Report - playaindf9.date

Report Overview

Visited public
2024-06-22 10:02:30
Tags
URL
playaindf9.date
Finishing URL
playaindf9.date/enter/register
IP / ASN
104.21.76.180
#13335 CLOUDFLARENET
Title
young paradise

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
b.yzcdn.cn	425969	2014-12-08	2015-07-08 11:30:49	2023-10-23 14:59:32	431 B	9.8 kB	154.85.69.54
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-06-21 18:12:54	2.3 kB	6.2 kB	23.36.76.226
matrix-client.matrix.org	167763	1994-11-02	2019-10-18 17:57:30	2024-06-19 15:33:32	1.1 kB	216 kB	104.20.76.252
naisssions3.name	unknown	unknown	No data	No data	1.2 kB	1.2 kB	188.114.97.1
playaindf9.date	unknown	unknown	No data	No data	3.8 kB	1.2 MB	172.67.198.103
ocsp.sectigochina.com	unknown	2019-10-20	2022-02-25 07:42:56	2024-06-12 14:18:51	333 B	964 B	172.64.149.190

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-06-22	medium	playaindf9.date	Sinkholed
2024-06-22	medium	playaindf9.date	Sinkholed
2024-06-22	medium	playaindf9.date	Sinkholed
2024-06-22	medium	playaindf9.date	Sinkholed
2024-06-22	medium	playaindf9.date	Sinkholed
2024-06-22	medium	playaindf9.date	Sinkholed
2024-06-22	medium	playaindf9.date	Sinkholed
2024-06-22	medium	playaindf9.date	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	playaindf9.date/js/app.e2c39e8a.js	ScriptElement	132 kB	2024-08-19	2024-08-19
Pretty URL playaindf9.date/js/app.e2c39e8a.js IP 172.67.198.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 19:13 Last Seen2024-08-19 19:13 Times Seen1 Hash 8d46ba98c61ded7f6c8f47b9d29b819d 1616a6a6e54c2a628b29c295149ebe0b9253d9f7 eaa97bbe2eb7f73a69cdf6d8dd90bc651c07d081b8750937fbf4172bd1b66cd2 Loading...

	playaindf9.date/js/chunk-vendors.8ac7a571.js	ScriptElement	949 kB	2024-06-02	2024-08-19
Pretty URL playaindf9.date/js/chunk-vendors.8ac7a571.js IP 172.67.198.103 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-02 00:22 Last Seen2024-08-19 21:03 Times Seen119 Hash 9e1e041b5e361ec5b10e0c6e1fb70f56 0b7fcd6a05530bc31474e681c6011adc5f1e59a3 999799beeb23ab6b8963a5ca3c2b88e3c61c547e974df2d80ce8e170110a73c2 Loading...

HTTP Transactions (21)

URL IP Response Size

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6d997a3e4c838d12e34de2dd2d4208c3
386abb53e2df86f291b6a86765d9a6feb88ba30b
32e00abd54407308b80a14e2916a119d95d90b1e7842f8cf0e87df306287869c

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "32E00ABD54407308B80A14E2916A119D95D90B1E7842F8CF0E87DF306287869C"
Last-Modified: Thu, 20 Jun 2024 13:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4433
Expires: Sat, 22 Jun 2024 11:15:57 GMT
Date: Sat, 22 Jun 2024 10:02:04 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
c0fde0756f59aaa5fa85a62f5f528e74
3c2d990e14054ee3b407cc37d77e255533d91ed6
ca44d6619deb0e020993a84c6bfbf1993bf096b13863b706dc8a826499348276

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "CA44D6619DEB0E020993A84C6BFBF1993BF096B13863B706DC8A826499348276"
Last-Modified: Wed, 19 Jun 2024 23:47:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4118
Expires: Sat, 22 Jun 2024 11:10:42 GMT
Date: Sat, 22 Jun 2024 10:02:04 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
5921b10ddbe0b24f0a8edead6ec181b2
6691a5ac00a00feed5de61cd277ca741b2c29862
3c107c0a5dd06bc96ff917c92843ab276923fd751ecd5e48eefafc661b914ae2

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "3C107C0A5DD06BC96FF917C92843AB276923FD751ECD5E48EEFAFC661B914AE2"
Last-Modified: Sat, 22 Jun 2024 04:18:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18405
Expires: Sat, 22 Jun 2024 15:08:49 GMT
Date: Sat, 22 Jun 2024 10:02:04 GMT
Connection: keep-alive

matrix-client.matrix.org/_matrix/media/r0/download/matrix.org/ttPLzKmFYUdCbBAYJJQxreGN

104.20.76.252

206 Partial Content

47 kB

URL GET HTTP/2
matrix-client.matrix.org/_matrix/media/r0/download/matrix.org/ttPLzKmFYUdCbBAYJJQxreGN
IP
104.20.76.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerLet's Encrypt
Subjectmatrix.org
Fingerprint95:53:E2:B9:11:52:CA:D3:E5:8C:B6:CC:4B:C2:49:BA:AA:23:50:96
ValidityFri, 31 May 2024 05:08:05 GMT - Thu, 29 Aug 2024 05:08:04 GMT

File type
data
Size
47 kB (47412 bytes)
Hash
fcf840c95c5501124a1a0486cb2b3a22
49cc9550d061da031222ca696b2975e1dbb50e75
c2dc0bc4c639d2787e10cc7dce2eec3901835c09808c4c6766e8837e7c03cae0

HTTP Headers

GET /_matrix/media/r0/download/matrix.org/ttPLzKmFYUdCbBAYJJQxreGN HTTP/1.1
Host: matrix-client.matrix.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=3571712-
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 206 Partial Content
date: Sat, 22 Jun 2024 10:02:06 GMT
content-type: video/mp4
content-length: 47412
synapse-trace-id: 58628db83df53f12
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: X-Requested-With, Content-Type, Authorization, Date
access-control-expose-headers: Synapse-Trace-Id, Server
cross-origin-resource-policy: cross-origin
content-security-policy: sandbox; default-src 'none'; script-src 'none'; plugin-types application/pdf; style-src 'unsafe-inline'; media-src 'self'; object-src 'self';
x-content-security-policy: sandbox;
referrer-policy: no-referrer
content-disposition: inline; filename=adfs.mp4
cache-control: public, max-age=86400, s-maxage=86400
x-robots-tag: noindex, nofollow, noarchive, noimageindex
permissions-policy: interest-cohort=()
cf-cache-status: HIT
age: 5523
last-modified: Sat, 22 Jun 2024 08:30:03 GMT
content-range: bytes 3571712-3619123/3619124
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b669e7c95b4ee-OSL
X-Firefox-Spdy: h2

naisssions3.name/socket.io/?EIO=3&transport=websocket

188.114.97.1

0 B

URL
naisssions3.name/socket.io/?EIO=3&transport=websocket
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: naisssions3.name
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://playaindf9.date
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VCmiIu63QljH2cHSN8sd8w==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Sat, 22 Jun 2024 10:02:06 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /p70ti/VDATR19oIbyAxI3ntkfY=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jB2blMlIkChCIe%2F%2FdiQqrASjEdttMaty2jbZmnqQrlOmxW9cGCSjaptwZYiBU9MuW88nTLuExQyWUkTJeGES1wLv1VJAb8NeJ1x3Q1BrXdwEo%2Bs5%2FGzC566mPicSaQPov5j5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 897b669e1b8f5688-OSL
alt-svc: h3=":443"; ma=86400

matrix-client.matrix.org/_matrix/media/r0/download/matrix.org/ttPLzKmFYUdCbBAYJJQxreGN

104.20.76.252

206 Partial Content

167 kB

URL GET HTTP/2
matrix-client.matrix.org/_matrix/media/r0/download/matrix.org/ttPLzKmFYUdCbBAYJJQxreGN
IP
104.20.76.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerLet's Encrypt
Subjectmatrix.org
Fingerprint95:53:E2:B9:11:52:CA:D3:E5:8C:B6:CC:4B:C2:49:BA:AA:23:50:96
ValidityFri, 31 May 2024 05:08:05 GMT - Thu, 29 Aug 2024 05:08:04 GMT

File type
data
Size
167 kB (166681 bytes)
Hash
eb50df25c6a9b0be6bcd690749a89bb1
8acce49f5535d257a2ee5b3ea1dc46d37beabb11
cfe91f12967829f2bc9fb83de31fc1dbbe8ccf20390c3f4b2354ffaf7fafb888

HTTP Headers

GET /_matrix/media/r0/download/matrix.org/ttPLzKmFYUdCbBAYJJQxreGN HTTP/1.1
Host: matrix-client.matrix.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=786432-
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
date: Sat, 22 Jun 2024 10:02:06 GMT
content-type: video/mp4
content-length: 2832692
synapse-trace-id: 58628db83df53f12
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: X-Requested-With, Content-Type, Authorization, Date
access-control-expose-headers: Synapse-Trace-Id, Server
cross-origin-resource-policy: cross-origin
content-security-policy: sandbox; default-src 'none'; script-src 'none'; plugin-types application/pdf; style-src 'unsafe-inline'; media-src 'self'; object-src 'self';
x-content-security-policy: sandbox;
referrer-policy: no-referrer
content-disposition: inline; filename=adfs.mp4
cache-control: public, max-age=86400, s-maxage=86400
x-robots-tag: noindex, nofollow, noarchive, noimageindex
permissions-policy: interest-cohort=()
cf-cache-status: HIT
age: 5523
last-modified: Sat, 22 Jun 2024 08:30:03 GMT
content-range: bytes 786432-3619123/3619124
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b669ebcd5b4ee-OSL
X-Firefox-Spdy: h2

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7910
Expires: Sat, 22 Jun 2024 12:13:56 GMT
Date: Sat, 22 Jun 2024 10:02:06 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7910
Expires: Sat, 22 Jun 2024 12:13:56 GMT
Date: Sat, 22 Jun 2024 10:02:06 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7910
Expires: Sat, 22 Jun 2024 12:13:56 GMT
Date: Sat, 22 Jun 2024 10:02:06 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.76.226

504 B

URL
r10.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
6720792332fb717894b4e5221fdc3d86
f79b1d3611fb53cea950acb15000473ae7174149
67dd6ffe107c77c5f8bea4a3d6771b6026efc51bd4a9b26c66c8791c1ef48965

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "67DD6FFE107C77C5F8BEA4A3D6771B6026EFC51BD4A9B26C66C8791C1EF48965"
Last-Modified: Thu, 20 Jun 2024 17:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7910
Expires: Sat, 22 Jun 2024 12:13:56 GMT
Date: Sat, 22 Jun 2024 10:02:06 GMT
Connection: keep-alive

playaindf9.date/img/icons/favicon.svg

172.67.198.103

200 OK

7.2 kB

URL GET HTTP/3
playaindf9.date/img/icons/favicon.svg
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type
HTML document, ASCII text, with very long lines (2522), with no line terminators
Size
7.2 kB (7206 bytes)
Hash
961b4803e65b39a4f123ddf614521688
a8c0ecfd4f2e01f32be196f00127f0b3d5f96926
359d2bc742612fe37d286270e758f811ed8c549a7c565c9a5d1f513abb625748

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/icons/favicon.svg HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Cookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Jun 2024 10:02:06 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Sat, 22 Jun 2024 00:19:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CDPVZ1WaUeqXdiGB28KQMWdlkFaKhBXiOI%2F8j6h4aE7LSN%2BTCBUs0CfF0xsyYgATca3n0wSuo7N3jCqBIBYeXfqfVe0bwXONn2dzzm4FeGe96AteV66QlBW4cuhbjsPhD78%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b669f7feb5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ocsp.sectigochina.com/

172.64.149.190

472 B

URL
ocsp.sectigochina.com/
IP
172.64.149.190:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
54ddae2fa0c0d6b8798e1b2cd9a2d127
7d5fa91a59470ca9a35dc076a1f9ad1b6094ad58
6dadea7750e5e7d74b9a6f99fd5226c7c5a6b7a67ac4b4a14c6ca33ae5259d05

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigochina.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 22 Jun 2024 10:02:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 19 Jun 2024 12:42:46 GMT
Expires: Wed, 26 Jun 2024 12:42:45 GMT
Etag: "7d5fa91a59470ca9a35dc076a1f9ad1b6094ad58"
Cache-Control: max-age=355491,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 897b66a8fa1a5695-OSL

playaindf9.date/js/app.e2c39e8a.js

172.67.198.103

200 OK

29 kB

URL GET HTTP/3
playaindf9.date/js/app.e2c39e8a.js
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
29 kB (29101 bytes)
Hash
8d46ba98c61ded7f6c8f47b9d29b819d
1616a6a6e54c2a628b29c295149ebe0b9253d9f7
eaa97bbe2eb7f73a69cdf6d8dd90bc651c07d081b8750937fbf4172bd1b66cd2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/app.e2c39e8a.js HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 22 Jun 2024 10:02:05 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sat, 22 Jun 2024 07:41:46 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=07HRHuAQw8Vl3LG6eMexKHTm%2Bm6taQZk9JrLolOh7jC7spihFh1XuguPoExaG%2FD3yDD26%2B3J3T%2FvGSQrCqqZOFxekJqvPHGagCwLz29mxfqV38kbDiaum9CJ1SRP8bfEaWA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b66970d665687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

b.yzcdn.cn/vant/icon-demo-1126.png

154.85.69.54

200 OK

8.9 kB

URL GET HTTP/2
b.yzcdn.cn/vant/icon-demo-1126.png
IP
154.85.69.54:443
ASN
#139057 LEGEND DYNASTY PTE. LTD.

Requested by
https://playaindf9.date/
Certificate
IssuersslTrus
Subject*.yzcdn.cn
Fingerprint6A:A8:BA:7C:D4:B4:86:0B:74:EB:E6:19:C8:69:2E:8B:13:6C:1E:1B
ValidityThu, 09 Nov 2023 00:00:00 GMT - Mon, 09 Dec 2024 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
8.9 kB (8886 bytes)
Hash
f87c46f346a5548224ccbe0b6bd75df5
8e8b8bd4ba3e6b6c8557d94a726061fdd62492fd
b6304eb9b754d38d3ad74d0acce42c156536840351368ed3e4895a6b50cd9370

HTTP Headers

GET /vant/icon-demo-1126.png HTTP/1.1
Host: b.yzcdn.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Jun 2024 10:02:08 GMT
content-type: image/png
content-length: 8886
server: openresty
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: X-Log, X-Reqid
access-control-max-age: 2592000
cache-control: public, max-age=2592000
content-disposition: inline; filename="icon-demo-1126.png"; filename*=utf-8''icon-demo-1126.png
content-md5: +HxG80alVIIkzL4La9dd9Q==
content-transfer-encoding: binary
etag: "Fo6Li9S6PmtshVfZSnJgYf3WJJL9"
last-modified: Mon, 26 Nov 2018 11:08:05 GMT
x-reqid: YyIAAAASg9geDiAX
x-svr: IO
x-qiniu-zone: 0
x-log: X-Log
x-ser: BC5_dx-lt-yd-zhejiang-huzhou-3-cache-7, BC165_lt-obgp-fujian-xiamen-33-cache-1, BC132_IT-Lombardia-Milan-1-cache-1, BC46_DE-Frankfurt-Frankfurt-11-cache-4
x-cache: HIT from BC46_DE-Frankfurt-Frankfurt-11-cache-4(cloudsvr)
X-Firefox-Spdy: h2

playaindf9.date/img/icons/apple-touch-icon-152x152.png

172.67.198.103

200 OK

4.0 kB

URL GET HTTP/3
playaindf9.date/img/icons/apple-touch-icon-152x152.png
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type
PNG image data, 152 x 152, 8-bit/color RGB, non-interlaced
Size
4.0 kB (4046 bytes)
Hash
1a034e64d80905128113e5272a5ab95e
92328e60f63d690f33cd4961b9934a539dc29b82
4d9685d610c4411caadd8d36ce94d3303cf5b05c8e04d67fc232c16a4469a135

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/icons/apple-touch-icon-152x152.png HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Cookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 22 Jun 2024 10:02:06 GMT
content-type: image/png
content-length: 4046
last-modified: Sat, 22 Jun 2024 07:41:43 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BuQ5FxFtuLwdJTo4IxkirPeX8H32Iv32vQgeuiQFWxw73iJ8ACMTkB9X%2FvHBv%2FQ5qxakozUlWj3UtOe%2FOZ9fz7yga2hKbrASN753lwGZ5tD4Y7bnJgQZZWVftZ7DrV9482U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b669f7fe85687-OSL
alt-svc: h3=":443"; ma=86400

playaindf9.date/js/chunk-vendors.8ac7a571.js

172.67.198.103

200 OK

949 kB

URL GET HTTP/3
playaindf9.date/js/chunk-vendors.8ac7a571.js
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type

Size
949 kB (949174 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/chunk-vendors.8ac7a571.js HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 22 Jun 2024 10:02:05 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sat, 22 Jun 2024 07:41:49 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=frgmbJOjSbwib5Mzayr%2FDYn%2FL4oxB1NAyJ1hO9NUu0IBuQXaTmiSX%2FnNlx3fzh%2Fg75wgmDZnoHX7A5Hl4YyynKjsXn68G6edTAc2NpBOQMCSwF3n3jdTLuXQbbF6Rf30bHE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b66970d645687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

playaindf9.date/css/app.7cc9ac6b.css

172.67.198.103

200 OK

14 kB

URL GET HTTP/3
playaindf9.date/css/app.7cc9ac6b.css
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type
ASCII text, with very long lines (14222), with no line terminators
Size
14 kB (14222 bytes)
Hash
38bc115cbd079cd169fdfc14060f7dbc
99120b9fa9219a55b7f21f6acf820e2db6b14c47
0dc08c1c63e0be35432bef885d7a4fb672100064efcb44b2a36154932ba6bc4d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/app.7cc9ac6b.css HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 22 Jun 2024 10:02:05 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 22 Jun 2024 07:41:40 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MVhfUH6D9clVQ2CWbmwRSRupyfx55Hd4z91CYfQxGsaGj9y1sSNzBjs2i2MMBmArD3ubNfV6bNh24996EMT06atZck0MBjVswtaWhVfCKmE8KIrwi4hM1MYl1m8YwB41sbc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b66970d695687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

playaindf9.date/getlog

172.67.198.103

200 OK

12 kB

URL GET HTTP/3
playaindf9.date/getlog
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type
JSON text data
Size
12 kB (11818 bytes)
Hash
a1ab1b46592a6f121a6615a341b7d72e
077bd5dadd62a59e95da948de86db1ca021737d2
133326cf11c2eb338f3d9be9962e1e000aaaf9b1d3be9f0ca5ee5ed8827ea991

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /getlog HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/enter/register
Cookie: inviteNumber=-1; username=; hasLogin=false; tier=-1; password=; userId=-1; hasGuide=false
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 22 Jun 2024 10:02:06 GMT
content-type: application/json; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8VEf7jg5t9yS1DX7pJBaz%2B8GnY6tsP5KgtQbOMQfacnYGu6i9DQMf3tKaPaJFXrrfeemC%2BMiWS2Dw9U5I%2BNya4p4CcZdUsjtYzVsgH0POX9Gg8vtPh9gbDUcpBHQ8t1ddVo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 897b669d3cd75687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

naisssions3.name/socket.io/?EIO=3&transport=websocket

188.114.97.1

101 Switching Protocols

0 B

URL GET HTTP/1.1
naisssions3.name/socket.io/?EIO=3&transport=websocket
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectnaisssions3.name
Fingerprint51:1A:11:5C:CE:E3:08:02:17:4D:F9:F5:69:FE:50:9D:6C:AF:A5:F1
ValiditySat, 22 Jun 2024 02:45:14 GMT - Fri, 20 Sep 2024 02:45:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: naisssions3.name
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://playaindf9.date
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VCmiIu63QljH2cHSN8sd8w==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Sat, 22 Jun 2024 10:02:06 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /p70ti/VDATR19oIbyAxI3ntkfY=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jB2blMlIkChCIe%2F%2FdiQqrASjEdttMaty2jbZmnqQrlOmxW9cGCSjaptwZYiBU9MuW88nTLuExQyWUkTJeGES1wLv1VJAb8NeJ1x3Q1BrXdwEo%2Bs5%2FGzC566mPicSaQPov5j5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 897b669e1b8f5688-OSL
alt-svc: h3=":443"; ma=86400

playaindf9.date/

172.67.198.103

200 OK

2.5 kB

URL User Request GET HTTP/2
playaindf9.date/
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type
HTML document, ASCII text, with very long lines (2684), with no line terminators
Size
2.5 kB (2522 bytes)
Hash
fa65feaf2b1adb20549b7a8eb8dfa9a3
152543c1636a6509b02e433a8027b535e9b3dd8a
b44db098fe32f53b147851a59fcd5d4c42679f597b602ce0981633b652681019

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 22 Jun 2024 10:02:05 GMT
content-type: text/html; charset=utf-8
last-modified: Sat, 22 Jun 2024 07:41:42 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Z%2Bj1L1G0i32OOQ3zDf1v2glDWDR6QJ4DnIm1dyopuypSG9RisgolWmgdP3kOK72V4Rd1OlqywD39VHIBNzlVme%2FKVi3bbKAIybJ1pd4PcWNuD2SHsoWAGqe%2Bsp9uhibEFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 897b66948b2c569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

playaindf9.date/css/chunk-vendors.c57533e1.css

172.67.198.103

200 OK

156 kB

URL GET HTTP/3
playaindf9.date/css/chunk-vendors.c57533e1.css
IP
172.67.198.103:443
ASN
#13335 CLOUDFLARENET

Requested by
https://playaindf9.date/
Certificate
IssuerGoogle Trust Services
Subjectplayaindf9.date
Fingerprint09:86:2F:3C:4A:96:D8:0E:C0:6D:5A:43:BB:83:B7:32:9C:4E:96:74
ValiditySun, 16 Jun 2024 02:36:25 GMT - Sat, 14 Sep 2024 02:36:24 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
156 kB (156544 bytes)
Hash
ebfffebc1f62c3be51082e6595a0a005
e278fbd6fd48150b3f366b50ed388983d934978c
f5ce9e73e1f7cea326eedd4f39d9b2d703ba4ccb31a6078cdc1fb16481298a32

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/chunk-vendors.c57533e1.css HTTP/1.1
Host: playaindf9.date
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://playaindf9.date/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 22 Jun 2024 10:02:05 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 22 Jun 2024 07:41:41 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2EMhP32rSC1YuFKI4n%2BS1PwlwGtJYatBnWTwsdoyQRUSH3yBrqqvtLAXwPkr55nwZFpSPGbAr%2BW5PFCppaHSTmpo%2BpmFztlG78qsJAgpjDYVkUiDWRDIntkMMY%2FfKNAwi0E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 897b66970d685687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (21)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash