| go.mysmartprofit.com/trumpsecretstocks0125/052018d9589ffcd3cae95b513e93d748/48/2658278951/148385/e794fb37b54bfb9157834ef37966ac78/71570 |  104.21.16.1 | 302 Found | 0 B |
URL User Request GET HTTP/2go.mysmartprofit.com/trumpsecretstocks0125/052018d9589ffcd3cae95b513e93d748/48/2658278951/148385/e794fb37b54bfb9157834ef37966ac78/71570 IP104.21.16.1:443
CertificateIssuerGoogle Trust Services Subjectmysmartprofit.com Fingerprint5E:22:A5:A4:94:97:D6:C7:3A:3A:4A:88:DC:9E:5A:48:5B:F1:8C:52 ValidityThu, 06 Feb 2025 04:57:22 GMT - Wed, 07 May 2025 05:55:17 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /trumpsecretstocks0125/052018d9589ffcd3cae95b513e93d748/48/2658278951/148385/e794fb37b54bfb9157834ef37966ac78/71570 HTTP/1.1
Host: go.mysmartprofit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 21 Feb 2025 19:57:37 GMT
content-type: text/html; charset=UTF-8
location: https://verifiedlinks.org/go?ehash=052018d9589ffcd3cae95b513e93d748&product=64672&ar=48&cid=148385&lid=e794fb37b54bfb9157834ef37966ac78&slhash=71570&mtaid=[s7]&cid2=[s8]
server: cloudflare
cache-control: max-age=600
expires: Fri, 21 Feb 2025 20:07:36 GMT
vary: User-Agent
cf-cache-status: DYNAMIC
cf-ray: 91594e72cdcab50c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
IP104.21.64.1:0
CertificateIssuerGoogle Trust Services Subjectmysmartprofit.com Fingerprint5E:22:A5:A4:94:97:D6:C7:3A:3A:4A:88:DC:9E:5A:48:5B:F1:8C:52 ValidityThu, 06 Feb 2025 04:57:22 GMT - Wed, 07 May 2025 05:55:17 GMT
File typeHTML document, ASCII text Hashf1fb042c62910c34be16ad91cbbd71fa 5bc7aceba9a8704ef4b1d427d7d08b140afcd866 9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24
GET / HTTP/1.1
Host: go.mysmartprofit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 21 Feb 2025 19:57:40 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 12 Dec 2024 17:26:56 GMT
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Vary: Accept-Encoding,User-Agent
Pragma: no-cache
cf-cache-status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7qmzKdZfsI1GfkGeiJZPQEqURXtIYmDBMw0fGkMZq3gmBCDyC5NmavQl%2B8DLu3a3VA8fl%2FYr6ItOO8a3rQe655qPxc0xAFGiZ9hrLgk5C4iutU3S%2BnPAYDTTzWbeK2faNs3l79KqOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 91594e851a921c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=523&min_rtt=523&rtt_var=261&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=285&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
|
| verifiedlinks.org/go?ehash=052018d9589ffcd3cae95b513e93d748&product=64672&ar=48&cid=148385&lid=e794fb37b54bfb9157834ef37966ac78&slhash=71570&mtaid=[s7]&cid2=[s8] | 104.18.25.96 | 302 Found | 0 B |
URL User Request GET HTTP/2verifiedlinks.org/go?ehash=052018d9589ffcd3cae95b513e93d748&product=64672&ar=48&cid=148385&lid=e794fb37b54bfb9157834ef37966ac78&slhash=71570&mtaid=[s7]&cid2=[s8] IP104.18.25.96:443
CertificateIssuerGoogle Trust Services Subjectverifiedlinks.org Fingerprint3B:DD:7F:E7:1B:15:74:6E:9A:DD:86:1D:77:58:03:C6:7C:D4:6B:4E ValidityThu, 20 Feb 2025 17:32:01 GMT - Wed, 21 May 2025 18:31:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /go?ehash=052018d9589ffcd3cae95b513e93d748&product=64672&ar=48&cid=148385&lid=e794fb37b54bfb9157834ef37966ac78&slhash=71570&mtaid=[s7]&cid2=[s8] HTTP/1.1
Host: verifiedlinks.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 21 Feb 2025 19:57:38 GMT
content-type: text/html; charset=UTF-8
location: https://www.p1nptrk.com/4LNG39/7XDN21/?sub1=3415790118458645876
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: User-Agent
cf-cache-status: DYNAMIC
set-cookie: PHPSESSID=a6c58923f0d3829723fbe9e6b37e6385; path=/
pixel_session_hash_64672=3415790118458645876; expires=Sun, 23-Mar-2025 19:57:38 GMT; Max-Age=2592000; path=/; secure; HttpOnly; SameSite=None
bt_tracking_product_64672=8e027ec90679a68afbdffb3ba478209f4b1363e9f6d1460fe4d5fc453ae8b029; expires=Sun, 23-Feb-2025 19:57:38 GMT; Max-Age=172800
__cf_bm=RnepHI_5iuDx4CTiyqIHV1pyB7SNtDH_eN5avalN.3o-1740167858-1.0.1.1-xrCUE4ZdTFmpsKX4Yy2839g0uvTr.I543nJO9El6ILFgeAik1amKFjMmg6mW_zv5Huj4LvjBTyVdbuO1f6SlVw; path=/; expires=Fri, 21-Feb-25 20:27:38 GMT; domain=.verifiedlinks.org; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 91594e77ac4b56b7-OSL
X-Firefox-Spdy: h2
|
| www.p1nptrk.com/4LNG39/7XDN21/?sub1=3415790118458645876 |  34.102.165.129 | 204 No Content | 0 B |
URL User Request GET HTTP/2www.p1nptrk.com/4LNG39/7XDN21/?sub1=3415790118458645876 IP34.102.165.129:443 ASN#396982 GOOGLE-CLOUD-PLATFORM
CertificateIssuerStarfield Technologies, Inc. Subjectp1nptrk.com FingerprintC9:4F:9B:61:0A:46:C8:B9:59:6D:E4:98:04:22:F7:F5:87:1C:84:CD ValidityTue, 24 Sep 2024 20:08:27 GMT - Sun, 26 Oct 2025 20:08:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4LNG39/7XDN21/?sub1=3415790118458645876 HTTP/1.1
Host: www.p1nptrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Fri, 21 Feb 2025 19:57:39 GMT
accept-ch: Sec-Ch-Ua-Platform-Version,Sec-Ch-Ua-Model
vary: Origin
x-eflow-request-id: bbd1c4ed-5720-475c-8479-fc6bdbd98c61
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|