084130367b9
cc6eb730f617a4a139def349644a39e220b1680a5592303a5bb86d07c8c34569

HTTP Headers

GET /wp-content/plugins/hashbar-wp-notification-bar/assets/css/block-style-index.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FFHwIEe4yOlhGqOShTEKyS3bMvXHu8m7GhLc7U9P%2BRF2YlyIOc1zCdzfwfBcKARzwxRcFxCQgzxYCV16umgs5De5wmvCW8BX9%2FCkUoVZDq7VayQGeilBmOE851DY"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 16 Apr 2025 08:53:02 GMT
vary: Accept-Encoding
etag: W/"67ff6fee-7c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e5ba8856a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2616&min_rtt=0&rtt_var=2840&sent=89&recv=35&lost=0&retrans=0&sent_bytes=81046&recv_bytes=5737&delivery_rate=3271948&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=20159&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=592&inflight_dur=106&x=40"

GET www.profitabledisplaycontent.com/watch.369980463846.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=8ae2777d92efe096bec983a288708820d26304229e9f587540b9c7f062e4be2bdd96d12ebf644df703f9dbacc3a86930baca8266c7cbeb18fbfc0025848a543be9d342d59800677bd9c95edb0e7f8e3a9bb9c95e115b9ef2a3d7ca&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

200 OK

5.5 kB

URL GET
www.profitabledisplaycontent.com/watch.369980463846.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=8ae2777d92efe096bec983a288708820d26304229e9f587540b9c7f062e4be2bdd96d12ebf644df703f9dbacc3a86930baca8266c7cbeb18fbfc0025848a543be9d342d59800677bd9c95edb0e7f8e3a9bb9c95e115b9ef2a3d7ca&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type
JavaScript source, ASCII text, with very long lines (4638)
Size
5.5 kB (5514 bytes)
Hash
691f70ce0f6112674d5bcf072b6fd12d
a2965072bfebc3dd4590e5dfc728c376ca2e2783
22ccc264d1f8600bedb8fb16951f583d8198af8bcdba267a46bdf3e53ddeee98

HTTP Headers

GET /watch.369980463846.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=8ae2777d92efe096bec983a288708820d26304229e9f587540b9c7f062e4be2bdd96d12ebf644df703f9dbacc3a86930baca8266c7cbeb18fbfc0025848a543be9d342d59800677bd9c95edb0e7f8e3a9bb9c95e115b9ef2a3d7ca&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoxMzMzNjI3NSwiayI6Ijg5ZWQxMTFkYzc2MzNkZjYyMGVkNzkyZTdmYjY2NzhhIiwic2lkIjoiIiwiaXNpZCI6NCwiYXNpZCI6MSwiemlkIjo1OTc5NCwicGlkIjo0OTIxNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjo1LCJwdCI6NCwicGsiOiJ1eTNiOXlzYiIsImNwa3MiOnsiNDYiOiIxYWEzYzIxMTJjNmNlOTZhOWEzZjc3YzE3NjZiM2QyNSJ9LCJ0IjoxfSwidSI6eyJ1IjoyLCJhdSI6MiwiZCI6eyJpZCI6MjY2NTYxMTE1LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6Mzg5MTQsIm9uIjoiV2luZG93cyIsIm92IjoiMTAuMCIsImJpZCI6MTM2OTI1LCJibiI6IkZpcmVmb3giLCJidiI6IjEzNC4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6ZmFsc2UsInIiOiJodHRwczovL2FwcG5lZS5jb20vbmV0Z2VuaXVzLyIsImFyIjpbXX19._TowwV61ZWDljYEpbltE7UiDHzbBY3Y_QHcJWS93cRQ; uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; u_pl13336275=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs=2; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs5=2; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0e506edf18f2e7981fe409844c35d58d
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET rashcolonizeexpand.com/watch.1220376755056.js?key=c69e2bcba375713b49986b2e97d7ece9&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

307 Temporary Redirect

5.4 kB

URL GET
rashcolonizeexpand.com/watch.1220376755056.js?key=c69e2bcba375713b49986b2e97d7ece9&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectrashcolonizeexpand.com
FingerprintC7:75:50:5C:D3:7C:BF:A1:34:3E:61:33:FC:D6:81:21:2E:31:1D:92
ValiditySat, 28 Jun 2025 22:10:41 GMT - Fri, 26 Sep 2025 22:10:40 GMT

File type

Size
5.4 kB (5386 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1220376755056.js?key=c69e2bcba375713b49986b2e97d7ece9&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: rashcolonizeexpand.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Location: https://rashcolonizeexpand.com/watch.1220376755056.js?dev=e&key=c69e2bcba375713b49986b2e97d7ece9&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=6c31c1963e09e48ddae33d54bd648312e0dbdd9a8d7aec84704e270b6ed997de3124ed8649a22bb3d6bb3f1a61efc1f023e62b111a02d007f0b60492ab13cedc01e3bbd7275538cca2edc91ce7a38cc76112a0a91e3f60fc7af9&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.hzIk9x6W_YZNwi_K81ZuKLKj2n9RCkOfOQdt5I-KGf8; expires=Thu, 03 Jul 2025 06:12:36 GMT; path=/; secure; SameSite=None
Host: rashcolonizeexpand.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: ecabed6ba44101d69fa07a40980a18fa
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET cdn.storageimagedisplay.com/cti/48/5a/89/485a8993b996b6089d80507e880a73a3/1722091967.jpg

45.133.44.1

200 OK

54 kB

URL GET
cdn.storageimagedisplay.com/cti/48/5a/89/485a8993b996b6089d80507e880a73a3/1722091967.jpg
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, progressive, precision 8, 160x600, components 3
Size
54 kB (53497 bytes)
Hash
f3164f9c8ab756cc60a0894982df34ae
1ae55d96ebe04d139b31ff3d6084881924ae492f
a2f4689e5c4d6b7726dd7870fcbb54c2b769fc2b878e7a7573c46aeab81414d2

HTTP Headers

GET /cti/48/5a/89/485a8993b996b6089d80507e880a73a3/1722091967.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:37 GMT
content-type: image/jpeg
content-length: 53497
server: nginx/1.21.6
last-modified: Sat, 27 Jul 2024 14:52:47 GMT
etag: "66a509bf-d0f9"
expires: Sat, 05 Jul 2025 06:11:37 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET appnee.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

172.67.172.207

200 OK

12 kB

URL GET
appnee.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: application/javascript
last-modified: Mon, 30 Jun 2025 18:08:27 GMT
cache-control: max-age=172800, public
content-encoding: gzip
etag: W/"6862d29b-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XbUkQC%2Faf4N1vH0Io%2FDVv9iJxkmOIbk5p0I9E9jwwZbP7vQPlUFNmysURqp286Avh1XdXF6bj4Ji%2FRHslU%2BpZR6jx8X1Ywe0HgnO8odwn9HYZKICL3BMhTrrWa%2FI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
cf-ray: 959439e5fa9556a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 05 Jul 2025 06:11:33 GMT

GET www.profitabledisplaycontent.com/watch.1352853603086.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.20

307 Temporary Redirect

4.9 kB

URL GET
www.profitabledisplaycontent.com/watch.1352853603086.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintD4:56:C4:93:C6:44:42:C9:D6:A0:B2:BD:63:6A:35:BC:2B:76:28:8E
ValiditySun, 25 May 2025 22:22:13 GMT - Sat, 23 Aug 2025 22:22:12 GMT

File type

Size
4.9 kB (4922 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.1352853603086.js?key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&tz=0&dev=e&res=14.3095&rb=&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Location: https://www.profitabledisplaycontent.com/watch.1352853603086.js?dev=e&key=89ed111dc7633df620ed792e7fb6678a&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523155&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=2b4e6da5563b458454d9a8e261e0283a85a18c2a09bff15c19ad775f2ded3f09caf893d85ff058b299a484abb3fab0a112ac92a189067bf249c5764e72463f285d704bc9499dbe91f0438f0d90b559e30f6fa8ce02e5c1c3dfe3&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.XJTQY_bTSBAFrVT4A1NOIsJTmJ0c-1xGWXWlYut6CEI; expires=Thu, 03 Jul 2025 06:12:35 GMT; path=/; secure; SameSite=None
Host: www.profitabledisplaycontent.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 10552359dff26d020d8b3df911a466ff
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET appnee.com/wp-content/plugins/super-rss-reader/public/js/jquery.easy-ticker.min.js

172.67.172.207

200 OK

2.8 kB

URL GET
appnee.com/wp-content/plugins/super-rss-reader/public/js/jquery.easy-ticker.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (2728)
Size
2.8 kB (2789 bytes)
Hash
07af979747ec64c6a535448e8302fefb
723a21f3ecdd604dc75d8be0f81a8bf7349f9471
6e4d0bfa049f2041b9db26d4d3bc3ffb0efd405ad37a8f95d70d45ecaca677a8

HTTP Headers

GET /wp-content/plugins/super-rss-reader/public/js/jquery.easy-ticker.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sj8dhHua3O4FPr6zaBY3tfshFSWAJOX3LiF7Ydp32mGrMkfEJz3rXjRzLpQFhkJEkj0XuOkGAMl9H7CZDsZMmb5xUuMkYJ4Z%2BSDp%2BfmPSZgPIORmXPGw1BWcs4HK"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 20 Apr 2025 18:52:55 GMT
vary: Accept-Encoding
etag: W/"68054287-ae5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e9daae56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3453&min_rtt=0&rtt_var=3288&sent=273&recv=85&lost=0&retrans=0&sent_bytes=294346&recv_bytes=13152&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1130&inflight_dur=232&x=40"

GET static.addtoany.com/menu/svg/icons/skype.js

104.22.70.197

200 OK

1.2 kB

URL GET
static.addtoany.com/menu/svg/icons/skype.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (1206), with no line terminators
Size
1.2 kB (1206 bytes)
Hash
16e4d1291a7f6efc800ff5f2ef376f4e
af89d5da60be7025818656c5ee928a4fc1da3009
158f2be2af784b0790d99dd531a595e0f807dc382bb16ef427e0ce1c989c40af

HTTP Headers

GET /menu/svg/icons/skype.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f7a827abd2-CPH
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"ba4e01c258e4dc3d818b097f60fa4f64"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fe6o3EZKeSeiuHN2L8T65JHWMPTldnkhzmTLE%2FcN36p5HKqz0otXAuXvxadbYlk0un%2FE%2FRo%2FhZKcY%2BEnjrFBg2IEJOE5HtGp7Ydd6u98%2FdFvH7TzcIR0wdBW2OOF2wT%2BBaNoxkpsFxEAP8YzlnNIpktA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

POST appnee.com/cdn-cgi/rum?

172.67.172.207

204 No Content

0 B

URL POST
appnee.com/cdn-cgi/rum?
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1400
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Cookie: cf_clearance=Q_qlBmpy2qPOxpIfX6RgIuOEozUILgk2EyHNxGNPtDg-1751523094-1.2.1.1-9t_fm5QQ5Fg1_JR7cEx2oZZ5YjbJKf7UFCF17PdhiM3oSM1UzcL1V2GFo.YFMfYoIOmY_DG9Bfvisjs_MVw9oEu3APHBd74AW0eYaBoCMuTfY5nbpNDXtCOh0HWE6Ev_wVkeh6ACwjOdj.PNKlxVYy.xOFbP4SU49FFA2Ac3dnzwKZhq1pHvuc3OM8BhKLJcRaRbRJgkHbAfFKDP94dpwRD3xm9vIiH.Di7A8iZ8psY; dom3ic8zudi28v8lr6fgphwffqoz0j6c=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=writingfreedomdecember.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Thu, 03 Jul 2025 06:11:36 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://appnee.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 959439f89b4856a2-OSL
x-frame-options: DENY

GET www.google.com/images/cleardot.gif

142.250.178.68

200 OK

43 B

URL GET
www.google.com/images/cleardot.gif
IP
142.250.178.68:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Thu, 03 Jul 2025 06:11:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET appnee.com/wp-content/plugins/cool-tag-cloud/inc/cool-tag-cloud.css

172.67.172.207

200 OK

21 kB

URL GET
appnee.com/wp-content/plugins/cool-tag-cloud/inc/cool-tag-cloud.css
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
ASCII text, with CRLF line terminators
Size
21 kB (20885 bytes)
Hash
d9e20241c2647d1f2e9956d49cfd12c5
4ca137172f6850588f6129a4131c2a7622c0e8c0
d2615d7ac2eefcbc13c04f8edf38e2b9fec9b8bffdc01ee3a69f3b5bddb150fd

HTTP Headers

GET /wp-content/plugins/cool-tag-cloud/inc/cool-tag-cloud.css HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pg9mEJgqBO%2BSJg7yuwR1o1WuWsQQqYVTsnMKdaE34xPNP3ZubdoSbUH16vUa9FK%2B6Zt5xiJlZR9GGGmk%2Fvl64EEPdtP6i8jp3HywzkaGs7PKMhDzOt81iInKAqsC"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 11 Apr 2023 18:52:56 GMT
vary: Accept-Encoding
etag: W/"6435ac88-5195"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e5ca8a56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5418&min_rtt=84&rtt_var=5481&sent=69&recv=28&lost=0&retrans=0&sent_bytes=56461&recv_bytes=5427&delivery_rate=2836612&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=529&inflight_dur=75&x=40"

GET translate.google.com/translate_a/element.js?cb=initializeGoogleTranslateElement

142.250.178.46

200 OK

79 kB

URL GET
translate.google.com/translate_a/element.js?cb=initializeGoogleTranslateElement
IP
142.250.178.46:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintEE:B4:21:E2:07:A7:35:36:27:81:A0:3A:3E:C9:6C:F5:11:A0:7F:5C
ValidityMon, 02 Jun 2025 08:35:30 GMT - Mon, 25 Aug 2025 08:35:29 GMT

File type
JavaScript source, ASCII text, with very long lines (1785)
Size
79 kB (78690 bytes)
Hash
9b56d7eb04f679a242e278f88e2b113b
e0409412bb636441267fd016d60ca81058845d84
d1da29296d7c595c19f9d8727d950e2afe9bd557c9b79e25daf48b06bcc6c90b

HTTP Headers

GET /translate_a/element.js?cb=initializeGoogleTranslateElement HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 03 Jul 2025 06:11:34 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET nannyirrationalacquainted.com/watch.1246839373931.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=15328ededab6b2fae4605a2838b4a5a6ba3e6771ba588b1d3a404264a43c7bf8e20b4bfa5ac7ddc9c16b17999f2b907e643c5761f1b4d4a24148466794f5fef3bc047d45c4d226dcd413a85cb940632cf9a2aaccfe91915f4ee4&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1

192.243.59.12

200 OK

5.4 kB

URL GET
nannyirrationalacquainted.com/watch.1246839373931.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=15328ededab6b2fae4605a2838b4a5a6ba3e6771ba588b1d3a404264a43c7bf8e20b4bfa5ac7ddc9c16b17999f2b907e643c5761f1b4d4a24148466794f5fef3bc047d45c4d226dcd413a85cb940632cf9a2aaccfe91915f4ee4&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectnannyirrationalacquainted.com
Fingerprint2A:C3:FA:F0:67:BA:AA:76:2F:14:F9:D5:47:AA:D5:03:EA:52:31:54
ValidityThu, 19 Jun 2025 00:50:28 GMT - Wed, 17 Sep 2025 00:50:27 GMT

File type
JavaScript source, ASCII text, with very long lines (4529)
Size
5.4 kB (5405 bytes)
Hash
aa42345d1e4919052b3a020c2f944fd1
afcb5afe6a320adf2d65faace5b027a8f941876a
7fc913465d91456730ec0c9371a8e89cfc1f8995c9b6a27351916a9ce671c348

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1246839373931.js?dev=e&key=236ae4a58f1fd2df2e19cd1891936576&kw=%5B%22v1%22%2C%221%22%2C%22netgenius%22%2C%22%E2%80%93%22%2C%22internet%22%2C%22connection%22%2C%22monitoring%22%2C%22control%22%2C%22and%22%2C%22optimization%22%2C%22tool%22%2C%22appnee%22%2C%22freeware%22%2C%22group%22%5D&pst=1751523156&rb=&refer=https%3A%2F%2Fappnee.com%2Fnetgenius%2F&res=14.3095&rmtc=t&shu=15328ededab6b2fae4605a2838b4a5a6ba3e6771ba588b1d3a404264a43c7bf8e20b4bfa5ac7ddc9c16b17999f2b907e643c5761f1b4d4a24148466794f5fef3bc047d45c4d226dcd413a85cb940632cf9a2aaccfe91915f4ee4&tz=0&uuid=3029108d-7721-4d91-b0cc-33bdc134f3cd%3A2%3A1 HTTP/1.1
Host: nannyirrationalacquainted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
Referer: https://appnee.com/
DNT: 1
Connection: keep-alive
Cookie: ain=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJwIjp7ImlkIjoxNzA2MTkxMSwiayI6IjIzNmFlNGE1OGYxZmQyZGYyZTE5Y2QxODkxOTM2NTc2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo1OTc5NCwicGlkIjo0OTIxNSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjoyNSwicHQiOjQsInBrIjoibjBqY3ZzdDE2IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjI2NjU2MTExNSwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEzNjkyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMzQuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2FwcG5lZS5jb20vbmV0Z2VuaXVzLyIsImFyIjpbXX19.05kucGwDvXztM8WBvySSz7UN-A0Tyzf1TnuARohsVmU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Jul 2025 06:11:36 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Access-Control-Allow-Origin: https://appnee.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3029108d-7721-4d91-b0cc-33bdc134f3cd:2:1; expires=Thu, 10 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
pdhtkv25=true; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
uncs25=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
u_pl17061911=1; expires=Fri, 04 Jul 2025 06:11:36 GMT; path=/; secure; SameSite=None
Host: nannyirrationalacquainted.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 4ee5a269ae9698e2926a6e0b3b9bd365
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET static.addtoany.com/menu/svg/icons/email.js

104.22.70.197

200 OK

415 B

URL GET
static.addtoany.com/menu/svg/icons/email.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectstatic.addtoany.com
FingerprintB0:87:6F:68:70:86:79:CD:36:9D:6A:45:5D:7A:47:75:2A:24:8B:F2
ValiditySat, 28 Jun 2025 07:02:34 GMT - Fri, 26 Sep 2025 08:02:26 GMT

File type
ASCII text, with very long lines (415), with no line terminators
Size
415 B (415 bytes)
Hash
452a9a6a280379512ab5764a1d42bae1
61e0f75ff25c554dbf65743f1f6bf9d003ddc905
d432ad1988efa5b258294f52dae3d1b4c10660aec15e49017e21a1ee74bfd453

HTTP Headers

GET /menu/svg/icons/email.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appnee.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:36 GMT
content-type: application/javascript
cf-ray: 959439f7b836abd2-CPH
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"eb2119ad4221a9d01abc336e06962867"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Im%2BqWZ%2BdlTGbxqrKfreXQo1zdU6TziKpR%2BBWaFg%2B4cjlOfmUsdMr23nHf%2FI0Xm30grXp1gxRWBXq%2FrVPZFjYCUnjJ2QEZFFI9iPXN7tE2R%2B21q%2BqXi9ZywW6FoK7Rjp0GBkic%2FuT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: br
cf-cache-status: REVALIDATED
priority: u=3,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
speculation-rules: "/cdn-cgi/speculation"
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-700-normal.woff2?ver=23

172.67.172.207

200 OK

23 kB

URL GET
appnee.com/wp-content/themes/twentyfourteen/fonts/lato/lato-latin-700-normal.woff2?ver=23
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /wp-content/themes/twentyfourteen/fonts/lato/lato-latin-700-normal.woff2?ver=23 HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/wp-content/themes/twentyfourteen/fonts/font-lato.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: font/woff2
content-length: 23040
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l0B7%2BHjSIji9gt52qVLgEpaZopugOWvxJUnmOdpXIBSKIixGUzFDD47BvirLXQtglfZoLKJiNtDLd2UN80nmIpsMLY100wn3BaBi%2FFI2BHdGGUq%2BgSt0qb%2FdTwWF"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 07 Jan 2025 10:49:41 GMT
etag: "677d06c5-5a00"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
cf-cache-status: MISS
cf-ray: 959439e7fa9f56a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1838&min_rtt=0&rtt_var=1135&sent=212&recv=65&lost=0&retrans=0&sent_bytes=238308&recv_bytes=8770&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=828&inflight_dur=169&x=40"

GET www.google.com/cse/static/style/look/v4/default.css

142.250.178.68

200 OK

4.5 kB

URL GET
www.google.com/cse/static/style/look/v4/default.css
IP
142.250.178.68:443
ASN
#15169 GOOGLE

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint4F:74:10:0A:01:21:55:4F:03:B9:F9:8B:6A:DE:A2:47:7C:44:89:73
ValidityMon, 02 Jun 2025 08:37:21 GMT - Mon, 25 Aug 2025 08:37:20 GMT

File type
ASCII text
Size
4.5 kB (4496 bytes)
Hash
7208a8191a41813c0cfc0f7cf0cbe00f
acfaab19c6dd5f61f2ad119e9811bbe45c826cd6
65d0105169e2157f4b207920a8aab031c4230281e4d712eed7ac2f08efa31e9e

HTTP Headers

GET /cse/static/style/look/v4/default.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1096
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Jul 2025 06:04:16 GMT
expires: Thu, 03 Jul 2025 06:54:16 GMT
cache-control: public, max-age=3000
age: 439
last-modified: Mon, 30 Jun 2025 14:30:00 GMT
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RST2gkxReuzu7p9zv4B92LB-ckCjLpnumZTbuHxbhGgjGJm5UcPFVXVU9qU93VVnVPTwaUYGDZk4x6cT11vkk2uC6ynrwohIkgEhCcWw6by54Eb8IePElPBkYf1PtT3yvq-17Vnf38nPjI6dn6e7ovlaLzrbpbe3VTJlwXtrZ6q-a5dfdabVMmbf9arVc5033Da_p197XaO4Jt6_mG67mu53q1JWlEpHvzExQyfRh49cCt-4261_LRM_-tbe7AUge8e06eh-TjZ55EH0KyEZL40Q1htzOdvv52nCuaaYMuP_og2U50kSCepZFxECVH025oOybkqzno5GiqALp7UClAKMdk7spjhMnRlCbC7uEF01BBJAj5_1F0RxBqBElHYHoPkv9OAMaxuoYkvr-qTUF3LlBaoWNy-elfkMWYXH78ApL4u0Ule7UNrfJM6sSiF5WQvRFkZ4Q0P0HWn4MsTsCyTyH5b2T-6QqS-GDNKg3Jy4l6GY2gxADUOsirJR3kkYM8dRDzs5rvLvjMo812FHB21fWp73MRusFCw3VpwK4iZxW1AbJ0AKYGYGYXqdnFthzA5MewWyUsd2CzMXHe30WXlygEQWEJCkpQSIIiIyi65SFXtmHL-1zZPPSmsTGNzXKos84-PdRZRyQE1AxgeHkg04_sHlh2adiPLB_qytEwK4c05OV-ek6em0zuyfEr2BZntabP2qLBIkqvhixgLS8UQSMQNBAe5YEIYWUJaecmA-nLMSF_fIG0isfXEdITWHUCJl8EzT3QogTdKtFPHtA0TYSoMx2D6xJpdhnZjrOvzslLk_s37vwJwU6v977Mfrz9yd9gpkRqStyWPxN01N3hTV2Qg5u6sOT7tTSTsezT6lU3MpqJSw_eFTuFNnz5hh188yargCp9eEvYbIUmXCYdS75dlJwLs6QNE-SnZbspwvXcbi3mJsnTlfW3lpbj1AhrpU5GoJWke4_A5Jg8-8vHkx9b_-EzSDOCyUvE-SmZGqQ-AUt3YdMZf6sJjJr1hKmDIi-HphHONpUkUGJW07CE_VcdzvKhodVpKst9excd44Bme0jiEl1ToqtKUDWAzf83zFJzev3Xe5V9jVA5w1AZ5yBURn1-MWYrz2qtRthsLyy0RdTmUZM3G00etFwR-DRo-4HfQmbHW9HLV_4JAAD__zqFFLKTBAAA

192.243.61.227

200 OK

0 B

URL GET
writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RST2gkxReuzu7p9zv4B92LB-ckCjLpnumZTbuHxbhGgjGJm5UcPFVXVU9qU93VVnVPTwaUYGDZk4x6cT11vkk2uC6ynrwohIkgEhCcWw6by54Eb8IePElPBkYf1PtT3yvq-17Vnf38nPjI6dn6e7ovlaLzrbpbe3VTJlwXtrZ6q-a5dfdabVMmbf9arVc5033Da_p197XaO4Jt6_mG67mu53q1JWlEpHvzExQyfRh49cCt-4261_LRM_-tbe7AUge8e06eh-TjZ55EH0KyEZL40Q1htzOdvv52nCuaaYMuP_og2U50kSCepZFxECVH025oOybkqzno5GiqALp7UClAKMdk7spjhMnRlCbC7uEF01BBJAj5_1F0RxBqBElHYHoPkv9OAMaxuoYkvr-qTUF3LlBaoWNy-elfkMWYXH78ApL4u0Ule7UNrfJM6sSiF5WQvRFkZ4Q0P0HWn4MsTsCyTyH5b2T-6QqS-GDNKg3Jy4l6GY2gxADUOsirJR3kkYM8dRDzs5rvLvjMo812FHB21fWp73MRusFCw3VpwK4iZxW1AbJ0AKYGYGYXqdnFthzA5MewWyUsd2CzMXHe30WXlygEQWEJCkpQSIIiIyi65SFXtmHL-1zZPPSmsTGNzXKos84-PdRZRyQE1AxgeHkg04_sHlh2adiPLB_qytEwK4c05OV-ek6em0zuyfEr2BZntabP2qLBIkqvhixgLS8UQSMQNBAe5YEIYWUJaecmA-nLMSF_fIG0isfXEdITWHUCJl8EzT3QogTdKtFPHtA0TYSoMx2D6xJpdhnZjrOvzslLk_s37vwJwU6v977Mfrz9yd9gpkRqStyWPxN01N3hTV2Qg5u6sOT7tTSTsezT6lU3MpqJSw_eFTuFNnz5hh188yargCp9eEvYbIUmXCYdS75dlJwLs6QNE-SnZbspwvXcbi3mJsnTlfW3lpbj1AhrpU5GoJWke4_A5Jg8-8vHkx9b_-EzSDOCyUvE-SmZGqQ-AUt3YdMZf6sJjJr1hKmDIi-HphHONpUkUGJW07CE_VcdzvKhodVpKst9excd44Bme0jiEl1ToqtKUDWAzf83zFJzev3Xe5V9jVA5w1AZ5yBURn1-MWYrz2qtRthsLyy0RdTmUZM3G00etFwR-DRo-4HfQmbHW9HLV_4JAAD__zqFFLKTBAAA
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint49:E1:6D:67:07:D9:7B:3A:7E:92:9A:AE:18:14:FC:71:08:F1:FB:FC
ValidityWed, 18 Jun 2025 15:55:54 GMT - Tue, 16 Sep 2025 15:55:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC_1RST2gkxReuzu7p9zv4B92LB-ckCjLpnumZTbuHxbhGgjGJm5UcPFVXVU9qU93VVnVPTwaUYGDZk4x6cT11vkk2uC6ynrwohIkgEhCcWw6by54Eb8IePElPBkYf1PtT3yvq-17Vnf38nPjI6dn6e7ovlaLzrbpbe3VTJlwXtrZ6q-a5dfdabVMmbf9arVc5033Da_p197XaO4Jt6_mG67mu53q1JWlEpHvzExQyfRh49cCt-4261_LRM_-tbe7AUge8e06eh-TjZ55EH0KyEZL40Q1htzOdvv52nCuaaYMuP_og2U50kSCepZFxECVH025oOybkqzno5GiqALp7UClAKMdk7spjhMnRlCbC7uEF01BBJAj5_1F0RxBqBElHYHoPkv9OAMaxuoYkvr-qTUF3LlBaoWNy-elfkMWYXH78ApL4u0Ule7UNrfJM6sSiF5WQvRFkZ4Q0P0HWn4MsTsCyTyH5b2T-6QqS-GDNKg3Jy4l6GY2gxADUOsirJR3kkYM8dRDzs5rvLvjMo812FHB21fWp73MRusFCw3VpwK4iZxW1AbJ0AKYGYGYXqdnFthzA5MewWyUsd2CzMXHe30WXlygEQWEJCkpQSIIiIyi65SFXtmHL-1zZPPSmsTGNzXKos84-PdRZRyQE1AxgeHkg04_sHlh2adiPLB_qytEwK4c05OV-ek6em0zuyfEr2BZntabP2qLBIkqvhixgLS8UQSMQNBAe5YEIYWUJaecmA-nLMSF_fIG0isfXEdITWHUCJl8EzT3QogTdKtFPHtA0TYSoMx2D6xJpdhnZjrOvzslLk_s37vwJwU6v977Mfrz9yd9gpkRqStyWPxN01N3hTV2Qg5u6sOT7tTSTsezT6lU3MpqJSw_eFTuFNnz5hh188yargCp9eEvYbIUmXCYdS75dlJwLs6QNE-SnZbspwvXcbi3mJsnTlfW3lpbj1AhrpU5GoJWke4_A5Jg8-8vHkx9b_-EzSDOCyUvE-SmZGqQ-AUt3YdMZf6sJjJr1hKmDIi-HphHONpUkUGJW07CE_VcdzvKhodVpKst9excd44Bme0jiEl1ToqtKUDWAzf83zFJzev3Xe5V9jVA5w1AZ5yBURn1-MWYrz2qtRthsLyy0RdTmUZM3G00etFwR-DRo-4HfQmbHW9HLV_4JAAD__zqFFLKTBAAA HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Cookie: pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; u_pl14925862=1; nlec34c6e2cfaa7bc9c51be929ea9e1ad9eb=[5474028]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
Access-Control-Allow-Origin: *
Vary: Origin
Access-Control-Allow-Credentials: true
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cab7e779c7596173534514bd7cb7d30e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js

172.240.253.132

200 OK

27 kB

URL GET
filletfiguredconstrain.com/89ed111dc7633df620ed792e7fb6678a/invoke.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectfilletfiguredconstrain.com
Fingerprint5F:8F:C3:5F:A2:CD:0A:38:5F:5E:CB:F2:4C:20:FB:93:FB:DC:2B:10
ValidityTue, 27 May 2025 21:41:32 GMT - Mon, 25 Aug 2025 21:41:31 GMT

File type
JavaScript source, ASCII text, with very long lines (27404), with no line terminators
Size
27 kB (27404 bytes)
Hash
f2cf719646570cc700b0125fa73911e9
4e75a2f4084a36b8af8ed57c884e956aef0e3307
5ff47c511d8b735f89bd85ddfb6b781dd34e390fdb8a589f4801428c544bd423

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /89ed111dc7633df620ed792e7fb6678a/invoke.js HTTP/1.1
Host: filletfiguredconstrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 03 Jul 2025 06:11:35 GMT
Content-Type: application/javascript
Content-Length: 11501
Connection: keep-alive
content-encoding: gzip
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
accept-ch: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
x-envoy-upstream-service-time: 2
Host: filletfiguredconstrain.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 286fff093b06a920dd2522081f8ccfc3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET cdn.storageimagedisplay.com/cti/fc/db/83/fcdb83d64d5c69039761b9122b9d47ed/1716369398.jpg

45.133.44.1

200 OK

89 kB

URL GET
cdn.storageimagedisplay.com/cti/fc/db/83/fcdb83d64d5c69039761b9122b9d47ed/1716369398.jpg
IP
45.133.44.1:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://appnee.com/netgenius/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT

File type
JPEG image data, baseline, precision 8, 160x600, components 3
Size
89 kB (89380 bytes)
Hash
9349561f60072bea69185dd7c5d8ab70
691a55908cac8d378ed995223e8e2f6905ba7961
ec8eace47742336e3554083a8793a6689af7d1ddb85408b72c9cef7f96ef41e3

HTTP Headers

GET /cti/fc/db/83/fcdb83d64d5c69039761b9122b9d47ed/1716369398.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 03 Jul 2025 06:11:37 GMT
content-type: image/jpeg
content-length: 89380
server: nginx/1.21.6
last-modified: Wed, 22 May 2024 09:16:47 GMT
etag: "664db7ff-15d24"
expires: Sat, 05 Jul 2025 06:11:37 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

GET appnee.com/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js

172.67.172.207

200 OK

23 kB

URL GET
appnee.com/wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (23432)
Size
23 kB (23433 bytes)
Hash
63fad256b41b5d84bc1e86461a96a318
20d44c76509b9fb61a6e005112d60a1f3b73b8ec
a69c12ccd186a899db79fce802b46c08e71f69c2c422be2666ed8565e3add026

HTTP Headers

GET /wp-content/plugins/q2w3-fixed-widget/js/frontend.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y5Gas92MBTEeEXzypcycckcoLLpFjoYWXDQZDmFAACFBJSycmnfVx0i4xlbiQZYHLySVz2HhaeJyrAsRCEmeGHEfhNlWzZPLDoOwj7sxdgvxmyxnw9JSddK6eZZh"}],"group":"cf-nel","max_age":604800}
last-modified: Mon, 28 Nov 2022 18:52:58 GMT
vary: Accept-Encoding
etag: W/"6385038a-5b89"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
age: 16708
cf-cache-status: HIT
cf-ray: 959439e9aaa356a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1576&min_rtt=0&rtt_var=957&sent=244&recv=73&lost=0&retrans=0&sent_bytes=273838&recv_bytes=10759&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=985&inflight_dur=201&x=40"

GET appnee.com/wp-includes/js/jquery/jquery.min.js

172.67.172.207

200 OK

88 kB

URL GET
appnee.com/wp-includes/js/jquery/jquery.min.js
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/netgenius/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:34 GMT
content-type: application/javascript; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QSm9z2wOgSCLNQ7ZeuRxj%2B3SKkVhz7kSPlJ6WSXgsqlSOoySznNyFnQzb2MNdYpFIeGSmynRF4jsjEN5iOUwGd2wc98tJRLKglDeKKSbFhEApo6PuJzaUSq7iANv"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 08 Nov 2023 02:09:23 GMT
vary: Accept-Encoding
etag: W/"654aedd3-15601"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
cf-cache-status: MISS
cf-ray: 959439e9fab256a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2943&min_rtt=0&rtt_var=2766&sent=277&recv=87&lost=0&retrans=0&sent_bytes=298902&recv_bytes=13243&delivery_rate=9841954&ss_exit_cwnd=33449&ss_exit_reason=2&cwnd=30539&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=1167&inflight_dur=256&x=40"

GET img.appnee.com/download/Download_s_green.png

172.67.172.207

200 OK

1.4 kB

URL GET
img.appnee.com/download/Download_s_green.png
IP
172.67.172.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appnee.com/netgenius/
Certificate
IssuerGoogle Trust Services
Subjectappnee.com
Fingerprint4F:83:D2:9B:50:12:C0:7E:8F:1B:47:E9:D6:4A:73:2D:0C:94:A4:76
ValidityWed, 11 Jun 2025 15:05:39 GMT - Tue, 09 Sep 2025 16:03:02 GMT

File type
PNG image data, 88 x 23, 8-bit/color RGBA, non-interlaced
Size
1.4 kB (1432 bytes)
Hash
913a0b16ca46a5b8e04350fb8dde7831
64bae33319c2b2d3668bbf66f79cb02e90be13ca
f994d3d1a6a057d8968b53fe4ea59e5e7a75cb304351b46c7eb2900c1e4e9567

HTTP Headers

GET /download/Download_s_green.png HTTP/1.1
Host: img.appnee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appnee.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 03 Jul 2025 06:11:33 GMT
content-type: image/png
content-length: 1432
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AbPdmTGbyFoueTJTBwow8DEvS01aljj79lR9RmUqZo24lccU669qyAkNT8sLnK1yVA24KtwwPHQ46cxm68MBrmqpEmZJxnfxb%2FK8LjcoeXVFAFLonzUQHI6HJT04mdxY3A%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sat, 20 Jan 2018 06:54:30 GMT
etag: "5a62e7a6-598"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
age: 927121
cf-cache-status: HIT
cf-ray: 959439e5fa9456a2-OSL
server: cloudflare
speculation-rules: "/cdn-cgi/speculation"
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5582&min_rtt=84&rtt_var=6004&sent=64&recv=26&lost=0&retrans=0&sent_bytes=52375&recv_bytes=5338&delivery_rate=2836612&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=33449&unsent_bytes=0&cid=56b60e5ec8884fb9&ts=387&inflight_dur=48&x=40"

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (107)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML