Report - awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809

Report Overview

Visited public
2025-06-25 14:08:32
Tags
suspicious
Submit Tags
URL
awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Finishing URL
awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
IP / ASN
104.21.28.241
#13335 CLOUDFLARENET
Title
Flexible Connections and Your Views
Suspicious - Anti-debugging code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
propu.sh	86429	2018-03-26	2018-11-01	2025-06-23	4.4 kB	55 kB	139.45.197.121
awcra.com	unknown	2015-04-19	2025-06-16	2025-06-23	4.0 kB	402 kB	172.67.147.231

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	propu.sh/pns.js?z=9385261&sw=/doland/sw/sw.js&ymid=961740605606596809&var_3=9534112_mcuS5NMPyP&var=9254409	ScriptElement	50 kB	2025-06-23	2025-06-25
Pretty URL propu.sh/pns.js?z=9385261&sw=/doland/sw/sw.js&ymid=961740605606596809&var_3=9534112_mcuS5NMPyP&var=9254409 IP 139.45.197.121 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-23 20:54 Last Seen2025-06-25 14:08 Times Seen3 Hash d631b245c2fa0a6f0a4d5b4c72a6113f 9faf9d293e1044a8438e1ec3c7494eeeac5751d9 21944ac8c0f1626f8fb7fb2651c5c30e32e4983964c3430d61015f37eacec156 Loading...

	awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809	ScriptElement	308 B	2025-06-23	2025-07-24
Pretty URL awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809 IP 172.67.147.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-23 20:54 Last Seen2025-07-24 23:27 Times Seen65 Hash 7444e4a0456ba4d0fb7faa33dfb7e756 4ddafd3f5a361f3592f2647aacb9712de6a32874 38e2dd75cfaa786bc9308a235bed62baa9e671224ae83bd6add57a0dd011d509 Loading...

	awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809	ScriptElement	38 kB	2025-06-25	2025-07-17
Pretty URL awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809 IP 172.67.147.231 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-06-25 14:08 Last Seen2025-07-17 05:57 Times Seen51 Hash dbccbebae7175f6cf21df9ce88fad9f6 f38cfaf2ba4098b85bf7769112ed00d314b59a82 8c017e4c3ca8de582e12e098385b633a19117a1240f1d0f06952a7e2064406a4 Loading...

HTTP Transactions (16)

URL IP Response Size

OPTIONS propu.sh/event

139.45.197.121

200 OK

0 B

URL OPTIONS
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://awcra.com/
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

POST propu.sh/event

139.45.197.121

200 OK

81 B

URL POST
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type
JSON text data
Size
81 B (81 bytes)
Hash
e5ada5eae3583ff18f8a6300521d8935
87c9350a1b758c88bc22bc97f8112ec7b745feb3
0641bb399191034af7d003fff78793e014c88fe73ad71f878a54bb0207190339

HTTP Headers

POST /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://awcra.com/
Content-Type: application/json
Content-Length: 462
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: application/json; charset=utf-8
content-length: 81
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

POST propu.sh/event

139.45.197.121

200 OK

81 B

URL POST
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type
JSON text data
Size
81 B (81 bytes)
Hash
31b6cc84f7947912475895b7aa1cf1ed
c77ed84f09b835d9f64d726f3222732b9a921bfc
bed412b88b31a29369404016b7b518940ee53a80f28bd836a0b8a5871b84b175

HTTP Headers

POST /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://awcra.com/
Content-Type: application/json
Content-Length: 458
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: application/json; charset=utf-8
content-length: 81
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

GET awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809

172.67.147.231

200 OK

58 kB

URL User Request GET
awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
IP
172.67.147.231:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectawcra.com
FingerprintA1:ED:07:1C:D3:57:A1:17:F1:89:E0:86:68:85:C6:BB:D7:0D:8C:0C
ValidityFri, 30 May 2025 08:32:56 GMT - Thu, 28 Aug 2025 09:30:16 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (43272)
Size
58 kB (57493 bytes)
Hash
35578d866f6d70a172d66e5f93d50b53
be77f00cfaec55d27cdb0fc69bb490e3fba0bd5b
6553080894627c4b11c839427a44da0cbe22357e527482c423d4f79d8b657fe7

HTTP Headers

GET /doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809 HTTP/1.1
Host: awcra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 25 Jun 2025 14:08:09 GMT
content-type: text/html; charset=utf-8
server: cloudflare
last-modified: Tue, 24 Jun 2025 06:25:09 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
expires: Thu, 26 Jun 2025 14:08:09 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
x-cache: MISS
x-served-by: your-server
x-fastly-request-id: 3c6e5043c601f76ec4cef5d96e75c613
x-proxy-cache: ENABLED
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=DGfSxjQFtCko%2B3kU%2BJrLWinAua1r8borxPrRwWGsTTnexKMDJbYFi5OHtE%2FNrYzV7sFRiYQySpuUZQ1Xnp2txNBkFLdQfJU%3D"}]}
cf-cache-status: DYNAMIC
vary: accept-encoding
content-encoding: br
cf-ray: 9555090cfa695685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

POST awcra.com/sync-metrics

172.67.147.231

200 OK

17 B

URL POST
awcra.com/sync-metrics
IP
172.67.147.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerGoogle Trust Services
Subjectawcra.com
FingerprintA1:ED:07:1C:D3:57:A1:17:F1:89:E0:86:68:85:C6:BB:D7:0D:8C:0C
ValidityFri, 30 May 2025 08:32:56 GMT - Thu, 28 Aug 2025 09:30:16 GMT

File type
JSON text data
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

HTTP Headers

POST /sync-metrics HTTP/1.1
Host: awcra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 458
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Referer: https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/2 200 OK
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: application/json; charset=utf-8
content-length: 17
server: cloudflare
x-trace-id: 846c9be2a99ed5bf0623ecb9393a0b7a
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=6KY5gOFOTYV9kcnSaPD%2ByWa3eIxaVK%2B5L1uDLGeNHLU2zw9cDH%2BwQvjH4k%2BvLCghWZ8uHPFC65gbt9ouGDAdBr8HgYDuym0%3D"}]}
cf-ray: 955509101e795685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET propu.sh/pns.js?z=9385261&sw=/doland/sw/sw.js&ymid=961740605606596809&var_3=9534112_mcuS5NMPyP&var=9254409

139.45.197.121

200 OK

50 kB

URL GET
propu.sh/pns.js?z=9385261&sw=/doland/sw/sw.js&ymid=961740605606596809&var_3=9534112_mcuS5NMPyP&var=9254409
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type
JavaScript source, ASCII text, with very long lines (49865), with no line terminators
Size
50 kB (49865 bytes)
Hash
d631b245c2fa0a6f0a4d5b4c72a6113f
9faf9d293e1044a8438e1ec3c7494eeeac5751d9
21944ac8c0f1626f8fb7fb2651c5c30e32e4983964c3430d61015f37eacec156

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Anti-debugging code

HTTP Headers

GET /pns.js?z=9385261&sw=/doland/sw/sw.js&ymid=961740605606596809&var_3=9534112_mcuS5NMPyP&var=9254409 HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://awcra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: application/javascript
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

OPTIONS propu.sh/event

139.45.197.121

200 OK

0 B

URL OPTIONS
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://awcra.com/
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

OPTIONS propu.sh/event

139.45.197.121

200 OK

0 B

URL OPTIONS
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://awcra.com/
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

OPTIONS propu.sh/event

139.45.197.121

200 OK

0 B

URL OPTIONS
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://awcra.com/
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2

POST propu.sh/event

139.45.197.121

200 OK

81 B

URL POST
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type
JSON text data
Size
81 B (81 bytes)
Hash
4c244a591b0665e34a671bda8db80dee
169b7291113601c9f62677757b1c2bb6bdc3d42b
cb579b1df0e1884071081c745d58738debc0e68d26594850bab377d26482e5f9

HTTP Headers

POST /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://awcra.com/
Content-Type: application/json
Content-Length: 455
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: application/json; charset=utf-8
content-length: 81
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

POST awcra.com/sync-metrics

172.67.147.231

200 OK

17 B

URL POST
awcra.com/sync-metrics
IP
172.67.147.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerGoogle Trust Services
Subjectawcra.com
FingerprintA1:ED:07:1C:D3:57:A1:17:F1:89:E0:86:68:85:C6:BB:D7:0D:8C:0C
ValidityFri, 30 May 2025 08:32:56 GMT - Thu, 28 Aug 2025 09:30:16 GMT

File type
JSON text data
Size
17 B (17 bytes)
Hash
5b64e8b89092b2e3dfd448b10700627f
484b3032619fa1acd135d114565b0a5166281c22
f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4

HTTP Headers

POST /sync-metrics HTTP/1.1
Host: awcra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 466
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Referer: https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/2 200 OK
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: application/json; charset=utf-8
content-length: 17
server: cloudflare
x-trace-id: 3398e2bab01870caf1a428d07164daef
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
timing-allow-origin: *
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=TW56SvsGrYlCtvJGVhaoYwZ5dQ7xgQf3VZOeiDQxRLuSY%2FWZU8VE1hu%2BdS43yJGc2jR8L%2FtqYz2o3DtYJqgyNlisaR%2F%2Fjj0%3D"}]}
cf-ray: 955509102e8e5685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET awcra.com/doland/233/b/assets/posters/girl-6.webp

172.67.147.231

200 OK

8.0 kB

URL GET
awcra.com/doland/233/b/assets/posters/girl-6.webp
IP
172.67.147.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerGoogle Trust Services
Subjectawcra.com
FingerprintA1:ED:07:1C:D3:57:A1:17:F1:89:E0:86:68:85:C6:BB:D7:0D:8C:0C
ValidityFri, 30 May 2025 08:32:56 GMT - Thu, 28 Aug 2025 09:30:16 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x366, Scaling: [none]x[none], YUV color, decoders should clamp
Size
8.0 kB (7994 bytes)
Hash
23dd3ce69fd35f16aa8981e784bf62a2
12bf4c6aeaa01dbea85d0aa087bdf803ec31400c
c4260143f08ecb3920af5fe90bf957f920f7cafd82df0a05d6d1526a03477963

HTTP Headers

GET /doland/233/b/assets/posters/girl-6.webp HTTP/1.1
Host: awcra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: image/webp
content-length: 7994
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=atR6nq1T0bAvvM9BIFlSbyt573hAzBTF33Oyoazy0%2BwisOZUG18NhiYiz7xVyPRxAnm7IqyN7%2FDlPpnLQGFYs%2FFU0racVM%2BvJ%2F4dlsJGrAitOg5MSP%2F1DYAwEXM%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 24 Jun 2025 06:25:07 GMT
etag: "685a44c3-1f3a"
expires: Wed, 25 Jun 2025 15:11:29 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
accept-ranges: bytes
x-cache: MISS
x-served-by: prime-server
x-fastly-request-id: 5c532fc4e235588d59ccfcdb3157c708
x-proxy-cache: ENABLED
x-timer: S=1750777889.598
referer: https://awcra.com/doland/233/b/assets/posters/girl-6.webp
age: 82600
cf-cache-status: HIT
cf-ray: 9555091119c056b9-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5722&min_rtt=486&rtt_var=5722&sent=135&recv=185&lost=0&retrans=0&sent_bytes=10434&recv_bytes=10871&delivery_rate=248328&ss_exit_cwnd=14899&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=ba16144b59712171&ts=505&inflight_dur=44&x=44"

GET awcra.com/doland/233/b/assets/logo.webp

172.67.147.231

200 OK

10 kB

URL GET
awcra.com/doland/233/b/assets/logo.webp
IP
172.67.147.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerGoogle Trust Services
Subjectawcra.com
FingerprintA1:ED:07:1C:D3:57:A1:17:F1:89:E0:86:68:85:C6:BB:D7:0D:8C:0C
ValidityFri, 30 May 2025 08:32:56 GMT - Thu, 28 Aug 2025 09:30:16 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 810x260, Scaling: [none]x[none], YUV color, decoders should clamp
Size
10 kB (9984 bytes)
Hash
2fe6508a2a88d04bda8566af127e8381
df1ad0bb456f1560c386f7a2863bec5c89903959
e8e49ec62ca478cf3f4aedcd07d02b4fbf785cba187c4e24292031425520d810

HTTP Headers

GET /doland/233/b/assets/logo.webp HTTP/1.1
Host: awcra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: image/webp
content-length: 9984
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J9E7umFR5%2FNBrgRlvh2nRVpXiALLA0OZwM5Vnk9VUnVfdIWQdCKmkvOvA60C5oOVi%2FYhSUwTnKU%2BEmMuVyIxMaCQsFqwAoadwbeQLxfcRTGsP96EUstAs8Z%2BPuw%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 24 Jun 2025 06:25:07 GMT
etag: "685a44c3-2700"
expires: Thu, 26 Jun 2025 13:21:42 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
accept-ranges: bytes
x-cache: MISS
x-served-by: prime-server
x-fastly-request-id: a103819f63af5498dc12dc515b5d03d5
x-proxy-cache: ENABLED
x-timer: S=1750769786.582
referer: https://awcra.com/doland/233/b/assets/logo.webp
age: 2787
cf-cache-status: HIT
cf-ray: 9555091149c356b9-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3868&min_rtt=0&rtt_var=5199&sent=146&recv=189&lost=0&retrans=0&sent_bytes=22884&recv_bytes=11370&delivery_rate=1300752&ss_exit_cwnd=14899&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=ba16144b59712171&ts=519&inflight_dur=52&x=44"

GET awcra.com/favicon.ico

172.67.147.231

204 No Content

0 B

URL GET
awcra.com/favicon.ico
IP
172.67.147.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerGoogle Trust Services
Subjectawcra.com
FingerprintA1:ED:07:1C:D3:57:A1:17:F1:89:E0:86:68:85:C6:BB:D7:0D:8C:0C
ValidityFri, 30 May 2025 08:32:56 GMT - Thu, 28 Aug 2025 09:30:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: awcra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Wed, 25 Jun 2025 14:08:10 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p3lQ1hQvOYrlSAZlrJFxqHXmStxJagUsj4remjCZdFjxYsl4A5kYTIsEJb761oW6IV2BmE0I0FS8utijBwFAMRWn3IBv7%2BQKKGIg50ScdCWsh5bHwxQkJgFyC7U%3D"}],"group":"cf-nel","max_age":604800}
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000, must-revalidate, proxy-revalidate
pragma: public
age: 1215054
cf-cache-status: HIT
cf-ray: 9555091219ca56b9-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=967&min_rtt=0&rtt_var=673&sent=434&recv=221&lost=0&retrans=0&sent_bytes=357582&recv_bytes=13241&delivery_rate=13009747&ss_exit_cwnd=14899&ss_exit_reason=2&cwnd=40994&unsent_bytes=0&cid=ba16144b59712171&ts=652&inflight_dur=111&x=44"

GET awcra.com/doland/233/b/assets/videos/girl_insta-6.mp4

172.67.147.231

206 Partial Content

318 kB

URL GET
awcra.com/doland/233/b/assets/videos/girl_insta-6.mp4
IP
172.67.147.231:443
ASN
#13335 CLOUDFLARENET

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerGoogle Trust Services
Subjectawcra.com
FingerprintA1:ED:07:1C:D3:57:A1:17:F1:89:E0:86:68:85:C6:BB:D7:0D:8C:0C
ValidityFri, 30 May 2025 08:32:56 GMT - Thu, 28 Aug 2025 09:30:16 GMT

File type
ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Size
318 kB (317477 bytes)
Hash
bcdc26fd62b397012beaf08ede5646f9
1651b43c025d3af1ee647d59415f4f49ecc779c0
6f3dfc88fbfc33b97ccc2a93128a3c267efd01f927690bdb03a0d3384c0fc765

HTTP Headers

GET /doland/233/b/assets/videos/girl_insta-6.mp4 HTTP/1.1
Host: awcra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: video/mp4
content-length: 317477
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pIZcJZ23FYTUQG%2Be%2BMqsYCy%2FI3ET824NkXR9pXo1JbVmiehi1Yyp1FdITUZC1Z6zQb0mX4lXhpdXKSchDvk1LwBkx8sGvW%2BiIMa9%2F74z9LwkdLmd3bkzqw2j%2BUQ%3D"}],"group":"cf-nel","max_age":604800}
last-modified: Tue, 24 Jun 2025 06:25:07 GMT
etag: "685a44c3-4d825"
expires: Wed, 25 Jun 2025 15:11:29 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
accept-ranges: bytes
x-cache: MISS
x-served-by: prime-server
x-fastly-request-id: f5c39b5693f96518a343cdb835cf80a3
x-proxy-cache: ENABLED
x-timer: S=1750777889.651
referer: https://awcra.com/doland/233/b/assets/videos/girl_insta-6.mp4
age: 82600
content-range: bytes 0-317476/317477
cf-cache-status: HIT
cf-ray: 9555091139c156b9-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=5007&min_rtt=0&rtt_var=5722&sent=138&recv=187&lost=0&retrans=0&sent_bytes=14034&recv_bytes=11282&delivery_rate=832481&ss_exit_cwnd=14899&ss_exit_reason=2&cwnd=12000&unsent_bytes=0&cid=ba16144b59712171&ts=509&inflight_dur=47&x=44"

POST propu.sh/event

139.45.197.121

200 OK

81 B

URL POST
propu.sh/event
IP
139.45.197.121:443
ASN
#9002 RETN Limited

Requested by
https://awcra.com/doland/233/b/ja.html?z=9254409&var=961740605606596809&var_3=9534112_mcuS5NMPyP&country=JP&s=961740605606596809
Certificate
IssuerLet's Encrypt
Subjectpropu.sh
FingerprintAB:56:BB:E1:E9:A0:BE:6C:81:25:4C:CD:CA:7A:D3:78:C5:91:F8:3E
ValidityFri, 23 May 2025 17:02:24 GMT - Thu, 21 Aug 2025 17:02:23 GMT

File type
JSON text data
Size
81 B (81 bytes)
Hash
e909d0f9731f5b494980e7faf5d62045
96d05566ebf0982659607dbdb2f1b611226b85eb
86f983ec971e5e83ce535ab36226512cbe7b2326c26117786a5d20517c725ad4

HTTP Headers

POST /event HTTP/1.1
Host: propu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://awcra.com/
Content-Type: application/json
Content-Length: 1068
Origin: https://awcra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 25 Jun 2025 14:08:10 GMT
content-type: application/json; charset=utf-8
content-length: 81
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://awcra.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL OPTIONS

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL POST

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL POST

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL POST

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP