Report - jupiler.be@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html

Report Overview

Visited public
2025-06-18 17:25:33
Tags
Submit Tags
URL
jupiler.be@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Finishing URL
jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
IP / ASN
172.67.188.95
#13335 CLOUDFLARENET
Title
Jupiler Zomer: Win Verfrissende Prijzen! 🍻

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-06-18	1.3 kB	265 kB	104.17.24.14
shortner1.cc	unknown	2024-05-08	2025-06-13	2025-06-13	2.6 kB	209 kB	172.67.188.95
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2025-06-18	409 B	90 kB	142.250.178.74
cdn.onesignal.com	3015	2011-09-10	2015-04-22	2025-06-12	391 B	10 kB	104.17.111.223

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

Scan Date	Severity	Indicator	Alert
2025-06-18	medium	jupiler.be@shortner1.cc/WLBuCBnG/global.js	Unique code from Jetriz, Swid & Jeniva of the Tetris framework

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html	ScriptElement	2.2 kB	2023-03-07	2025-07-19
Pretty URL jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-07-19 10:15 Times Seen41 Hash bfe75a5c92892be3ada55254cd1aa69c f026f105ac093059a0c530ea292d71de1ac32777 bcd608e3d0f8b083f98972f8cb32a767806c8afe1fdbc278f7ccf86b5705638a Loading...

	jupiler%2Ebe@shortner1.cc/WLBuCBnG/global.js	ScriptElement	32 kB	2025-06-18	2025-06-21
Pretty URL jupiler%2Ebe@shortner1.cc/WLBuCBnG/global.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-18 16:34 Last Seen2025-06-21 10:26 Times Seen13 Hash 35d5647362f2d412856c4c2a603270da f394287fcb02d5ef22e003865bc9a288177eb81f 9f248b4522313d64ae80c85ce3757bc8ef4d467cb9f2debc17df86979777df97 Loading...

	cdn.onesignal.com/sdks/OneSignalSDK.js	ScriptElement	9.2 kB	2024-07-22	2025-07-25
Pretty URL cdn.onesignal.com/sdks/OneSignalSDK.js IP 104.17.111.223 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-22 22:24 Last Seen2025-07-25 00:50 Times Seen5191 Hash 09282956186c8515ef0d208902803581 ea83b81c9955b3e983a7bef75714a9cefa904151 ec8b1b07980996f574075e1b7e895d5d47794b9dcf345a68d60fbb17034f7bef Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-07-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 142.250.178.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 04:04 Times Seen253391 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.0/js/bootstrap.min.js	ScriptElement	64 kB	2023-03-07	2025-07-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.0/js/bootstrap.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-07-24 18:49 Times Seen6540 Hash f0c2bcf5ef0c4476508d79ec9cdcce07 3beed68ed7d753c6bf4f61c26386ddd7929ba030 edd03b96ae4ff7886406c59d7dfeeaa1b624a7da297bf2f92d0cb6b7f9633cba Loading...

	jupiler%2Ebe@shortner1.cc/WLBuCBnG/index_files/config.js	ScriptElement	31 kB	2025-06-18	2025-06-18
Pretty URL jupiler%2Ebe@shortner1.cc/WLBuCBnG/index_files/config.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-18 16:34 Last Seen2025-06-18 17:25 Times Seen2 Hash ef80b60ac242c2fde5c89ee2f9e18b5a a5322b171b0cfecde993e8138545ad0fd2760dc3 a195b24cfd28ad39e258033e3500dbaf3c12f022237a168b4d8f3bd2f7ce015d Loading...

HTTP Transactions (11)

URL IP Response Size

GET cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css

104.17.24.14

200 OK

37 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (372)
Size
37 kB (37414 bytes)
Hash
c495654869785bc3df60216616814ad1
0140952c64e3f2b74ef64e050f2fe86eab6624c8
36e0a7e08bee65774168528938072c536437669c1b7458ac77976ec788e4439c

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: text/css; charset=utf-8
content-length: 5884
cf-ray: 951c7c79df247131-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-9226"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 734970
expires: Mon, 08 Jun 2026 17:25:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LPB10JzfhBSFlju%2B%2BggcjQ8rOjKmQMDNNsqf%2BkAmoxLk8L%2Bd%2FyGTBimVEWT8LKNMFEcqQhuA78W8Z84JrCn%2BlL9UzEt16GWUfyqfujcaMMbd7biqSruT40GD%2FLTxBCtjHHiYbO83"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET shortner1.cc/sumjupnl/index_files/config.js

172.67.188.95

200 OK

31 kB

URL GET
shortner1.cc/sumjupnl/index_files/config.js
IP
172.67.188.95:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectshortner1.cc
FingerprintBB:A0:10:80:5D:F8:70:EA:B4:DA:8B:7D:C4:87:93:C8:2E:45:64:BC
ValiditySun, 27 Apr 2025 20:15:42 GMT - Sat, 26 Jul 2025 21:13:57 GMT

File type
JavaScript source, ASCII text, with very long lines (31063), with no line terminators
Size
31 kB (31063 bytes)
Hash
ef80b60ac242c2fde5c89ee2f9e18b5a
a5322b171b0cfecde993e8138545ad0fd2760dc3
a195b24cfd28ad39e258033e3500dbaf3c12f022237a168b4d8f3bd2f7ce015d

HTTP Headers

GET /sumjupnl/index_files/config.js HTTP/1.1
Host: shortner1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IdQv9BQljKXD3kx75L8362PDyCjL2%2BbDF0BEVNqWpG8KNetpyGj2ck2e15gPetDzTdC8FgGuTlioTixJ9Sm%2BookHqDsM56dKU1ho1FTHeu4NQOSYcJ9zH99YedAaoPU%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 18 Jun 2025 11:44:27 GMT
etag: W/"6852a69b-7957"
content-encoding: gzip
age: 2868
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
cf-ray: 951c7c7b5fb7569d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3503&min_rtt=1316&rtt_var=2120&sent=25&recv=15&lost=0&retrans=0&sent_bytes=12250&recv_bytes=2446&delivery_rate=3169009&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b1f355304cac6794&ts=308&inflight_dur=43&x=80"

GET ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js

142.250.178.74

200 OK

90 kB

URL GET
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
142.250.178.74:443
ASN
#15169 GOOGLE

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintFF:78:1F:2C:E7:6A:27:90:8B:25:07:97:DD:25:4A:FA:6F:1F:0F:31
ValidityMon, 19 May 2025 08:42:52 GMT - Mon, 11 Aug 2025 08:42:51 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89501 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jun 2025 18:59:49 GMT
expires: Fri, 12 Jun 2026 18:59:49 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 512740
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET jupiler.be@shortner1.cc/WLBuCBnG/global.js

172.67.188.95

200 OK

32 kB

URL GET
jupiler.be@shortner1.cc/WLBuCBnG/global.js
IP
172.67.188.95:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectshortner1.cc
FingerprintBB:A0:10:80:5D:F8:70:EA:B4:DA:8B:7D:C4:87:93:C8:2E:45:64:BC
ValiditySun, 27 Apr 2025 20:15:42 GMT - Sat, 26 Jul 2025 21:13:57 GMT

File type
ASCII text, with very long lines (31957), with no line terminators
Size
32 kB (31957 bytes)
Hash
35d5647362f2d412856c4c2a603270da
f394287fcb02d5ef22e003865bc9a288177eb81f
9f248b4522313d64ae80c85ce3757bc8ef4d467cb9f2debc17df86979777df97

Detections

Analyzer	Verdict	Alert
Public Nextron YARA rules	malware	Unique code from Jetriz, Swid & Jeniva of the Tetris framework

HTTP Headers

GET /WLBuCBnG/global.js HTTP/1.1
Host: shortner1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KRqVXQnbgs8rGofufBTDz5WsAGC%2FffcRy7K3QqEuLl37Bci%2F%2FBkYJ1uAcKTEhMgLawMl2Pw6UqcFJt1wxuF%2FtfpaSCYMrkJnkoB11ozyDFWiuu5lVgEoNUeIvsBWki8%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Wed, 18 Jun 2025 16:26:45 GMT
etag: W/"6852e8c5-7cd5"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
vary: accept-encoding
cf-ray: 951c7c79cfa6569d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3850&min_rtt=1316&rtt_var=2756&sent=17&recv=11&lost=0&retrans=0&sent_bytes=5536&recv_bytes=1837&delivery_rate=632534&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b1f355304cac6794&ts=113&inflight_dur=20&x=80"

GET cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.0/css/bootstrap.min.css

104.17.24.14

200 OK

161 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.0/css/bootstrap.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
ASCII text, with very long lines (65326)
Size
161 kB (161409 bytes)
Hash
d432e4222814b62dd30c9513dcc29440
2cac4afc120983921411296bd4e8fd8a94ba237e
4ffcc598ee6cff4692c1cea272cd8a2f195f6dec32473e94370d6cdcfa5fe601

HTTP Headers

GET /ajax/libs/bootstrap/4.6.0/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: text/css; charset=utf-8
content-length: 17764
cf-ray: 951c7c79ef2f7131-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60f698d0-4564"
last-modified: Tue, 20 Jul 2021 09:35:12 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 425153
expires: Mon, 08 Jun 2026 17:25:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=28X%2FUVtC5D93TQHg22FjcVHz7rJ6%2FfWPuIGFDbrqKDkRdXD%2Fr0wXZQaGCwcQfe5NY3WHxu5%2FIwaa%2Fi2WY%2BEnxI1Boovq9NpIdcawKXm4FJ2nSDtidDRvO4tw9ZWqQMLFeQF93z%2BC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET jupiler.be@shortner1.cc/WLBuCBnG/index_files/themecustom.css

172.67.188.95

302 Found

16 kB

URL GET
jupiler.be@shortner1.cc/WLBuCBnG/index_files/themecustom.css
IP
172.67.188.95:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectshortner1.cc
FingerprintBB:A0:10:80:5D:F8:70:EA:B4:DA:8B:7D:C4:87:93:C8:2E:45:64:BC
ValiditySun, 27 Apr 2025 20:15:42 GMT - Sat, 26 Jul 2025 21:13:57 GMT

File type

Size
16 kB (16138 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WLBuCBnG/index_files/themecustom.css HTTP/1.1
Host: shortner1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cnn%2BsVf45SUV4yGNb7rk%2BjJf4zc7g63sWWR6XAKTTjGJYpgNNugYJOU%2FIno1IHIl7hDLKnk7H4GBDatTSKo9t25XbZxkSBxguoVwZdV%2FeRUYrfi42bzh1c%2BHw1PGlwI%3D"}],"group":"cf-nel","max_age":604800}
location: https://shortner1.cc/sumjupnl/index_files/themecustom.css
cf-cache-status: BYPASS
cf-ray: 951c7c79cfa4569d-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4575&min_rtt=1841&rtt_var=2643&sent=13&recv=9&lost=0&retrans=0&sent_bytes=3831&recv_bytes=1751&delivery_rate=564337&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b1f355304cac6794&ts=104&inflight_dur=17&x=80"

GET jupiler.be@shortner1.cc/WLBuCBnG/index_files/config.js

172.67.188.95

302 Found

31 kB

URL GET
jupiler.be@shortner1.cc/WLBuCBnG/index_files/config.js
IP
172.67.188.95:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectshortner1.cc
FingerprintBB:A0:10:80:5D:F8:70:EA:B4:DA:8B:7D:C4:87:93:C8:2E:45:64:BC
ValiditySun, 27 Apr 2025 20:15:42 GMT - Sat, 26 Jul 2025 21:13:57 GMT

File type

Size
31 kB (31063 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /WLBuCBnG/index_files/config.js HTTP/1.1
Host: shortner1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oU%2BPrFOJ1l5aixUDgm6K%2BvwmZa5c6u8kRLl5EYTq50Vr3mTCeYRNDNtgaZG7HH%2FhKHvF%2BfuoPnRwbKPP9QnNcHLiAzY9nEBJXXcwElHQqPUZthieWW%2BD8B7FkUWNs4Q%3D"}],"group":"cf-nel","max_age":604800}
location: https://shortner1.cc/sumjupnl/index_files/config.js
cf-cache-status: BYPASS
cf-ray: 951c7c79cfa5569d-OSL
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4212&min_rtt=1667&rtt_var=2709&sent=15&recv=10&lost=0&retrans=0&sent_bytes=4703&recv_bytes=1794&delivery_rate=564337&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b1f355304cac6794&ts=108&inflight_dur=19&x=80"

GET shortner1.cc/sumjupnl/index_files/themecustom.css

172.67.188.95

200 OK

16 kB

URL GET
shortner1.cc/sumjupnl/index_files/themecustom.css
IP
172.67.188.95:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectshortner1.cc
FingerprintBB:A0:10:80:5D:F8:70:EA:B4:DA:8B:7D:C4:87:93:C8:2E:45:64:BC
ValiditySun, 27 Apr 2025 20:15:42 GMT - Sat, 26 Jul 2025 21:13:57 GMT

File type
ASCII text
Size
16 kB (16138 bytes)
Hash
2967e526346d5fbd86076432e96c7f53
8ad2b508942bcf43fa9f5cc9ba55d01880a28a23
6984940488726e4293ea70d5d272e7a94fdd5f8cc37072ab1a853ae63c461c37

HTTP Headers

GET /sumjupnl/index_files/themecustom.css HTTP/1.1
Host: shortner1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: text/css
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eo%2BFm4zUMJfzi1DMHwk6qRVuj5iUqlG54udiexqPgaSfnoEvB0kLxWX1SZ7IfYV4ZPk%2B2ujb0zh25ZbsYh06wv8Ex%2BVqRdscHT8GWQo9XZ3DeFBJ%2F4gA5c0sdDGEmdQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 17 Jun 2025 12:03:33 GMT
etag: W/"68515995-3f0a"
content-encoding: gzip
age: 2868
cache-control: max-age=14400
cf-cache-status: HIT
vary: accept-encoding
cf-ray: 951c7c7b5fb6569d-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3503&min_rtt=1316&rtt_var=2120&sent=32&recv=15&lost=0&retrans=0&sent_bytes=19976&recv_bytes=2446&delivery_rate=3169009&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=12000&unsent_bytes=0&cid=b1f355304cac6794&ts=309&inflight_dur=43&x=80"

GET jupiler.be@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html

172.67.188.95

200 OK

78 kB

URL User Request GET
jupiler.be@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
IP
172.67.188.95:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectshortner1.cc
FingerprintBB:A0:10:80:5D:F8:70:EA:B4:DA:8B:7D:C4:87:93:C8:2E:45:64:BC
ValiditySun, 27 Apr 2025 20:15:42 GMT - Sat, 26 Jul 2025 21:13:57 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (35239)
Size
78 kB (77611 bytes)
Hash
a36c4b9d768df8371370117c3608d1da
37f915e30f3f73cdfde1fc699d9f85836af703cb
9db84d513e0e3ae1419e72aa5cc4a1a996cc4e4f031a870489f397fdd96a9183

HTTP Headers

GET /WLBuCBnG/?koelbox-jupiler-zomeractie.html HTTP/1.1
Host: shortner1.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 18 Jun 2025 17:25:12 GMT
content-type: text/html
server: cloudflare
last-modified: Wed, 18 Jun 2025 16:03:52 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=fLvSz9jz3e88yN3icwhCBrcsAv1jdr2twNOCvgH6Bf8W7iE%2BOW5sSKJ5CzeHVv5Yay6%2FVJFU9tcdwvuSWtaSnpTXQ7M4rev6Wg8%3D"}]}
vary: accept-encoding
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 951c7c0e7ea6b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.0/js/bootstrap.min.js

104.17.24.14

200 OK

64 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/bootstrap/4.6.0/js/bootstrap.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint4B:06:E9:E2:47:47:F5:3C:33:58:F8:2A:95:70:22:5E:23:19:03:77
ValidityThu, 22 May 2025 14:38:44 GMT - Wed, 20 Aug 2025 15:38:38 GMT

File type
JavaScript source, ASCII text, with very long lines (63188)
Size
64 kB (63467 bytes)
Hash
f0c2bcf5ef0c4476508d79ec9cdcce07
3beed68ed7d753c6bf4f61c26386ddd7929ba030
edd03b96ae4ff7886406c59d7dfeeaa1b624a7da297bf2f92d0cb6b7f9633cba

HTTP Headers

GET /ajax/libs/bootstrap/4.6.0/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: application/javascript; charset=utf-8
content-length: 13132
cf-ray: 951c7c79df147131-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60f698d0-334c"
last-modified: Tue, 20 Jul 2021 09:35:12 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2947749
expires: Mon, 08 Jun 2026 17:25:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NtrZQ%2Br4qm0I3u%2Fy7gIbgB5lY9zS0hTjzAU5qXKHzpxoDj1FikE18SO2cz94v64KIvNb35SWcuGgPg2GvrZK%2BgwikZ71zPZ%2BC8M6TWVlatGAgQLMp2G9i9Hm2IFAcuHprtQxJb3d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdn.onesignal.com/sdks/OneSignalSDK.js

104.17.111.223

200 OK

9.2 kB

URL GET
cdn.onesignal.com/sdks/OneSignalSDK.js
IP
104.17.111.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://jupiler%2Ebe@shortner1.cc/WLBuCBnG/?koelbox-jupiler-zomeractie.html
Certificate
IssuerGoogle Trust Services
Subject*.onesignal.com
FingerprintF3:67:04:59:01:79:B7:C1:A6:E1:54:A2:B6:12:7F:14:70:24:20:2C
ValiditySat, 26 Apr 2025 12:06:17 GMT - Fri, 25 Jul 2025 13:06:16 GMT

File type
JavaScript source, ASCII text, with very long lines (9163)
Size
9.2 kB (9204 bytes)
Hash
09282956186c8515ef0d208902803581
ea83b81c9955b3e983a7bef75714a9cefa904151
ec8b1b07980996f574075e1b7e895d5d47794b9dcf345a68d60fbb17034f7bef

HTTP Headers

GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 18 Jun 2025 17:25:29 GMT
content-type: application/javascript
etag: W/"09282956186c8515ef0d208902803581"
access-control-allow-headers: OneSignal-Subscription-Id
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2580
expires: Sat, 21 Jun 2025 17:25:29 GMT
cache-control: public, max-age=259200
set-cookie: __cf_bm=4eB_xlbdJnnRJV3atoyk8kWZPrhFCxXsxkyudrk27Hc-1750267529-1.0.1.1-Hob1ONXzXnTnRJNYP3QTFG1cLClwfSnYzCk0Mn6OUnP.BxC5FSR25lBDdsP7cdXdNXDUMnr7sCw.a.9CnoOQ3L5J86KuCJu0cJl20kZdS6g; path=/; expires=Wed, 18-Jun-25 17:55:29 GMT; domain=.onesignal.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 951c7c79efdb56af-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (11)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size