Report - cassandra832465.pages.dev/

Report Overview

Visited public
2024-12-13 10:33:10
Tags
URL
cassandra832465.pages.dev/
Finishing URL
cassandra832465.pages.dev/
IP / ASN
172.66.47.175
#13335 CLOUDFLARENET
Title
cassandra832465.pages.dev/

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cassandra832465.pages.dev	unknown	2020-09-02	2024-09-21	2024-09-21	2.2 kB	53 kB	172.66.47.175
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-12-08	974 B	740 B	3.64.177.186
zaline.diraya.my.id	unknown	2021-12-14	2021-12-14	2024-12-07	830 B	12 kB	104.21.96.1
achieveweakness.com	unknown	2024-08-13	2024-08-30	2024-12-08	2.9 kB	40 kB	192.243.61.227
recordedthereby.com	unknown	2024-05-08	2024-05-08	2024-12-08	410 B	86 kB	185.196.197.72
cdn.storageimagedisplay.com	unknown	2024-09-13	2024-09-13	2024-12-10	896 B	110 kB	45.133.44.2
flusoprano.com	unknown	2024-08-13	2024-12-08	2024-12-08	492 B	489 B	192.243.61.225
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-12-12	745 B	495 B	192.243.61.227
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2024-12-11	913 B	36 kB	104.17.24.14
hugo-hello-friend.vercel.app	unknown	2020-01-28	2023-01-17	2024-12-07	2.7 kB	2.6 kB	216.198.79.129
gullbastardtorment.com	unknown	2024-09-27	2024-10-08	2024-12-07	898 B	24 kB	172.240.127.234
tributeparticle.com	unknown	2024-08-13	2024-12-08	2024-12-08	2.4 kB	5.8 kB	192.243.61.225
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-12-08	424 B	375 B	185.196.197.72

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-12-12	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (20)

	URL	From	Size	First Seen	Last Seen
	zaline.diraya.my.id/300-2023.js	ScriptElement	339 B	2024-10-01	2025-06-13
Pretty URL zaline.diraya.my.id/300-2023.js IP 104.21.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-01 16:30 Last Seen2025-06-13 23:16 Times Seen72 Hash 39c90afe88a13c1b91391e0efe592de2 43ca4c7bc3b357b85d1d2f693f1c5d93dda535a2 8fc4ef759b2d3dcd5f0b7e6d4afa1d8b01f0dd244d4205c03223c6e4bd18d084 Loading...

	cassandra832465.pages.dev/	ScriptElement	0 B	0001-01-01	2025-06-20
Pretty URL cassandra832465.pages.dev/ IP 172.66.47.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-20 04:54 Times Seen5035286 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	ScriptElement	3.3 kB	2024-12-13	2024-12-13
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-13 10:33 Last Seen2024-12-13 10:33 Times Seen1 Hash 57f5304b9112b5a6da8cd144103b6287 ab10c4a3a80e44baa40c322d962aeeaaab22f17e a5b6a2e0774b283e990036c50e48845c0ee26d4c2b593999870d9877e06b87e4 Loading...

	unknown	ScriptElement	3.4 kB	2024-12-13	2024-12-13
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-13 10:33 Last Seen2024-12-13 10:33 Times Seen1 Hash 4b77db7cce4b331a7b50ec8948db59f4 42efc95908d820786c7a662c22e6e5dad76548ad da80d8f8e713e197556025e2106b231f0e5b7a36f4b6ad0bf5b37c11de10a4e5 Loading...

	cassandra832465.pages.dev/	ScriptElement	0 B	0001-01-01	2025-06-20
Pretty URL cassandra832465.pages.dev/ IP 172.66.47.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-20 04:54 Times Seen5035286 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-06-20
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-20 04:35 Times Seen220660 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	gullbastardtorment.com/042c4183158394c32357d23b92451a50/invoke.js	ScriptElement	25 kB	2024-12-08	2024-12-15
Pretty URL gullbastardtorment.com/042c4183158394c32357d23b92451a50/invoke.js IP 172.240.127.234 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-08 14:09 Last Seen2024-12-15 13:48 Times Seen3 Hash 9451d9c7b69ec7487602ae675f5da0e3 e2d13165ad1633e751c6df3bac9d32699eb1e6d5 a9882a4caf2107a52ef074c8f98906d832313aff0488eb27bdb232b339a53cdd Loading...

	gullbastardtorment.com/9660da32f65849fbab4ba4d8249aeb28/invoke.js	ScriptElement	25 kB	2024-12-13	2024-12-14
Pretty URL gullbastardtorment.com/9660da32f65849fbab4ba4d8249aeb28/invoke.js IP 172.240.127.234 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-13 10:33 Last Seen2024-12-14 17:46 Times Seen2 Hash e660604bce017a70eb45e6558766a941 885a47fe3205242d6e02213dc21c2ed592afd070 37bb96a157ec2f6807d460c3737c9f274e9842ff164cf39d7e451acdc509b821 Loading...

	cassandra832465.pages.dev/	ScriptElement	0 B	0001-01-01	2025-06-20
Pretty URL cassandra832465.pages.dev/ IP 172.66.47.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-20 04:54 Times Seen5035286 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	zaline.diraya.my.id/728-2023.js	ScriptElement	338 B	2024-10-01	2025-06-13
Pretty URL zaline.diraya.my.id/728-2023.js IP 104.21.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-10-01 16:30 Last Seen2025-06-13 23:16 Times Seen72 Hash d2656b1166ea0b2b16bac065e886ea7f 1ae440ec2bfddd1b03807bc1115e7ed80a3f478a 0711f4ed3f8bc1406be48ba4a02d37c2827055b7051e09b1f1c62c018d87198d Loading...

	unknown	ScriptElement	145 B	2024-04-28	2025-06-13
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 17:40 Last Seen2025-06-13 23:16 Times Seen142 Hash 5c6eb9f304053611e05f960b6a5818f6 f69304ba81b2f57669db7649411c7c96658aa7d5 27ed35d23b9c39709fec105d7b0a5d58e78999e2a32786821470daa175496c10 Loading...

	recordedthereby.com/sfp.js	ScriptElement	85 kB	2024-05-17	2025-01-21
Pretty URL recordedthereby.com/sfp.js IP 185.196.197.72 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-17 16:43 Last Seen2025-01-21 11:22 Times Seen13574 Hash 7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b Loading...

	capaciousdrewreligion.com/advertisers.js	ScriptElement	0 B	0001-01-01	2025-06-20
Pretty URL capaciousdrewreligion.com/advertisers.js IP 185.196.197.72 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-06-20 04:54 Times Seen5035286 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	achieveweakness.com/28/c1/50/28c1506c3c24e3d640b56f0169393587.js	ScriptElement	95 kB	2024-12-13	2024-12-14
Pretty URL achieveweakness.com/28/c1/50/28c1506c3c24e3d640b56f0169393587.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-12-13 10:33 Last Seen2024-12-14 17:46 Times Seen2 Hash 2c75321606db5f316bfca5e853a6214b 09870d4c15ac85bc61d5075fb249e9bb2fe4683d cadd677bfd9c5125c99286032203c5ab7b9d0335df6bf9fa1dc6d689c9a4ffe6 Loading...

	unknown	ScriptElement	145 B	2024-07-20	2025-06-13
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-07-20 12:07 Last Seen2025-06-13 23:16 Times Seen124 Hash bb9e9f9becd4cf9467f296b6642ec654 0f459fd09f8f201f1c6a69fd5d996431395e41f2 162dd583e0441341fb84e499e8aeb7e83d00cd8678cf3f1234f7a2de3cbf290e Loading...

		Size	First Seen	Last Seen
	#1 Eval - eff3694486a0251d75976e05a501cc6e	2.1 kB	2024-12-13 10:33	2024-12-13 10:33
Pretty Observations First Seen2024-12-13 10:33 Last Seen2024-12-13 10:33 Times Seen1 Hash eff3694486a0251d75976e05a501cc6e dd749f343a45ad189e56c3dd0364d5401c00b013 3b145839325d74de7d4e33581e7b966ade29732bdb614d0262e4e55c74674203 Loading...

	#2 Eval - 9a52083000ee4fa8294468ce90c1f290	2.1 kB	2024-12-13 10:33	2024-12-13 10:33
Pretty Observations First Seen2024-12-13 10:33 Last Seen2024-12-13 10:33 Times Seen1 Hash 9a52083000ee4fa8294468ce90c1f290 4d1973c75a495e0f8fdb8b2b48aa38a90cb60c8f e97e301c4115f69dd2b80395380bc2b3ef149be70bef40863966e3681e6f5fa3 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5e1783f4241e6ee6e94d4225c1057fec	120 B	2024-10-01 16:30	2025-06-13 23:16
Pretty Observations First Seen2024-10-01 16:30 Last Seen2025-06-13 23:16 Times Seen72 Hash 5e1783f4241e6ee6e94d4225c1057fec 1eff1ec1b6f9dbbfe132910b77164c02e6043d46 725889a5ba3f6be934536903da20b6fb1dd96b8818aa41fba96862d4a8eca32d Loading...

	#2 Write - 018302bfcb167a2cb51d83c63597c2ab	120 B	2024-10-01 16:30	2025-06-13 23:16
Pretty Observations First Seen2024-10-01 16:30 Last Seen2025-06-13 23:16 Times Seen72 Hash 018302bfcb167a2cb51d83c63597c2ab 1b5b4d79bb5691ebadbaa7546ea70600a83bdb90 75c444c90f72c7ecfc25d0578ae7c5eddf339d01b1f77cfb66a3d9dd02a28f68 Loading...

	#3 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11 11:15	2025-05-15 07:59
Pretty Observations First Seen2023-03-11 11:15 Last Seen2025-05-15 07:59 Times Seen7837 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

HTTP Transactions (29)

URL IP Response Size

GET cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.24.14

200 OK

5.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:43 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 125275
expires: Wed, 03 Dec 2025 10:32:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FVSxyBFmRKPjZNnSMtQXA%2BeifLQtNcEfo%2BaOVMVhu%2FzcJomFp561hEFPy20oPc7xP0QKS%2B1rNKQVfX86pAIhY95OPIyVWzbxzQVPVa6NNDDqmZ5YxFGGwD5yF66HpUE0WHg0xEKg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f154ab99d945688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.24.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint64:3F:50:40:E0:BD:89:CB:A9:C8:BE:E5:74:F6:9E:D6:2E:1A:32:02
ValidityTue, 26 Nov 2024 07:25:18 GMT - Mon, 24 Feb 2025 07:25:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 127089
expires: Wed, 03 Dec 2025 10:32:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4PS8xFI1e1CTFVixerfxMc5Z6x%2F1bio3%2FoDyv%2F9ZDa5T%2FP82ZLZCv%2BQvA%2Fyc2iEOxdvYoWU5ygmg6%2BP%2BrhktpfPRFQp%2Bnw%2Fnfem5Vd4OPnMFfXgJVR5cwiBWmM5BS%2Fd6DY8S8aOq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8f154ab9bdb05688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET hugo-hello-friend.vercel.app/bundle.min.js

216.198.79.129

404 Not Found

67 B

URL GET HTTP/2
hugo-hello-friend.vercel.app/bundle.min.js
IP
216.198.79.129:443
ASN
#11696 NBS11696

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint05:01:82:5C:3E:BF:4D:C0:A2:2A:55:1F:34:63:C8:2E:36:A3:7A:77
ValidityThu, 17 Oct 2024 00:02:14 GMT - Wed, 15 Jan 2025 00:02:13 GMT

File type
ASCII text
Size
67 B (67 bytes)
Hash
4d26cc19eabf6a98b7d3647f7002c9cf
8819fd47b95e010af939a58f5d3dfa604c09e319
c3aa500c18103d052ec4062999fcf8d2d4462fca1e8bd61faa5e74f137ab9db5

HTTP Headers

GET /bundle.min.js HTTP/1.1
Host: hugo-hello-friend.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Fri, 13 Dec 2024 10:32:43 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: DEPLOYMENT_NOT_FOUND
x-vercel-id: arn1::79tzp-1734085963805-b8a9049bc61d
content-length: 67
X-Firefox-Spdy: h2

GET gullbastardtorment.com/042c4183158394c32357d23b92451a50/invoke.js

172.240.127.234

200 OK

11 kB

URL GET HTTP/1.1
gullbastardtorment.com/042c4183158394c32357d23b92451a50/invoke.js
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectgullbastardtorment.com
Fingerprint3B:23:62:B5:48:7D:E8:88:40:08:62:BA:DA:9E:2F:F3:BF:08:2E:3D
ValidityTue, 26 Nov 2024 21:39:28 GMT - Mon, 24 Feb 2025 21:39:27 GMT

File type
JavaScript source, ASCII text, with very long lines (24927), with no line terminators
Size
11 kB (11311 bytes)
Hash
9451d9c7b69ec7487602ae675f5da0e3
e2d13165ad1633e751c6df3bac9d32699eb1e6d5
a9882a4caf2107a52ef074c8f98906d832313aff0488eb27bdb232b339a53cdd

HTTP Headers

GET /042c4183158394c32357d23b92451a50/invoke.js HTTP/1.1
Host: gullbastardtorment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:44 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: gullbastardtorment.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 247ba9811872d159cd5d89b9c0717272
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET gullbastardtorment.com/9660da32f65849fbab4ba4d8249aeb28/invoke.js

172.240.127.234

200 OK

11 kB

URL GET HTTP/1.1
gullbastardtorment.com/9660da32f65849fbab4ba4d8249aeb28/invoke.js
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectgullbastardtorment.com
Fingerprint3B:23:62:B5:48:7D:E8:88:40:08:62:BA:DA:9E:2F:F3:BF:08:2E:3D
ValidityTue, 26 Nov 2024 21:39:28 GMT - Mon, 24 Feb 2025 21:39:27 GMT

File type
JavaScript source, ASCII text, with very long lines (24958), with no line terminators
Size
11 kB (11339 bytes)
Hash
e660604bce017a70eb45e6558766a941
885a47fe3205242d6e02213dc21c2ed592afd070
37bb96a157ec2f6807d460c3737c9f274e9842ff164cf39d7e451acdc509b821

HTTP Headers

GET /9660da32f65849fbab4ba4d8249aeb28/invoke.js HTTP/1.1
Host: gullbastardtorment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:44 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: gullbastardtorment.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0706521a05d1f733e14f21f39cec9200
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET proftrafficcounter.com/stats

3.64.177.186

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.64.177.186:443
ASN
#16509 AMAZON-02

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
Fingerprint40:FD:DA:57:15:28:B1:29:02:3E:E6:2F:38:E5:11:E5:7F:DB:6B:40
ValidityMon, 21 Oct 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
5c5357b5844b5c867e36924c76b283ce
92a3bdb027c5ff8e4feaf876efc0ba0bec3bdc76
f57f1f7e53bdae64e84596ad6894bc5a4e5fb9ccab1e54e2564d65c1bc3dde4e

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
Origin: https://cassandra832465.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:44 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://cassandra832465.pages.dev
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=278af4ca-8143-465e-b63b-e81cd93d29da:3:1; expires=Mon, 11 Dec 2034 10:32:44 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

GET hugo-hello-friend.vercel.app/bundle.min.js

216.198.79.129

404 Not Found

67 B

URL GET HTTP/2
hugo-hello-friend.vercel.app/bundle.min.js
IP
216.198.79.129:443
ASN
#11696 NBS11696

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint05:01:82:5C:3E:BF:4D:C0:A2:2A:55:1F:34:63:C8:2E:36:A3:7A:77
ValidityThu, 17 Oct 2024 00:02:14 GMT - Wed, 15 Jan 2025 00:02:13 GMT

File type
ASCII text
Size
67 B (67 bytes)
Hash
4d26cc19eabf6a98b7d3647f7002c9cf
8819fd47b95e010af939a58f5d3dfa604c09e319
c3aa500c18103d052ec4062999fcf8d2d4462fca1e8bd61faa5e74f137ab9db5

HTTP Headers

GET /bundle.min.js HTTP/1.1
Host: hugo-hello-friend.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Fri, 13 Dec 2024 10:32:44 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: DEPLOYMENT_NOT_FOUND
x-vercel-id: arn1::79tzp-1734085964786-2f342152dd59
content-length: 67
X-Firefox-Spdy: h2

GET proftrafficcounter.com/stats

3.64.177.186

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
3.64.177.186:443
ASN
#16509 AMAZON-02

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
Fingerprint40:FD:DA:57:15:28:B1:29:02:3E:E6:2F:38:E5:11:E5:7F:DB:6B:40
ValidityMon, 21 Oct 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
5c5357b5844b5c867e36924c76b283ce
92a3bdb027c5ff8e4feaf876efc0ba0bec3bdc76
f57f1f7e53bdae64e84596ad6894bc5a4e5fb9ccab1e54e2564d65c1bc3dde4e

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
Origin: https://cassandra832465.pages.dev
DNT: 1
Connection: keep-alive
Cookie: uid_id2=278af4ca-8143-465e-b63b-e81cd93d29da:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:44 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://cassandra832465.pages.dev
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2

GET zaline.diraya.my.id/300-2023.js

104.21.96.1

200 OK

9.4 kB

URL GET HTTP/2
zaline.diraya.my.id/300-2023.js
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectzaline.diraya.my.id
FingerprintC4:83:F7:16:9B:63:72:63:C6:4D:B7:22:DD:5B:93:7F:6A:99:A9:5F
ValiditySat, 02 Nov 2024 17:12:56 GMT - Fri, 31 Jan 2025 17:12:55 GMT

File type
gzip compressed data, from Unix
Size
9.4 kB (9350 bytes)
Hash
dcb3dada23ee95eae3b5cb959815ae8a
782da872f8f2292b7e544303ebfed5248713cbe4
9be1dbd202cb9ca3624a4d7afaf77e2e2984b324346768e03006707b40ac9e8a

HTTP Headers

GET /300-2023.js HTTP/1.1
Host: zaline.diraya.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:43 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"dc2c0e168e37eefecd38fd4a689a741b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XPt8%2BeEF15WA6z%2Fot0tf8l0CDmwRCpX%2FNqd6BakwobIHv3ZK6uoT4KHd4c4p5NkhDTcD5pgAFFMPfiw6vSam9aJXURRqhNLFHnn%2B0cOPNlAIaXfSXoWJDsxSwOFHokfsRh02F8SY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8f154abaadc8b4ee-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1396&min_rtt=511&rtt_var=1631&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3195&recv_bytes=1143&delivery_rate=4168905&cwnd=254&unsent_bytes=0&cid=194f98cf491f651b&ts=63&x=0"
X-Firefox-Spdy: h2

GET hugo-hello-friend.vercel.app//img/apple-touch-icon-144-precomposed.png

216.198.79.129

308 Permanent Redirect

82 B

URL GET HTTP/2
hugo-hello-friend.vercel.app//img/apple-touch-icon-144-precomposed.png
IP
216.198.79.129:443
ASN
#11696 NBS11696

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint05:01:82:5C:3E:BF:4D:C0:A2:2A:55:1F:34:63:C8:2E:36:A3:7A:77
ValidityThu, 17 Oct 2024 00:02:14 GMT - Wed, 15 Jan 2025 00:02:13 GMT

File type
ASCII text
Size
82 B (82 bytes)
Hash
297ef6698a203325120283be810450ea
fa7857d57500cab696df868649241f5ce57dd3b8
b6e5760a25cc3c2628ffa7465d611c727f9a8c2dc0633fca35a99104736f91ab

HTTP Headers

GET //img/apple-touch-icon-144-precomposed.png HTTP/1.1
Host: hugo-hello-friend.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 308 Permanent Redirect
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Fri, 13 Dec 2024 10:32:45 GMT
location: /img/apple-touch-icon-144-precomposed.png
refresh: 0;url=/img/apple-touch-icon-144-precomposed.png
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-id: arn1::79tzp-1734085965185-a6521a6aa4de
X-Firefox-Spdy: h2

GET hugo-hello-friend.vercel.app//img/favicon.png

216.198.79.129

308 Permanent Redirect

82 B

URL GET HTTP/2
hugo-hello-friend.vercel.app//img/favicon.png
IP
216.198.79.129:443
ASN
#11696 NBS11696

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint05:01:82:5C:3E:BF:4D:C0:A2:2A:55:1F:34:63:C8:2E:36:A3:7A:77
ValidityThu, 17 Oct 2024 00:02:14 GMT - Wed, 15 Jan 2025 00:02:13 GMT

File type
ASCII text
Size
82 B (82 bytes)
Hash
297ef6698a203325120283be810450ea
fa7857d57500cab696df868649241f5ce57dd3b8
b6e5760a25cc3c2628ffa7465d611c727f9a8c2dc0633fca35a99104736f91ab

HTTP Headers

GET //img/favicon.png HTTP/1.1
Host: hugo-hello-friend.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 308 Permanent Redirect
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Fri, 13 Dec 2024 10:32:45 GMT
location: /img/favicon.png
refresh: 0;url=/img/favicon.png
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-id: arn1::mwwhf-1734085965186-48c12f0e0b9c
X-Firefox-Spdy: h2

GET tributeparticle.com/watch.372505760038.js?key=042c4183158394c32357d23b92451a50&kw=%5B%5D&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&tz=0&dev=e&res=14.2071&rb=&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1

192.243.61.225

307 Temporary Redirect

0 B

URL GET HTTP/1.1
tributeparticle.com/watch.372505760038.js?key=042c4183158394c32357d23b92451a50&kw=%5B%5D&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&tz=0&dev=e&res=14.2071&rb=&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjecttributeparticle.com
FingerprintDD:2F:42:42:31:FF:41:A9:C3:F4:FC:33:3E:E9:5A:DD:7A:59:5B:0E
ValidityThu, 12 Dec 2024 22:37:05 GMT - Wed, 12 Mar 2025 22:37:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.372505760038.js?key=042c4183158394c32357d23b92451a50&kw=%5B%5D&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&tz=0&dev=e&res=14.2071&rb=&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1 HTTP/1.1
Host: tributeparticle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
Origin: https://cassandra832465.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://cassandra832465.pages.dev
Access-Control-Allow-Origin: https://cassandra832465.pages.dev
Access-Control-Allow-Credentials: true
Location: https://tributeparticle.com/watch.372505760038.js?dev=e&key=042c4183158394c32357d23b92451a50&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=1494a9f2b8eb0b1c7fa5aba9d366866b5090973c858367afd20cd0746c9c73ae02d7dc9abd0309f9b566be875fc89791d86310eb3559a6f5bc3eeb04eec1e764eb5fd28fd45c0827fdb0f09f12e9bef03486d85534d974efe837fe&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1
Set-Cookie: u_pl17232399=1; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.bDtE8-CwYg5zOV5LCUe2U16_DghpD0AdgO9bSBF2Y1o; expires=Fri, 13 Dec 2024 10:33:45 GMT; path=/; secure; SameSite=None
Host: tributeparticle.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 78b40602ebde52d8eec8b249de86c061
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET achieveweakness.com/watch.763968922549.js?key=9660da32f65849fbab4ba4d8249aeb28&kw=%5B%5D&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&tz=0&dev=e&res=14.2071&rb=&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1

192.243.61.227

307 Temporary Redirect

0 B

URL GET HTTP/1.1
achieveweakness.com/watch.763968922549.js?key=9660da32f65849fbab4ba4d8249aeb28&kw=%5B%5D&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&tz=0&dev=e&res=14.2071&rb=&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectachieveweakness.com
Fingerprint60:4C:62:77:E4:00:6C:E1:94:80:44:F9:02:46:8D:2A:D1:FC:30:56
ValidityThu, 12 Dec 2024 20:38:19 GMT - Wed, 12 Mar 2025 20:38:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /watch.763968922549.js?key=9660da32f65849fbab4ba4d8249aeb28&kw=%5B%5D&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&tz=0&dev=e&res=14.2071&rb=&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1 HTTP/1.1
Host: achieveweakness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
Origin: https://cassandra832465.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://cassandra832465.pages.dev
Access-Control-Allow-Origin: https://cassandra832465.pages.dev
Access-Control-Allow-Credentials: true
Location: https://achieveweakness.com/watch.763968922549.js?dev=e&key=9660da32f65849fbab4ba4d8249aeb28&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=0d2a5961a0b4dbd3b065b2864f2005f7b08c9166eef67aee5a920456a462e292992cd693cbee885778257eb41720c578108d7e49012bc5b2c367841c8d42e66d737e6d75e805c21819881d42cd73d5a6c820b88098eab153b590e4&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1
Set-Cookie: u_pl17232196=1; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.0ZU8Nvb6-lzOTWgcMP4nU19y5xpET8Q91het1SL13gU; expires=Fri, 13 Dec 2024 10:33:45 GMT; path=/; secure; SameSite=None
Host: achieveweakness.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 1db5e7c4baaec76e669f010f0f8a5eca
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET achieveweakness.com/28/c1/50/28c1506c3c24e3d640b56f0169393587.js

192.243.61.227

200 OK

34 kB

URL GET HTTP/1.1
achieveweakness.com/28/c1/50/28c1506c3c24e3d640b56f0169393587.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectachieveweakness.com
Fingerprint60:4C:62:77:E4:00:6C:E1:94:80:44:F9:02:46:8D:2A:D1:FC:30:56
ValidityThu, 12 Dec 2024 20:38:19 GMT - Wed, 12 Mar 2025 20:38:18 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (33713 bytes)
Hash
2c75321606db5f316bfca5e853a6214b
09870d4c15ac85bc61d5075fb249e9bb2fe4683d
cadd677bfd9c5125c99286032203c5ab7b9d0335df6bf9fa1dc6d689c9a4ffe6

HTTP Headers

GET /28/c1/50/28c1506c3c24e3d640b56f0169393587.js HTTP/1.1
Host: achieveweakness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: achieveweakness.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 31aaffd06ca5e961c4a38d130f555345
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET tributeparticle.com/watch.372505760038.js?dev=e&key=042c4183158394c32357d23b92451a50&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=1494a9f2b8eb0b1c7fa5aba9d366866b5090973c858367afd20cd0746c9c73ae02d7dc9abd0309f9b566be875fc89791d86310eb3559a6f5bc3eeb04eec1e764eb5fd28fd45c0827fdb0f09f12e9bef03486d85534d974efe837fe&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1

192.243.61.225

200 OK

2.0 kB

URL GET HTTP/1.1
tributeparticle.com/watch.372505760038.js?dev=e&key=042c4183158394c32357d23b92451a50&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=1494a9f2b8eb0b1c7fa5aba9d366866b5090973c858367afd20cd0746c9c73ae02d7dc9abd0309f9b566be875fc89791d86310eb3559a6f5bc3eeb04eec1e764eb5fd28fd45c0827fdb0f09f12e9bef03486d85534d974efe837fe&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjecttributeparticle.com
FingerprintDD:2F:42:42:31:FF:41:A9:C3:F4:FC:33:3E:E9:5A:DD:7A:59:5B:0E
ValidityThu, 12 Dec 2024 22:37:05 GMT - Wed, 12 Mar 2025 22:37:04 GMT

File type
JavaScript source, ASCII text, with very long lines (2486)
Size
2.0 kB (2006 bytes)
Hash
2fb27d0a6db3279bfacd321006a1fcc0
cdf44dce3ca43be45065a22b8c6bb83d97f973eb
332bdfe17712e7b1cc03cf6ee53b494cd0c24daa1f26a06d12496b95839e8365

HTTP Headers

GET /watch.372505760038.js?dev=e&key=042c4183158394c32357d23b92451a50&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=1494a9f2b8eb0b1c7fa5aba9d366866b5090973c858367afd20cd0746c9c73ae02d7dc9abd0309f9b566be875fc89791d86310eb3559a6f5bc3eeb04eec1e764eb5fd28fd45c0827fdb0f09f12e9bef03486d85534d974efe837fe&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1 HTTP/1.1
Host: tributeparticle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cassandra832465.pages.dev
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl17232399=1; ain=eyJhbGciOiJIUzI1NiJ9.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.bDtE8-CwYg5zOV5LCUe2U16_DghpD0AdgO9bSBF2Y1o
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://cassandra832465.pages.dev
Access-Control-Allow-Origin: https://cassandra832465.pages.dev
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=278af4ca-8143-465e-b63b-e81cd93d29da:3:1; expires=Fri, 20 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
pdhtkv32=true; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
uncs32=1; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
Host: tributeparticle.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 77bf62f72e91f8155c0cc26b4236b181
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET achieveweakness.com/watch.763968922549.js?dev=e&key=9660da32f65849fbab4ba4d8249aeb28&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=0d2a5961a0b4dbd3b065b2864f2005f7b08c9166eef67aee5a920456a462e292992cd693cbee885778257eb41720c578108d7e49012bc5b2c367841c8d42e66d737e6d75e805c21819881d42cd73d5a6c820b88098eab153b590e4&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1

192.243.61.227

200 OK

2.0 kB

URL GET HTTP/1.1
achieveweakness.com/watch.763968922549.js?dev=e&key=9660da32f65849fbab4ba4d8249aeb28&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=0d2a5961a0b4dbd3b065b2864f2005f7b08c9166eef67aee5a920456a462e292992cd693cbee885778257eb41720c578108d7e49012bc5b2c367841c8d42e66d737e6d75e805c21819881d42cd73d5a6c820b88098eab153b590e4&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectachieveweakness.com
Fingerprint60:4C:62:77:E4:00:6C:E1:94:80:44:F9:02:46:8D:2A:D1:FC:30:56
ValidityThu, 12 Dec 2024 20:38:19 GMT - Wed, 12 Mar 2025 20:38:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2516)
Size
2.0 kB (2048 bytes)
Hash
8b6ace1b795279b001e0fdb6c0073b1e
2d3f82c2d3c82089e189eca17e23818d5379b39f
a0b81fa3669530ea7e1dfb6ff7e513675bb262243ae33298685577426784ea78

HTTP Headers

GET /watch.763968922549.js?dev=e&key=9660da32f65849fbab4ba4d8249aeb28&kw=%5B%5D&pst=1734086025&rb=&refer=https%3A%2F%2Fcassandra832465.pages.dev%2F&res=14.2071&rmtc=t&shu=0d2a5961a0b4dbd3b065b2864f2005f7b08c9166eef67aee5a920456a462e292992cd693cbee885778257eb41720c578108d7e49012bc5b2c367841c8d42e66d737e6d75e805c21819881d42cd73d5a6c820b88098eab153b590e4&tz=0&uuid=278af4ca-8143-465e-b63b-e81cd93d29da%3A3%3A1 HTTP/1.1
Host: achieveweakness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cassandra832465.pages.dev
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Cookie: u_pl17232196=1; ain=eyJhbGciOiJIUzI1NiJ9.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.0ZU8Nvb6-lzOTWgcMP4nU19y5xpET8Q91het1SL13gU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://cassandra832465.pages.dev
Access-Control-Allow-Origin: https://cassandra832465.pages.dev
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=278af4ca-8143-465e-b63b-e81cd93d29da:3:1; expires=Fri, 20 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
uncs=1; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Sat, 14 Dec 2024 10:32:45 GMT; path=/; secure; SameSite=None
Host: achieveweakness.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 5b9b6024cd0092a3b37e213558a88d47
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

GET recordedthereby.com/sfp.js

185.196.197.72

200 OK

85 kB

URL GET HTTP/1.1
recordedthereby.com/sfp.js
IP
185.196.197.72:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectrecordedthereby.com
FingerprintE0:09:99:E3:0E:A5:83:8D:96:1B:26:8A:2E:AC:12:98:C6:D3:E1:76
ValidityWed, 06 Nov 2024 14:09:18 GMT - Tue, 04 Feb 2025 14:09:17 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
85 kB (85378 bytes)
Hash
7e3e44049654b6e244c1777e68ffb8e7
8f2a8298666d607afd92a0baa362ef4dc9ccd039
4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b

HTTP Headers

GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 85378
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 4126d1d22463c85073d86ae2c7039579
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET cdn.storageimagedisplay.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg

45.133.44.2

200 OK

79 kB

URL GET HTTP/2
cdn.storageimagedisplay.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE
ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:16 15:04:57], progressive, precision 8, 300x250, components 3
Size
79 kB (79010 bytes)
Hash
325d5a8fd98bd4abebe19e1ea0bfa6b5
724b06f3b7fd7b0e958b59c4c4afb2813a5f5c17
710e54e782c441ef1ce60c52642dae8084dbbaa413343ff13f86c1e53c981318

HTTP Headers

GET /cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:45 GMT
content-type: image/jpeg
content-length: 79010
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:30:40 GMT
etag: "65d222a0-134a2"
expires: Sun, 15 Dec 2024 10:32:45 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2

GET cdn.storageimagedisplay.com/cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png

45.133.44.2

200 OK

30 kB

URL GET HTTP/2
cdn.storageimagedisplay.com/cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png
IP
45.133.44.2:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE
ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT

File type
PNG image data, 320 x 50, 8-bit/color RGBA, non-interlaced
Size
30 kB (30384 bytes)
Hash
2471c88a76fc28f99949311ee0826a7f
da73b2288a199fe009115576711a2b5869b6dfe4
913697d38c42449701edbc9076e47f75adba56e709af47e76c5b71dfa52f95d2

HTTP Headers

GET /cti/1a/ba/60/1aba60ed15ec9a757d923658796c771d/1707923285.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:45 GMT
content-type: image/png
content-length: 30384
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 15:08:14 GMT
etag: "65ccd75e-76b0"
expires: Sun, 15 Dec 2024 10:32:45 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2

GET zaline.diraya.my.id/728-2023.js

104.21.96.1

200 OK

759 B

URL GET HTTP/2
zaline.diraya.my.id/728-2023.js
IP
104.21.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectzaline.diraya.my.id
FingerprintC4:83:F7:16:9B:63:72:63:C6:4D:B7:22:DD:5B:93:7F:6A:99:A9:5F
ValiditySat, 02 Nov 2024 17:12:56 GMT - Fri, 31 Jan 2025 17:12:55 GMT

File type
gzip compressed data, from Unix
Size
759 B (759 bytes)
Hash
49a6e8bfda2928416cf70b664dd034f0
b1fa6d2a67e6ac43b0a2fe136e204417b8538922
91a0801f58907dc93ebdd3a533ada7c32525a1bbced38889fcf95d2fb5c11994

HTTP Headers

GET /728-2023.js HTTP/1.1
Host: zaline.diraya.my.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:43 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
etag: W/"d1784edfb81202307d1592d0c2076a56"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=exWBbWqZAeSqKJcifRa3RHFvcXrUS4mY%2FlM7i1x9zt%2BMnsM4YPy%2Fnylw4z3hvujyyu8kAYoi44RaErKtquA4okgB%2BXjsHH%2BRKVNAk24LOkc4CGWHgtduGzkOUZRqq1OaEJ6iQgFT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 8f154ababdd6b4ee-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1394&min_rtt=511&rtt_var=1227&sent=11&recv=12&lost=0&retrans=0&sent_bytes=4244&recv_bytes=1143&delivery_rate=4168905&cwnd=257&unsent_bytes=0&cid=194f98cf491f651b&ts=74&x=0"
X-Firefox-Spdy: h2

GET capaciousdrewreligion.com/advertisers.js

185.196.197.72

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
185.196.197.72:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
FingerprintD9:49:50:C3:1F:23:A3:E8:75:32:16:6A:76:DE:28:2B:93:73:31:80
ValiditySun, 03 Nov 2024 04:28:34 GMT - Sat, 01 Feb 2025 04:28:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a54bf4c4c09b5a67d93c556f7b51f680
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET flusoprano.com/pixel/purst?dl=0&th=0&sc=0&rs=2151&rd=2151&fd=581&bv=24.12.6652&tmpl=136

192.243.61.225

200 OK

0 B

URL GET HTTP/1.1
flusoprano.com/pixel/purst?dl=0&th=0&sc=0&rs=2151&rd=2151&fd=581&bv=24.12.6652&tmpl=136
IP
192.243.61.225:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectflusoprano.com
FingerprintC2:88:E2:A1:27:4E:5C:FE:4C:3F:48:37:B8:6E:01:B8:E4:65:E0:73
ValidityMon, 14 Oct 2024 05:54:52 GMT - Sun, 12 Jan 2025 05:54:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2151&rd=2151&fd=581&bv=24.12.6652&tmpl=136 HTTP/1.1
Host: flusoprano.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:45 GMT
Content-Length: 0
Connection: keep-alive
Host: flusoprano.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

GET unseenreport.com/pxf.gif?uuid=278af4ca-8143-465e-b63b-e81cd93d29da&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=28c1506c3c24e3d640b56f0169393587&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10

192.243.61.227

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=278af4ca-8143-465e-b63b-e81cd93d29da&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=28c1506c3c24e3d640b56f0169393587&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintB3:C3:D3:00:AB:EE:F9:2F:2C:9A:5D:74:A9:E1:4E:36:06:3F:B6:74
ValidityMon, 18 Nov 2024 22:38:22 GMT - Sun, 16 Feb 2025 22:38:21 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=278af4ca-8143-465e-b63b-e81cd93d29da&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=28c1506c3c24e3d640b56f0169393587&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=10 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 13 Dec 2024 10:32:46 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: de531a07cfb77b6adf92bc99bd8acec7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains

GET cassandra832465.pages.dev/style.css

172.66.47.175

200 OK

23 kB

URL GET HTTP/3
cassandra832465.pages.dev/style.css
IP
172.66.47.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcassandra832465.pages.dev
Fingerprint84:A0:5A:B8:16:BC:6C:E7:F6:9B:54:F8:4D:5D:2D:C0:28:81:98:DE
ValidityTue, 19 Nov 2024 08:15:30 GMT - Mon, 17 Feb 2025 08:15:29 GMT

File type

Size
23 kB (22893 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /style.css HTTP/1.1
Host: cassandra832465.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 13 Dec 2024 10:32:44 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b47a32050156a78a30afd6a52db48cea"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=74bBAdCt0KM7Hd%2FdNijuEaYYRgxBM5MAf20eg5uGVrCpALnHTKc3pb3thZl%2BLn2%2FUdb4a%2FMrP%2BtCMGODt51Hfyoej%2BuYm%2FiWODMZFPaAoF8%2BQW3Qr5dLESIP%2FLrB%2BjypstvQL15QWoY52%2BDq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f154ab93cd8568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3771&min_rtt=1818&rtt_var=2077&sent=12&recv=8&lost=0&retrans=0&sent_bytes=4135&recv_bytes=1204&delivery_rate=326650&cwnd=12000&unsent_bytes=0&cid=a7e866be1db21e1e&ts=611&x=1", cfExtPri, cfHdrFlush;dur=0

GET cassandra832465.pages.dev/fonts/Inter-Regular.woff2

172.66.47.175

200 OK

8.6 kB

URL GET HTTP/3
cassandra832465.pages.dev/fonts/Inter-Regular.woff2
IP
172.66.47.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcassandra832465.pages.dev
Fingerprint84:A0:5A:B8:16:BC:6C:E7:F6:9B:54:F8:4D:5D:2D:C0:28:81:98:DE
ValidityTue, 19 Nov 2024 08:15:30 GMT - Mon, 17 Feb 2025 08:15:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9126), with no line terminators
Size
8.6 kB (8591 bytes)
Hash
e97ad471c2141fa9f6379843d080a28c
f4bb23b6f73712f06f91cc8a1e748e2b0c5098ec
b68ec9d33dceba15386ef6d809d063a87287243ea281561b425ebb3b0990b5a2

HTTP Headers

GET /fonts/Inter-Regular.woff2 HTTP/1.1
Host: cassandra832465.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://cassandra832465.pages.dev/style.css
DNT: 1
Connection: keep-alive
Cookie: isFTime_042c4183158394c32357d23b92451a50=true; isFTime_042c4183158394c32357d23b92451a50_expiry=Fri, 13 Dec 2024 10:32:44 GMT; isFTime_9660da32f65849fbab4ba4d8249aeb28=true; isFTime_9660da32f65849fbab4ba4d8249aeb28_expiry=Fri, 13 Dec 2024 10:32:44 GMT
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 13 Dec 2024 10:32:44 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FSv8LP%2FLYfJsOLkXiWXPWlQY%2BNNVU%2BoYqigenUsEwsv89N0m797mp3%2BZ06q2oF3%2BHobytdOk5rmOjb69V6JvHmVZIL%2BqTMp%2Fr%2FWuumWyA4vPrUQv8jcxDYjsw1nQYv6ecc7B%2Be%2FR5tuh8nQN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f154abfec36568a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3328&min_rtt=1818&rtt_var=1935&sent=29&recv=12&lost=0&retrans=0&sent_bytes=20149&recv_bytes=2148&delivery_rate=239351&cwnd=12000&unsent_bytes=0&cid=a7e866be1db21e1e&ts=1352&x=1", cfExtPri, cfHdrFlush;dur=0

GET cassandra832465.pages.dev/

172.66.47.175

200 OK

8.6 kB

URL User Request GET HTTP/2
cassandra832465.pages.dev/
IP
172.66.47.175:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectcassandra832465.pages.dev
Fingerprint84:A0:5A:B8:16:BC:6C:E7:F6:9B:54:F8:4D:5D:2D:C0:28:81:98:DE
ValidityTue, 19 Nov 2024 08:15:30 GMT - Mon, 17 Feb 2025 08:15:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9126), with no line terminators
Size
8.6 kB (8591 bytes)
Hash
e97ad471c2141fa9f6379843d080a28c
f4bb23b6f73712f06f91cc8a1e748e2b0c5098ec
b68ec9d33dceba15386ef6d809d063a87287243ea281561b425ebb3b0990b5a2

HTTP Headers

GET / HTTP/1.1
Host: cassandra832465.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 13 Dec 2024 10:32:43 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=80I7leK381AAigIR0HIHF%2B5yECx6OxmhKwuopmNa%2FtcI2IgX0UxZnp2PUScNyJTkecgU86R%2FJnCNrlLRc9k7vehdZByXQAnZHwYsKmz%2BdwIMWP3Vudc6m6pANLka6bDaGFmxuPGbchSMei8O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f154ab6bc265693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6323&min_rtt=496&rtt_var=11652&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3316&recv_bytes=1262&delivery_rate=6632061&cwnd=254&unsent_bytes=0&cid=e66312ceb05fa0dd&ts=144&x=0"
X-Firefox-Spdy: h2

GET cassandra832465.pages.dev/fonts/Inter-Bold.woff2

172.66.47.175

200 OK

8.6 kB

URL GET HTTP/3
cassandra832465.pages.dev/fonts/Inter-Bold.woff2
IP
172.66.47.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerGoogle Trust Services
Subjectcassandra832465.pages.dev
Fingerprint84:A0:5A:B8:16:BC:6C:E7:F6:9B:54:F8:4D:5D:2D:C0:28:81:98:DE
ValidityTue, 19 Nov 2024 08:15:30 GMT - Mon, 17 Feb 2025 08:15:29 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (9126), with no line terminators
Size
8.6 kB (8591 bytes)
Hash
e97ad471c2141fa9f6379843d080a28c
f4bb23b6f73712f06f91cc8a1e748e2b0c5098ec
b68ec9d33dceba15386ef6d809d063a87287243ea281561b425ebb3b0990b5a2

HTTP Headers

GET /fonts/Inter-Bold.woff2 HTTP/1.1
Host: cassandra832465.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://cassandra832465.pages.dev/style.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 13 Dec 2024 10:32:44 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lLsEV%2FP9vR4H31o9RU%2FHMfXxVFMa4Xbdpwtw17%2FHLj7TWzZs6bE96H8SfoW7%2BZzmAZ9OVm4s0Zgr9p6BH4eD0KcLUKpS%2BnUldQDMqUJmKrYUJz2HwSH5d1iwP%2FtVpGWzXLgHcnTQgotvgRbw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8f154abbfff8568a-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3533&min_rtt=1818&rtt_var=2035&sent=19&recv=10&lost=0&retrans=0&sent_bytes=10614&recv_bytes=1582&delivery_rate=10891&cwnd=12000&unsent_bytes=0&cid=a7e866be1db21e1e&ts=727&x=1", cfExtPri, cfHdrFlush;dur=0

GET hugo-hello-friend.vercel.app/img/favicon.png

216.198.79.129

404 Not Found

0 B

URL GET HTTP/2
hugo-hello-friend.vercel.app/img/favicon.png
IP
216.198.79.129:443
ASN
#11696 NBS11696

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint05:01:82:5C:3E:BF:4D:C0:A2:2A:55:1F:34:63:C8:2E:36:A3:7A:77
ValidityThu, 17 Oct 2024 00:02:14 GMT - Wed, 15 Jan 2025 00:02:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/favicon.png HTTP/1.1
Host: hugo-hello-friend.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Fri, 13 Dec 2024 10:32:45 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: DEPLOYMENT_NOT_FOUND
x-vercel-id: arn1::j68w8-1734085965207-a35f8e134104
content-length: 67
X-Firefox-Spdy: h2

GET hugo-hello-friend.vercel.app/img/apple-touch-icon-144-precomposed.png

216.198.79.129

404 Not Found

0 B

URL GET HTTP/2
hugo-hello-friend.vercel.app/img/apple-touch-icon-144-precomposed.png
IP
216.198.79.129:443
ASN
#11696 NBS11696

Requested by
https://cassandra832465.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.vercel.app
Fingerprint05:01:82:5C:3E:BF:4D:C0:A2:2A:55:1F:34:63:C8:2E:36:A3:7A:77
ValidityThu, 17 Oct 2024 00:02:14 GMT - Wed, 15 Jan 2025 00:02:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /img/apple-touch-icon-144-precomposed.png HTTP/1.1
Host: hugo-hello-friend.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cassandra832465.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Fri, 13 Dec 2024 10:32:45 GMT
server: Vercel
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-vercel-error: DEPLOYMENT_NOT_FOUND
x-vercel-id: arn1::mwwhf-1734085965205-cc21acfde03b
content-length: 67
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash