| ww38.down4.3ddown.com/crack/2009/05/earthview.v3.10.8-crack.rar |  13.248.148.254 | 200 OK | 2.4 kB |
URL User Request GET ww38.down4.3ddown.com/crack/2009/05/earthview.v3.10.8-crack.rar IP13.248.148.254:443
CertificateIssuerLet's Encrypt Subjectww38.down4.3ddown.com Fingerprint64:0D:46:10:F9:D9:B3:2F:D0:C3:24:AA:56:74:FE:6A:F8:78:16:2A ValidityTue, 04 Mar 2025 21:59:19 GMT - Mon, 02 Jun 2025 21:59:18 GMT
File typeHTML document, ASCII text, with very long lines (332) Hashdacb5fa428186ed7d6717cec6b5ac6ee 5eca61527b35374081e8095b5a87351abc656270 251fc7b8772207292f68f9cf70447f9b9f5d1a9eee450d7aea67baf6e2c70c42
GET /crack/2009/05/earthview.v3.10.8-crack.rar HTTP/1.1
Host: ww38.down4.3ddown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
accept-ch-lifetime: 30
alt-svc: h3=":50944"; ma=2592000
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Mon, 28 Apr 2025 19:36:37 GMT
server: Caddy, nginx
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_SJ9yGhT+Xa81rPyFGUdHYj94mUG0EcS6tcHJqhU9jKez7bOY4JpaMCd0Abez97hJHpPyCLZkxOJqLCueba8pTQ==
x-buckets: bucket011,bucket077
x-domain: 3ddown.com
x-language: norwegian
x-pcrew-blocked-reason: hosting network
x-pcrew-ip-organization: Blix Solutions
x-redirect: skenzo
x-subdomain: ww38.down4
x-template: tpl_CleanPeppermintBlack_twoclick
content-length: 1139
X-Firefox-Spdy: h2
|
| yfdpco.com/sk-park.php?pid=9PO15V947&dn=3ddown.com&ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0&requrl=http%3A%2F%2Fww38.down4.3ddown.com%2Fcrack%2F2009%2F05%2Fearthview.v3.10.8-crack.rar&al=en-US%2Cen%3Bq%3D0.5 |  208.91.196.46 | 403 Forbidden | 300 B |
URL GET yfdpco.com/sk-park.php?pid=9PO15V947&dn=3ddown.com&ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0&requrl=http%3A%2F%2Fww38.down4.3ddown.com%2Fcrack%2F2009%2F05%2Fearthview.v3.10.8-crack.rar&al=en-US%2Cen%3Bq%3D0.5 IP208.91.196.46:443 ASN#40034 CONFLUENCE-NETWORK-INC
Requested byhttps://ww38.down4.3ddown.com/crack/2009/05/earthview.v3.10.8-crack.rar CertificateIssuerLet's Encrypt Subjectyfdpco.com Fingerprint11:27:A7:25:C2:B3:A2:D1:26:CC:50:AF:91:B3:7E:94:9B:1C:B6:C3 ValidityMon, 03 Mar 2025 16:23:29 GMT - Sun, 01 Jun 2025 16:23:28 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash79c85214e4de76610ce38f2d0789235c e4866a448eb9f9dee02a55548b117d217c5e17f3 f64158dcba8f0841539e6327f37fec4ccee64fe88c23260fd09a445a7c3b94ec
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sk-park.php?pid=9PO15V947&dn=3ddown.com&ua=Mozilla%2F5.0+%28Windows+NT+10.0%3B+Win64%3B+x64%3B+rv%3A134.0%29+Gecko%2F20100101+Firefox%2F134.0&requrl=http%3A%2F%2Fww38.down4.3ddown.com%2Fcrack%2F2009%2F05%2Fearthview.v3.10.8-crack.rar&al=en-US%2Cen%3Bq%3D0.5 HTTP/1.1
Host: yfdpco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.down4.3ddown.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 28 Apr 2025 19:36:31 GMT
Server: Apache
Referrer-Policy: no-referrer-when-downgrade
Accept-CH: Sec-CH-Save-Data, Sec-CH-DPR, Sec-CH-Width, Sec-CH-Viewport-Width, Sec-CH-Viewport-Height, Sec-CH-Device-Memory, Sec-CH-RTT, Sec-CH-Downlink, Sec-CH-ECT, Sec-CH-Prefers-Color-Scheme, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-platform-version=("https://dts.gnpge.com"), ch-ua-model=("https://dts.gnpge.com")
Content-Length: 300
Keep-Alive: timeout=5, max=126
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
| ww38.down4.3ddown.com/favicon.ico | 13.248.148.254 | 200 OK | 0 B |
URL GET ww38.down4.3ddown.com/favicon.ico IP13.248.148.254:443
Requested byhttps://ww38.down4.3ddown.com/crack/2009/05/earthview.v3.10.8-crack.rar CertificateIssuerLet's Encrypt Subjectww38.down4.3ddown.com Fingerprint64:0D:46:10:F9:D9:B3:2F:D0:C3:24:AA:56:74:FE:6A:F8:78:16:2A ValidityTue, 04 Mar 2025 21:59:19 GMT - Mon, 02 Jun 2025 21:59:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: ww38.down4.3ddown.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ww38.down4.3ddown.com/crack/2009/05/earthview.v3.10.8-crack.rar
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
alt-svc: h3=":50944"; ma=2592000
content-type: image/x-icon
date: Mon, 28 Apr 2025 19:36:37 GMT
etag: "670f7248-0"
last-modified: Wed, 16 Oct 2024 07:59:04 GMT
server: Caddy, nginx
content-length: 0
X-Firefox-Spdy: h2
|