Report - srtslug.biz/83m2W

Report Overview

Visitedpublic

2025-08-03 07:58:55

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
shrtfly.vip	unknown	2020-12-13	2021-02-11	2025-07-31	415 B	21 kB	104.21.6.151
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-07-30	2.1 kB	983 kB	142.250.74.136
my.rtmark.net	9054	2014-10-29	2015-02-04	2025-07-31	438 B	834 B	104.18.41.22
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-07-30	485 B	4.7 kB	142.250.74.10
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-07-30	1.1 kB	127 kB	142.250.74.35
srtslug.biz	unknown	2025-07-27	2025-07-31	2025-07-31	3.4 kB	268 kB	104.21.41.79
kuutnytsbkacv.com	unknown	2025-08-02	2025-08-03	2025-08-03	893 B	1.2 kB	139.45.197.161
22hgc.com	unknown	2017-03-28	2025-07-05	2025-08-02	2.1 kB	113 kB	139.45.197.105
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-07-30	410 B	90 kB	104.17.24.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
Quad9 DNS	kuutnytsbkacv.com	malicious	Sinkholed

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-08-08
URL www.google-analytics.com/analytics.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-08 Times Seen 422233 Size 4.7 kB (4691 bytes) MD5 f24128d0c9cba7be2916c693427a3483 SHA1 1b6397d496ea896ebc2018b01b995cee4f166029 SHA256 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Format Code Loading...

	22hgc.com/5/7704232	ScriptElement	110 kB	2025-08-03	2025-08-03
URL 22hgc.com/5/7704232 IP / ASN 139.45.197.105 #9002 RETN Limited Introduced by ScriptElement Embedded false Resource Info First Seen 2025-08-03 Last Seen 2025-08-03 Times Seen 1 Size 110 kB (110224 bytes) MD5 f09a46b1923fe6f932aa434e91604d6f SHA1 4754134644fdcf1f01633d8fd6161136fec6979c SHA256 ec7c367990ed7a867f7d87fd96f56bceb5d648c574dee764bbd2835c179f5643 Format Code Loading...

	srtslug.biz/83m2W	ScriptElement	3.6 kB	2024-06-15	2025-08-03
URL srtslug.biz/83m2W IP / ASN 104.21.41.79 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-06-15 Last Seen 2025-08-03 Times Seen 101 Size 3.6 kB (3622 bytes) MD5 f7d6f1db13dabce4d191fa96cda860bb SHA1 3558951400bc3338af9a584afbef8833c23eae6f SHA256 9ec4b80068b51b8e02426bc905eeddb2a3cd811e89154cd3f4ca46b1f603a3f5 Format Code Loading...

	srtslug.biz/83m2W	ScriptElement	28 kB	2025-04-14	2025-08-03
URL srtslug.biz/83m2W IP / ASN 104.21.41.79 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-04-14 Last Seen 2025-08-03 Times Seen 27 Size 28 kB (28441 bytes) MD5 b35fab64d44d6bb782f4fba1595dab40 SHA1 6ce2990040b834f884991e2839ade45012e9ce5e SHA256 110f2d2efa48ef1417cb70500c96094d27f8d0477a7cd6ad1d81656ac78dc21a Format Code Loading...

	www.googletagmanager.com/gtag/js?id=G-PDV6XHL2ZF&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163	ScriptElement	413 kB	2025-08-03	2025-08-03
URL www.googletagmanager.com/gtag/js?id=G-PDV6XHL2ZF&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163 IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-08-03 Last Seen 2025-08-03 Times Seen 1 Size 413 kB (413053 bytes) MD5 cc560c20bb6e567939b9bd81562151db SHA1 8dc96c8acea5e795e5208297f47886b59de70b2f SHA256 a70c77bd2d25c0b1327419b7f72db2d8a765ec1ff14a63bbc0cb45bc829e9c4a Format Code Loading...

	srtslug.biz/83m2W	ScriptElement	449 B	2024-06-15	2025-08-03
URL srtslug.biz/83m2W IP / ASN 104.21.41.79 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-06-15 Last Seen 2025-08-03 Times Seen 101 Size 449 B (449 bytes) MD5 896c9a55ba6c6119f31c9c5c06fcd79b SHA1 8ec469494baa6b23e7a9b1a4578a1707d46b3139 SHA256 141b67f81e42319fb83de74e7dd72a21c6590c8699c35adda3b4037b3e146d11 Format Code Loading...

	srtslug.biz/83m2W	ScriptElement	155 B	2023-03-07	2025-08-03
URL srtslug.biz/83m2W IP / ASN 104.21.41.79 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2023-03-07 Last Seen 2025-08-03 Times Seen 192 Size 155 B (155 bytes) MD5 59ebe0b9de3964823af9e47ca93a4955 SHA1 f8bc090309fd3f812825b06ac082ea98cd27a8f7 SHA256 fcb5a666860ca97d0ad3ed1a21203060b8fc1ac42a73b4cf628f8044698d8a2a Format Code Loading...

	srtslug.biz/sandbox%20eval%20code		147 B	2023-04-11	2025-08-08
URL srtslug.biz/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-08 Times Seen 422969 Size 147 B (147 bytes) MD5 92b651082ce234f66bb544e678befda3 SHA1 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 SHA256 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Format Code Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-08-08
URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP / ASN 104.17.24.14 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-08 Times Seen 268527 Size 90 kB (89501 bytes) MD5 8fb8fee4fcc3cc86ff6c724154c49c42 SHA1 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 SHA256 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Format Code Loading...

	srtslug.biz/83m2W	ScriptElement	2.4 kB	2025-08-03	2025-08-03
URL srtslug.biz/83m2W IP / ASN 104.21.41.79 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-08-03 Last Seen 2025-08-03 Times Seen 1 Size 2.4 kB (2365 bytes) MD5 2e1c0283d2e43b808c0e7276c8703138 SHA1 0db20647a89cf75e7e4c9dd2c7bca6f463eda840 SHA256 5a878338a02cac7c24abce1300a72d3b0e310f2f1008fd1805a5514be890f25e Format Code Loading...

	www.googletagmanager.com/gtag/js?id=UA-354543616&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163	ScriptElement	273 kB	2025-08-03	2025-08-03
URL www.googletagmanager.com/gtag/js?id=UA-354543616&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163 IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-08-03 Last Seen 2025-08-03 Times Seen 1 Size 273 kB (273196 bytes) MD5 b912583fbeb4df31e701f6bb2e692dac SHA1 6bea7d9f40854d8d06cc2c809fba317761c45d0c SHA256 2d3d929f45d2043826e0193644585bbafd5ba9d6f3a809fbd0d3b799919eefa4 Format Code Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-08-08
URL www.google-analytics.com/analytics.js IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-08 Times Seen 422233 Size 4.7 kB (4691 bytes) MD5 f24128d0c9cba7be2916c693427a3483 SHA1 1b6397d496ea896ebc2018b01b995cee4f166029 SHA256 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Format Code Loading...

	srtslug.biz/83m2W	ScriptElement	172 B	2025-08-03	2025-08-03
URL srtslug.biz/83m2W IP / ASN 104.21.41.79 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-08-03 Last Seen 2025-08-03 Times Seen 1 Size 172 B (172 bytes) MD5 ee0265e9eb6039da7cda7aa8d9ba4174 SHA1 4c0c5d9bd5531f4e269e8156743b0a17a8c7ef17 SHA256 0394ea727f329f61089e718f3d604734fa17cece79ed947fc1fae4ae5f47e28a Format Code Loading...

	srtslug.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	ScriptElement	1.2 kB	2023-03-07	2025-08-08
URL srtslug.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP / ASN 104.21.41.79 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-08-08 Times Seen 99080 Size 1.2 kB (1239 bytes) MD5 9e8f56e8e1806253ba01a95cfc3d392c SHA1 a8af90d7482e1e99d03de6bf88fed2315c5dd728 SHA256 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Format Code Loading...

	www.googletagmanager.com/gtag/js?id=UA-108199505-1	ScriptElement	293 kB	2025-08-03	2025-08-03
URL www.googletagmanager.com/gtag/js?id=UA-108199505-1 IP / ASN 142.250.74.136 #15169 GOOGLE Introduced by ScriptElement Embedded false Resource Info First Seen 2025-08-03 Last Seen 2025-08-03 Times Seen 1 Size 293 kB (293297 bytes) MD5 80f1dc270987f03023db39d0e0786457 SHA1 cd52a44b97b1050d23276e4c8e004bdc5e257150 SHA256 924fca3ca00ae0b3ea224b46412f3f1bcc387494dbc953feb8cad5a214044c64 Format Code Loading...

	srtslug.biz/sandbox%20eval%20code		147 B	2023-04-11	2025-08-08
URL srtslug.biz/sandbox%20eval%20code IP / ASN 0.0.0.0 #0 Introduced by Embedded false Resource Info First Seen 2023-04-11 Last Seen 2025-08-08 Times Seen 422969 Size 147 B (147 bytes) MD5 92b651082ce234f66bb544e678befda3 SHA1 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 SHA256 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Format Code Loading...

HTTP Transactions (21)

URL IP Response Size

GET shrtfly.vip/img/Join-Telegram-Channel.png

104.21.6.151

200 OK

20 kB

URL GET HTTPS

shrtfly.vip/img/Join-Telegram-Channel.png

IP / ASN

104.21.6.151

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typePNG image data, 768 x 245, 8-bit colormap, non-interlaced

First Seen2024-06-02

Last Seen2025-08-03

Times Seen105

Size20 kB (20023 bytes)

MD506ac021d13ac2211cfac5de3f4c0cab6

SHA145496ca6056a32e5cf396fa657960020df4ccb13

SHA256cc860eff23be351ffc4a3249e2365f3271f162295e944ba4c1de8c37ee9e8141

Certificate Info

IssuerGoogle Trust Services

Subjectshrtfly.vip

Fingerprint1A:36:28:78:93:89:7D:9B:62:F6:65:7F:C8:73:E0:8B:56:EC:0E:6F

ValiditySun, 22 Jun 2025 19:00:05 GMT - Sat, 20 Sep 2025 19:58:32 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /img/Join-Telegram-Channel.png HTTP/1.1
Host: shrtfly.vip
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 03 Aug 2025 07:58:31 GMT
content-type: image/png
content-length: 20023
server: cloudflare
last-modified: Thu, 16 May 2024 06:19:23 GMT
etag: "6645a56b-4e37"
expires: Mon, 01 Sep 2025 04:36:33 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
age: 98518
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZFzadhXxRc%2BPryzgnOiHh476iFW6U6Ia3kUaLDfwiInjAy0WZvzGEksUImCffwNltWGVkdfxshZ5QDxY0124HG4FN48hCNCQ2A%3D%3D"}]}
cf-ray: 96944537f84a5690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET srtslug.biz/wp-content/uploads/2025/07/logo_dark.png

104.21.41.79

200 OK

12 kB

URL GET HTTPS

srtslug.biz/wp-content/uploads/2025/07/logo_dark.png

IP / ASN

104.21.41.79

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typePNG image data, 684 x 230, 8-bit colormap, non-interlaced

First Seen2024-06-15

Last Seen2025-08-03

Times Seen76

Size12 kB (12402 bytes)

MD509bae29b50ce7910314ded2a5d6481ea

SHA126074d868508b6a4ebac91afbea1b0888f4a948a

SHA2561fdf97d7e41f1a6dea5ea8dbccfe97ae4b2804a40b9e9b7dfeb500926e923dd7

Certificate Info

IssuerGoogle Trust Services

Subjectsrtslug.biz

FingerprintFC:27:1F:C0:70:A9:4C:8D:93:36:EE:D4:A7:D4:2A:8C:67:3B:95:39

ValiditySun, 27 Jul 2025 08:11:31 GMT - Sat, 25 Oct 2025 09:08:54 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /wp-content/uploads/2025/07/logo_dark.png HTTP/1.1
Host: srtslug.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://srtslug.biz/83m2W
DNT: 1
Connection: keep-alive
Cookie: 6d0a5236b2de99e6e2dae56356fb3477=p8ySxItHG5w82Y4GafoviDmEzNAVm67P53L3AkM4tKgGnEPAIZQe4R9vw1FoD0e4FlZcl5DSSrKIXxyEneEMJA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 03 Aug 2025 07:58:31 GMT
content-type: image/png
cf-ray: 96944537ad8556b5-OSL
last-modified: Sun, 27 Jul 2025 09:32:04 GMT
vary: Accept-Encoding
etag: W/"6885f214-3072"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
referrer-policy: same-origin
age: 598032
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RsZHmbvL2%2B2i%2BlaZC96PJ2SQdlJqJ3PbAHzFtdBVcH8CXjA5phfg935BDlG5l6gIDlpj2vBPCdiJfrxbcTB33Zc8X%2FKHsdGR6ADZs%2B3HfyoxMm3AjNa2eO0plzxSTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=1343&min_rtt=470&rtt_var=1179&sent=40&recv=30&lost=0&retrans=0&sent_bytes=38363&recv_bytes=1634&delivery_rate=27704081&cwnd=257&unsent_bytes=0&cid=628d0e5e6aa94d91&ts=397&x=0"
X-Firefox-Spdy: h2

GET www.googletagmanager.com/td?id=UA-354543616&v=3&t=t&pid=147985422&seq=1&exp=101509157~103116026~103200004~103233427~104684208~104684211~105033763~105033765~105087538~105087540~105103161~105103163&dl=srtslug.biz%2F83m2W&tdp=UA-354543616;;1;1;0&frm=0&slo=2&hlo=4&lst=3&pcid=_UA-108199505-1&bt=0&ct=3&z=0

142.250.74.136

204 No Content

0 B

URL GET HTTPS

www.googletagmanager.com/td?id=UA-354543616&v=3&t=t&pid=147985422&seq=1&exp=101509157~103116026~103200004~103233427~104684208~104684211~105033763~105033765~105087538~105087540~105103161~105103163&dl=srtslug.biz%2F83m2W&tdp=UA-354543616;;1;1;0&frm=0&slo=2&hlo=4&lst=3&pcid=_UA-108199505-1&bt=0&ct=3&z=0

IP / ASN

142.250.74.136

#15169 GOOGLE

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-08

Times Seen5720799

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

FingerprintA2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1

ValidityMon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT

HTTP Headers

GET /td?id=UA-354543616&v=3&t=t&pid=147985422&seq=1&exp=101509157~103116026~103200004~103233427~104684208~104684211~105033763~105033765~105087538~105087540~105103161~105103163&dl=srtslug.biz%2F83m2W&tdp=UA-354543616;;1;1;0&frm=0&slo=2&hlo=4&lst=3&pcid=_UA-108199505-1&bt=0&ct=3&z=0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Sun, 03 Aug 2025 07:58:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgtc:45:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsgtc:45:0
report-to: {"group":"ascnsrsgtc:45:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgtc:45:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

OPTIONS kuutnytsbkacv.com/

139.45.197.161

200 OK

0 B

URL OPTIONS HTTPS

kuutnytsbkacv.com/

IP / ASN

139.45.197.161

#9002 RETN Limited

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-08

Times Seen5720799

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectkuutnytsbkacv.com

Fingerprint6E:F3:DA:30:B2:48:93:D2:0A:11:2F:18:B3:8C:E7:CF:53:85:9E:55

ValiditySat, 02 Aug 2025 11:15:54 GMT - Fri, 31 Oct 2025 11:15:53 GMT

Technology Fingerprints

Nginx (Web servers, Reverse proxies)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS / HTTP/1.1
Host: kuutnytsbkacv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: HEAD
Access-Control-Request-Headers: content-type
Origin: https://srtslug.biz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 03 Aug 2025 07:58:32 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://srtslug.biz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

GET srtslug.biz/wp-content/plugins/api-blueprint/assets/style.css?v=1.0.6a

104.21.41.79

200 OK

124 kB

URL GET HTTPS

srtslug.biz/wp-content/plugins/api-blueprint/assets/style.css?v=1.0.6a

IP / ASN

104.21.41.79

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeASCII text

First Seen2024-06-15

Last Seen2025-08-03

Times Seen100

Size124 kB (124157 bytes)

MD5fecee00f27b98f2325707b0c1834938f

SHA1b715fb788d1f022f748e75b96e13f539c4478c08

SHA256b71515fb130226188620cdd236c56a9e69bf699518336d6610f858d989126866

Certificate Info

IssuerGoogle Trust Services

Subjectsrtslug.biz

FingerprintFC:27:1F:C0:70:A9:4C:8D:93:36:EE:D4:A7:D4:2A:8C:67:3B:95:39

ValiditySun, 27 Jul 2025 08:11:31 GMT - Sat, 25 Oct 2025 09:08:54 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /wp-content/plugins/api-blueprint/assets/style.css?v=1.0.6a HTTP/1.1
Host: srtslug.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://srtslug.biz/83m2W
DNT: 1
Connection: keep-alive
Cookie: 6d0a5236b2de99e6e2dae56356fb3477=p8ySxItHG5w82Y4GafoviDmEzNAVm67P53L3AkM4tKgGnEPAIZQe4R9vw1FoD0e4FlZcl5DSSrKIXxyEneEMJA
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 03 Aug 2025 07:58:31 GMT
content-type: text/css
server: cloudflare
last-modified: Sun, 27 Jul 2025 09:26:50 GMT
vary: Accept-Encoding
etag: W/"6885f0da-1e4fd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
referrer-policy: same-origin
content-encoding: br
age: 598032
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FHzpdKwoUmvXwoT4kFEYfnR8ZO9ODfUGRLaA999Vp3nONZpbBPtx0%2F2Rw9VfEi6FvIwPHc3Sri%2BwgAQpI4SV1eaOZ7VvGqJKmA%3D%3D"}]}
cf-ray: 96944537ad8056b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

POST 22hgc.com/wrr?z=7704232&p_rid=2eb61869-1457-4f65-853e-2841a15053fc&rb=XAtMAmZfqu7g36VlVDbOaT2Y_TUQSPE57Dd2WarJFnSI0pKXXtt3z_i3Kd8zBXsnOAttfgLxklp36cD9AdlbbRKymGTGzHBP2_QB0oJbfi4tRd54_sROSZ6Sb2-crmrl66XTJOe3POI9RfAPI3Tad6-Yc5Tma2fK_2_svx-vQHHwADTxmkH53trHB-u6Y3zJD-bZP3rEJuOLTL26zZRwoa6WYZgJVO1UV8c8ptdZHh273VJBceMcSK1UhviVg7qu92NSiZD_dks=&dmn=22hgc.com&userId=00821acc89934791eadfcd566dbdc633

139.45.197.105

204 No Content

0 B

URL POST HTTPS

22hgc.com/wrr?z=7704232&p_rid=2eb61869-1457-4f65-853e-2841a15053fc&rb=XAtMAmZfqu7g36VlVDbOaT2Y_TUQSPE57Dd2WarJFnSI0pKXXtt3z_i3Kd8zBXsnOAttfgLxklp36cD9AdlbbRKymGTGzHBP2_QB0oJbfi4tRd54_sROSZ6Sb2-crmrl66XTJOe3POI9RfAPI3Tad6-Yc5Tma2fK_2_svx-vQHHwADTxmkH53trHB-u6Y3zJD-bZP3rEJuOLTL26zZRwoa6WYZgJVO1UV8c8ptdZHh273VJBceMcSK1UhviVg7qu92NSiZD_dks=&dmn=22hgc.com&userId=00821acc89934791eadfcd566dbdc633

IP / ASN

139.45.197.105

#9002 RETN Limited

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-08

Times Seen5720799

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subject22hgc.com

Fingerprint2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7

ValiditySat, 02 Aug 2025 05:09:04 GMT - Fri, 31 Oct 2025 05:09:03 GMT

Technology Fingerprints

Nginx (Web servers, Reverse proxies)

HTTP Headers

POST /wrr?z=7704232&p_rid=2eb61869-1457-4f65-853e-2841a15053fc&rb=XAtMAmZfqu7g36VlVDbOaT2Y_TUQSPE57Dd2WarJFnSI0pKXXtt3z_i3Kd8zBXsnOAttfgLxklp36cD9AdlbbRKymGTGzHBP2_QB0oJbfi4tRd54_sROSZ6Sb2-crmrl66XTJOe3POI9RfAPI3Tad6-Yc5Tma2fK_2_svx-vQHHwADTxmkH53trHB-u6Y3zJD-bZP3rEJuOLTL26zZRwoa6WYZgJVO1UV8c8ptdZHh273VJBceMcSK1UhviVg7qu92NSiZD_dks=&dmn=22hgc.com&userId=00821acc89934791eadfcd566dbdc633 HTTP/1.1
Host: 22hgc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 2573
Origin: https://srtslug.biz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Sun, 03 Aug 2025 07:58:34 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://srtslug.biz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

GET my.rtmark.net/gid.js?userId=00821acc89934791eadfcd566dbdc633

104.18.41.22

200 OK

65 B

URL GET HTTPS

my.rtmark.net/gid.js?userId=00821acc89934791eadfcd566dbdc633

IP / ASN

104.18.41.22

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeJSON text data

First Seen2025-08-03

Last Seen2025-08-03

Times Seen1

Size65 B (65 bytes)

MD5982a1c1b568213dfc2528042a3810fcd

SHA1c208013519a8ebe99ebd69284f5a6a18d3186b63

SHA25659b52a1ce921b723c2ddb6c2edd261eac71c8b24cf7cafde217f0c577cd07eb9

Certificate Info

IssuerGoogle Trust Services

Subjectmy.rtmark.net

Fingerprint89:E0:23:FC:5B:0F:07:0F:7E:EC:B8:4F:B5:1D:3B:1F:6B:5C:22:0B

ValidityMon, 30 Jun 2025 12:11:05 GMT - Sun, 28 Sep 2025 13:11:03 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /gid.js?userId=00821acc89934791eadfcd566dbdc633 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://srtslug.biz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 03 Aug 2025 07:58:33 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://srtslug.biz
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00821acc89934791eadfcd566dbdc633; expires=Mon, 03 Aug 2026 07:58:33 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 969445420f4156c0-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.24.14

200 OK

90 kB

URL GET HTTPS

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

IP / ASN

104.17.24.14

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65447)

First Seen2023-03-07

Last Seen2025-08-08

Times Seen268527

Size90 kB (89501 bytes)

MD58fb8fee4fcc3cc86ff6c724154c49c42

SHA1b82d238d4e31fdf618bae8ac11a6c812c03dd0d4

SHA256ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Certificate Info

IssuerGoogle Trust Services

Subjectcdnjs.cloudflare.com

Fingerprint66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC

ValiditySun, 20 Jul 2025 17:08:10 GMT - Sat, 18 Oct 2025 18:08:03 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 03 Aug 2025 07:58:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
cf-ray: 96944537cc22712b-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1308504
expires: Fri, 24 Jul 2026 07:58:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=myx6m5ApzfM1lCOIKwMIDSrtGLKYA3daumYR9CQZD1kA7W8d1TgSwdbD9acEBdSlb96GVQdVuctB8pIXHvjf72NACGY4ZF3%2BHYbvFZwqO6a7pCNFIwJ4l5p80eC3TYzFdo14RolM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css2?family=Bricolage+Grotesque:opsz,wght@12..96,200..800&family=Inter:wght@100..900&display=swap

142.250.74.10

200 OK

4.1 kB

URL GET HTTPS

fonts.googleapis.com/css2?family=Bricolage+Grotesque:opsz,wght@12..96,200..800&family=Inter:wght@100..900&display=swap

IP / ASN

142.250.74.10

#15169 GOOGLE

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeASCII text

First Seen2025-05-30

Last Seen2025-08-07

Times Seen26

Size4.1 kB (4055 bytes)

MD5c9f6a45a2a14d02a3541a1353aeb14d2

SHA1f9701501760cd4e6813d672fb73a7ca5c7139608

SHA256c9a1fa60eb7df47c3edd61c002806df25d2e7e6f6e956670dcece52fd207181c

Certificate Info

IssuerGoogle Trust Services

Subjectupload.video.google.com

FingerprintDF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC

ValidityMon, 07 Jul 2025 08:35:11 GMT - Mon, 29 Sep 2025 08:35:10 GMT

Technology Fingerprints

HTTP Headers

GET /css2?family=Bricolage+Grotesque:opsz,wght@12..96,200..800&family=Inter:wght@100..900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 03 Aug 2025 07:58:31 GMT
date: Sun, 03 Aug 2025 07:58:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

HEAD srtslug.biz/83m2W

104.21.41.79

200 OK

0 B

URL HEAD HTTPS

srtslug.biz/83m2W

IP / ASN

104.21.41.79

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-08

Times Seen5720799

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectsrtslug.biz

FingerprintFC:27:1F:C0:70:A9:4C:8D:93:36:EE:D4:A7:D4:2A:8C:67:3B:95:39

ValiditySun, 27 Jul 2025 08:11:31 GMT - Sat, 25 Oct 2025 09:08:54 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

HEAD /83m2W HTTP/1.1
Host: srtslug.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://srtslug.biz/83m2W
DNT: 1
Connection: keep-alive
Cookie: 6d0a5236b2de99e6e2dae56356fb3477=p8ySxItHG5w82Y4GafoviDmEzNAVm67P53L3AkM4tKgGnEPAIZQe4R9vw1FoD0e4FlZcl5DSSrKIXxyEneEMJA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 03 Aug 2025 07:58:32 GMT
content-type: text/html; charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GE%2BdoEKwlBlIjgbZCWZ7J0yH9MWs%2F7DxkpsXJC1FbHpDLS%2FCtIS7POxhUyW2gZVJQxPwk5hMlkQRDJhH0q%2FEWUjtUfEMBW24UjAQssbcCw0Ylm1X5yL1jwSfbUjlfw%3D%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store, private
set-cookie: 6d0a5236b2de99e6e2dae56356fb3477=4Hj9mFCUxn3n9HweSgRmY4NYox8Dth8F0dUXZghB5bI7X5L53xgI2cMI82-8Jd4CY27NZDvdy97GCLv6oIkJdg; expires=Mon, 04-Aug-2025 07:58:32 GMT; Max-Age=86400; path=/; domain=srtslug.biz; HttpOnly; SameSite=Lax
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
referrer-policy: same-origin
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 9694453a38995699-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2905&min_rtt=541&rtt_var=2389&sent=145&recv=213&lost=0&retrans=0&sent_bytes=12328&recv_bytes=11916&delivery_rate=432688&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=b4b0fa10278e5cb7&ts=729&inflight_dur=35&x=40"

GET srtslug.biz/wp-content/uploads/2025/07/cropped-favicon.png

104.21.41.79

200 OK

78 kB

URL GET HTTPS

srtslug.biz/wp-content/uploads/2025/07/cropped-favicon.png

IP / ASN

104.21.41.79

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced

First Seen2024-10-12

Last Seen2025-08-03

Times Seen23

Size78 kB (77488 bytes)

MD52d5df94bced776e4cc5a056487794b77

SHA1d1128fcd8129e57704183223daeca3984a1b1e3f

SHA256230317f6e92d3ece865b3745c679d5ede4509a14eb065b32ae34c2ccd4de543f

Certificate Info

IssuerGoogle Trust Services

Subjectsrtslug.biz

FingerprintFC:27:1F:C0:70:A9:4C:8D:93:36:EE:D4:A7:D4:2A:8C:67:3B:95:39

ValiditySun, 27 Jul 2025 08:11:31 GMT - Sat, 25 Oct 2025 09:08:54 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /wp-content/uploads/2025/07/cropped-favicon.png HTTP/1.1
Host: srtslug.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://srtslug.biz/83m2W
DNT: 1
Connection: keep-alive
Cookie: 6d0a5236b2de99e6e2dae56356fb3477=4Hj9mFCUxn3n9HweSgRmY4NYox8Dth8F0dUXZghB5bI7X5L53xgI2cMI82-8Jd4CY27NZDvdy97GCLv6oIkJdg
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 03 Aug 2025 07:58:32 GMT
content-type: image/png
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hgcX6KyxB6x1k732xMiOp%2Fc%2BkcbYysw8BocpuKX3L0bEF%2BKN6ZwFYkiVAeV83auxjOfhMibeH59GUwMvIclyiN0kiiScgMttGx0VeyGmkV9AoVpcoqj3uXBijAyAgw%3D%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Sun, 27 Jul 2025 09:32:04 GMT
vary: Accept-Encoding
etag: W/"6885f214-12eb0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
referrer-policy: same-origin
age: 59298
cf-cache-status: HIT
cf-ray: 9694453c68a25699-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3086&min_rtt=541&rtt_var=2153&sent=147&recv=215&lost=0&retrans=0&sent_bytes=13349&recv_bytes=12359&delivery_rate=432688&ss_exit_cwnd=14908&ss_exit_reason=2&cwnd=14000&unsent_bytes=0&cid=b4b0fa10278e5cb7&ts=967&inflight_dur=60&x=40"

HEAD kuutnytsbkacv.com/

139.45.197.161

200 OK

0 B

URL HEAD HTTPS

kuutnytsbkacv.com/

IP / ASN

139.45.197.161

#9002 RETN Limited

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-08

Times Seen5720799

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectkuutnytsbkacv.com

Fingerprint6E:F3:DA:30:B2:48:93:D2:0A:11:2F:18:B3:8C:E7:CF:53:85:9E:55

ValiditySat, 02 Aug 2025 11:15:54 GMT - Fri, 31 Oct 2025 11:15:53 GMT

Technology Fingerprints

Nginx (Web servers, Reverse proxies)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

HEAD / HTTP/1.1
Host: kuutnytsbkacv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Content-Type: text/html
Origin: https://srtslug.biz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 03 Aug 2025 07:58:32 GMT
content-type: text/html
x-t10r6a72c0e78-69i9d80: 00000000000000000000000000000000
vary: Accept-Encoding, Origin
access-control-allow-origin: https://srtslug.biz
access-control-expose-headers: Link, X-Application-Token, X-Application-Key, X-Tag, X-Auth-Token, X-DirectionPartner-Id, X-ZoneType-Id, X-Hostname
access-control-allow-credentials: true
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
timing-allow-origin: *
x-application-key: bsf45TlekG8ovkoxqmrfo
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2

GET 22hgc.com/5/7704232

139.45.197.105

200 OK

110 kB

URL GET HTTPS

22hgc.com/5/7704232

IP / ASN

139.45.197.105

#9002 RETN Limited

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators

First Seen2025-08-03

Last Seen2025-08-03

Times Seen1

Size110 kB (110224 bytes)

MD5f09a46b1923fe6f932aa434e91604d6f

SHA14754134644fdcf1f01633d8fd6161136fec6979c

SHA256ec7c367990ed7a867f7d87fd96f56bceb5d648c574dee764bbd2835c179f5643

Certificate Info

IssuerLet's Encrypt

Subject22hgc.com

Fingerprint2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7

ValiditySat, 02 Aug 2025 05:09:04 GMT - Fri, 31 Oct 2025 05:09:03 GMT

Technology Fingerprints

Nginx (Web servers, Reverse proxies)

HTTP Headers

GET /5/7704232 HTTP/1.1
Host: 22hgc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 03 Aug 2025 07:58:33 GMT
content-type: application/javascript
x-trace-id: 3b9949daea58cb2656f6db3e4c57f7a9
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00821acc89934791eadfcd566dbdc633; expires=Mon, 03 Aug 2026 07:58:33 GMT; path=/; secure; SameSite=None
oaidts=1754207913; expires=Mon, 03 Aug 2026 07:58:33 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=UA-354543616&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163

142.250.74.136

200 OK

273 kB

URL GET HTTPS

www.googletagmanager.com/gtag/js?id=UA-354543616&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163

IP / ASN

142.250.74.136

#15169 GOOGLE

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeJavaScript source, ASCII text, with very long lines (2491)

First Seen2025-08-03

Last Seen2025-08-03

Times Seen1

Size273 kB (273196 bytes)

MD5b912583fbeb4df31e701f6bb2e692dac

SHA16bea7d9f40854d8d06cc2c809fba317761c45d0c

SHA2562d3d929f45d2043826e0193644585bbafd5ba9d6f3a809fbd0d3b799919eefa4

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

FingerprintA2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1

ValidityMon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT

Technology Fingerprints

HTTP Headers

GET /gtag/js?id=UA-354543616&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Aug 2025 07:58:32 GMT
expires: Sun, 03 Aug 2025 07:58:32 GMT
cache-control: private, max-age=900
last-modified: Sun, 03 Aug 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0
report-to: {"group":"ascgcycc:1099:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0"}],}
server: Google Tag Manager
content-length: 97129
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.googletagmanager.com/gtag/js?id=G-PDV6XHL2ZF&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163

142.250.74.136

200 OK

413 kB

URL GET HTTPS

www.googletagmanager.com/gtag/js?id=G-PDV6XHL2ZF&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163

IP / ASN

142.250.74.136

#15169 GOOGLE

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeJavaScript source, ASCII text, with very long lines (6006)

First Seen2025-08-03

Last Seen2025-08-03

Times Seen1

Size413 kB (413053 bytes)

MD5cc560c20bb6e567939b9bd81562151db

SHA18dc96c8acea5e795e5208297f47886b59de70b2f

SHA256a70c77bd2d25c0b1327419b7f72db2d8a765ec1ff14a63bbc0cb45bc829e9c4a

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

FingerprintA2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1

ValidityMon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT

Technology Fingerprints

HTTP Headers

GET /gtag/js?id=G-PDV6XHL2ZF&cx=c&gtm=457e57u1za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105087538~105087540~105103161~105103163 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Aug 2025 07:58:32 GMT
expires: Sun, 03 Aug 2025 07:58:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0
report-to: {"group":"ascgcycc:1099:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0"}],}
server: Google Tag Manager
content-length: 136950
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET srtslug.biz/83m2W

104.21.41.79

200 OK

46 kB

URL User Request GET HTTPS

srtslug.biz/83m2W

IP / ASN

104.21.41.79

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeHTML document, Unicode text, UTF-8 text, with very long lines (28513), with CRLF, LF line terminators

First Seen2025-08-03

Last Seen2025-08-03

Times Seen1

Size46 kB (46471 bytes)

MD5bec93f30ee402f71fe575a39925be708

SHA11d4dd7bc25ab55ac87225a0e1f00a0f83fcc2b04

SHA256ef97330d8f21346aea050831a3aeeb9af59385c04a966a884e08e5fa5ba57505

Certificate Info

IssuerGoogle Trust Services

Subjectsrtslug.biz

FingerprintFC:27:1F:C0:70:A9:4C:8D:93:36:EE:D4:A7:D4:2A:8C:67:3B:95:39

ValiditySun, 27 Jul 2025 08:11:31 GMT - Sat, 25 Oct 2025 09:08:54 GMT

Technology Fingerprints

cdnjs (CDN)

jQuery:3.6.0 (JavaScript libraries)

Google Analytics (Analytics)

Cloudflare (CDN)

HTTP Headers

GET /83m2W HTTP/1.1
Host: srtslug.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 03 Aug 2025 07:58:31 GMT
content-type: text/html; charset=UTF-8
server: cloudflare
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store, private
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
referrer-policy: same-origin
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=iX8h7Jw4UKpj4oh8Of%2B9F%2B2HyY7%2ByhPXoY8L0cBfjmqGjRNceNwtdaBVqg1ReAoYLuHU4zdThZ87kssilSbklgd80x8PVyaWlg%3D%3D"}]}
cf-cache-status: DYNAMIC
content-encoding: br
set-cookie: 6d0a5236b2de99e6e2dae56356fb3477=p8ySxItHG5w82Y4GafoviDmEzNAVm67P53L3AkM4tKgGnEPAIZQe4R9vw1FoD0e4FlZcl5DSSrKIXxyEneEMJA; HttpOnly; SameSite=Lax; Path=/; Domain=srtslug.biz; Max-Age=86400; Expires=Mon, 04 Aug 2025 07:58:31 GMT
cf-ray: 969445357b0b56b5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET srtslug.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

104.21.41.79

200 OK

1.2 kB

URL GET HTTPS

srtslug.biz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

IP / ASN

104.21.41.79

#13335 CLOUDFLARENET

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeJavaScript source, ASCII text, with very long lines (1238)

First Seen2023-03-07

Last Seen2025-08-08

Times Seen99080

Size1.2 kB (1239 bytes)

MD59e8f56e8e1806253ba01a95cfc3d392c

SHA1a8af90d7482e1e99d03de6bf88fed2315c5dd728

SHA2562595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8

Certificate Info

IssuerGoogle Trust Services

Subjectsrtslug.biz

FingerprintFC:27:1F:C0:70:A9:4C:8D:93:36:EE:D4:A7:D4:2A:8C:67:3B:95:39

ValiditySun, 27 Jul 2025 08:11:31 GMT - Sat, 25 Oct 2025 09:08:54 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: srtslug.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://srtslug.biz/83m2W
DNT: 1
Connection: keep-alive
Cookie: 6d0a5236b2de99e6e2dae56356fb3477=p8ySxItHG5w82Y4GafoviDmEzNAVm67P53L3AkM4tKgGnEPAIZQe4R9vw1FoD0e4FlZcl5DSSrKIXxyEneEMJA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 03 Aug 2025 07:58:31 GMT
content-type: application/javascript
expires: Sun, 03 Aug 2025 08:46:31 GMT
cache-control: public
vary: accept-encoding
x-frame-options: DENY
x-content-type-options: nosniff
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=p9O76M0F7ObqevE9mlP3GgTsHTTMK%2BrcM75Pmi0%2BnrcNGTdh2SxKGZlymGASAf6NKie54qtcMwnzLdxyUzNk8qyvG2LicmsKcw%3D%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 96944537ad8856b5-OSL
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=UA-108199505-1

142.250.74.136

200 OK

293 kB

URL GET HTTPS

www.googletagmanager.com/gtag/js?id=UA-108199505-1

IP / ASN

142.250.74.136

#15169 GOOGLE

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeJavaScript source, ASCII text, with very long lines (5911)

First Seen2025-08-03

Last Seen2025-08-03

Times Seen1

Size293 kB (293297 bytes)

MD580f1dc270987f03023db39d0e0786457

SHA1cd52a44b97b1050d23276e4c8e004bdc5e257150

SHA256924fca3ca00ae0b3ea224b46412f3f1bcc387494dbc953feb8cad5a214044c64

Certificate Info

IssuerGoogle Trust Services

Subject*.google-analytics.com

FingerprintA2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1

ValidityMon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT

Technology Fingerprints

HTTP Headers

GET /gtag/js?id=UA-108199505-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Aug 2025 07:58:31 GMT
expires: Sun, 03 Aug 2025 07:58:31 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0
report-to: {"group":"ascgcycc:1099:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0"}],}
server: Google Tag Manager
content-length: 103299
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

142.250.74.35

200 OK

48 kB

URL GET HTTPS

fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 48532, version 1.0

First Seen2025-05-29

Last Seen2025-08-08

Times Seen9869

Size48 kB (48532 bytes)

MD5225835e6e0496c54dc2aca9f3d533892

SHA1942ef5298bbe74bfe44e445def5f2bfc94027fa8

SHA256acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD

ValidityMon, 07 Jul 2025 08:35:11 GMT - Mon, 29 Sep 2025 08:35:10 GMT

HTTP Headers

GET /s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://srtslug.biz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 31 Jul 2025 10:58:16 GMT
expires: Fri, 31 Jul 2026 10:58:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:51:44 GMT
content-type: font/woff2
age: 248416
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/bricolagegrotesque/v8/3y9K6as8bTXq_nANBjzKo3IeZx8z6up5BeSl9D4dj_x9PpZBMlGIInHWUSNIpvI.woff2

142.250.74.35

200 OK

77 kB

URL GET HTTPS

fonts.gstatic.com/s/bricolagegrotesque/v8/3y9K6as8bTXq_nANBjzKo3IeZx8z6up5BeSl9D4dj_x9PpZBMlGIInHWUSNIpvI.woff2

IP / ASN

142.250.74.35

#15169 GOOGLE

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeWeb Open Font Format (Version 2), TrueType, length 76708, version 1.0

First Seen2025-03-13

Last Seen2025-08-07

Times Seen85

Size77 kB (76708 bytes)

MD5e4fb7cb2cabbdbaeb698e9107c10995b

SHA16fcd8fb90adf70483ab37cd1055dd21f577c2ddf

SHA25637d43e1615cd7f5c6e41d0da9a45253b89c06837026ff7caed07519bf9493e05

Certificate Info

IssuerGoogle Trust Services

Subject*.gstatic.com

Fingerprint43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD

ValidityMon, 07 Jul 2025 08:35:11 GMT - Mon, 29 Sep 2025 08:35:10 GMT

HTTP Headers

GET /s/bricolagegrotesque/v8/3y9K6as8bTXq_nANBjzKo3IeZx8z6up5BeSl9D4dj_x9PpZBMlGIInHWUSNIpvI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://srtslug.biz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 76708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 31 Jul 2025 10:13:46 GMT
expires: Fri, 31 Jul 2026 10:13:46 GMT
cache-control: public, max-age=31536000
age: 251086
last-modified: Tue, 11 Mar 2025 01:16:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

OPTIONS 22hgc.com/wrr?z=7704232&p_rid=2eb61869-1457-4f65-853e-2841a15053fc&rb=XAtMAmZfqu7g36VlVDbOaT2Y_TUQSPE57Dd2WarJFnSI0pKXXtt3z_i3Kd8zBXsnOAttfgLxklp36cD9AdlbbRKymGTGzHBP2_QB0oJbfi4tRd54_sROSZ6Sb2-crmrl66XTJOe3POI9RfAPI3Tad6-Yc5Tma2fK_2_svx-vQHHwADTxmkH53trHB-u6Y3zJD-bZP3rEJuOLTL26zZRwoa6WYZgJVO1UV8c8ptdZHh273VJBceMcSK1UhviVg7qu92NSiZD_dks=&dmn=22hgc.com&userId=00821acc89934791eadfcd566dbdc633

139.45.197.105

204 No Content

0 B

URL OPTIONS HTTPS

IP / ASN

139.45.197.105

#9002 RETN Limited

Requested byhttps://srtslug.biz/83m2W

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-08

Times Seen5720799

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subject22hgc.com

Fingerprint2F:DB:E5:70:AE:E6:8E:E1:69:8C:6F:5F:E4:15:46:FD:9A:42:B0:B7

ValiditySat, 02 Aug 2025 05:09:04 GMT - Fri, 31 Oct 2025 05:09:03 GMT

Technology Fingerprints

Nginx (Web servers, Reverse proxies)

HTTP Headers

OPTIONS /wrr?z=7704232&p_rid=2eb61869-1457-4f65-853e-2841a15053fc&rb=XAtMAmZfqu7g36VlVDbOaT2Y_TUQSPE57Dd2WarJFnSI0pKXXtt3z_i3Kd8zBXsnOAttfgLxklp36cD9AdlbbRKymGTGzHBP2_QB0oJbfi4tRd54_sROSZ6Sb2-crmrl66XTJOe3POI9RfAPI3Tad6-Yc5Tma2fK_2_svx-vQHHwADTxmkH53trHB-u6Y3zJD-bZP3rEJuOLTL26zZRwoa6WYZgJVO1UV8c8ptdZHh273VJBceMcSK1UhviVg7qu92NSiZD_dks=&dmn=22hgc.com&userId=00821acc89934791eadfcd566dbdc633 HTTP/1.1
Host: 22hgc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://srtslug.biz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
server: nginx
date: Sun, 03 Aug 2025 07:58:34 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-origin: https://srtslug.biz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2