Report - vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations

Report Overview

Visited public
2023-12-29 03:55:30
Tags
URL
vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view
Finishing URL
vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view
IP / ASN
104.21.79.138
#13335 CLOUDFLARENET
Title
The Vault - /Kiki Chain/WW_Kiki_animations_v2.15.zip

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2023-12-28 13:14:12	514 B	20 kB	104.16.56.101
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-28 05:09:22	3.8 kB	224 kB	151.101.65.229
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-28 09:18:28	936 B	32 kB	142.250.74.106
vault.ts4rebels.cc	unknown	2022-05-04	2022-07-14 14:50:34	2023-09-14 16:10:39	2.2 kB	9.5 kB	172.67.146.11
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-28 10:46:46	533 B	40 kB	216.58.211.3
i.ibb.co	13485	2010-07-20	2018-11-25 11:13:48	2023-12-28 21:02:04	877 B	52 kB	162.19.58.159
api.iconify.design	41285	2018-10-17	2018-12-24 03:01:40	2023-12-27 21:06:59	465 B	1.7 kB	104.26.13.204
code.iconify.design	53967	2018-10-17	2018-12-23 18:07:11	2023-12-28 05:25:02	433 B	27 kB	104.26.13.204

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-29 03:54:54	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-29 03:54:54	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	ScriptElement	20 kB	2023-10-13	2025-05-13
Pretty URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:51 Last Seen2025-05-13 13:37 Times Seen17153 Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Loading...

	vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view	ScriptElement	0 B	0001-01-01	2025-05-15
Pretty URL vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view IP 172.67.146.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-15 03:30 Times Seen4684998 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-15
Pretty URL cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-15 02:55 Times Seen206512 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	cdn.jsdelivr.net/gh/ts4rebels/vault@ed7ca58143251b4d083309129f6906c752c3577b/js/app.obf.js	ScriptElement	102 kB	2023-12-29	2024-08-20
Pretty URL cdn.jsdelivr.net/gh/ts4rebels/vault@ed7ca58143251b4d083309129f6906c752c3577b/js/app.obf.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-29 04:55 Last Seen2024-08-20 14:41 Times Seen2 Hash dc78d04901533665211f37daf4d3d3c6 36c0b415e458286e29f64edf27eb31e5e58e9ac9 00caad88de9f2604362f82b3bb5bb66a996250de38f2578961f1e78351b4f273 Loading...

	cdn.jsdelivr.net/npm/pdfjs-dist@2.12.313/build/pdf.min.js	ScriptElement	238 kB	2023-03-12	2025-04-20
Pretty URL cdn.jsdelivr.net/npm/pdfjs-dist@2.12.313/build/pdf.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:29 Last Seen2025-04-20 18:24 Times Seen30 Hash dc9fdd3e5c18ecc4ee0fdcf388d18341 7e24c09f095c4eaf8c82182e51f212ec1b118ae4 72f361167c63be1ba6c513c58bbdb7cf44e9bbaca04102d14f3f5dcc6648ffba Loading...

	cdn.jsdelivr.net/npm/marked@5.1.1/lib/marked.umd.min.js	ScriptElement	54 kB	2023-11-25	2025-04-20
Pretty URL cdn.jsdelivr.net/npm/marked@5.1.1/lib/marked.umd.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-25 07:59 Last Seen2025-04-20 18:24 Times Seen21 Hash 713f506e5a83b6abc90ad0b56e6eba90 9f669d100cd402c3a44fa70ae6e044bf829d7494 cb1610216b4eecb111801954f8fc53dca173a23094c49ef23ac502f2488bf7af Loading...

	code.iconify.design/3/3.1.1/iconify.min.js	ScriptElement	26 kB	2023-10-30	2025-03-25
Pretty URL code.iconify.design/3/3.1.1/iconify.min.js IP 104.26.13.204 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-30 04:11 Last Seen2025-03-25 03:47 Times Seen15 Hash e03e81386c237437b6e309ad988c7273 595144883cf473fbdd9e88d55109d698b2f70f64 98d393ba8bc8f81c23d5337f45bac1618c355308a57eccfd30b4af1be8e6469b Loading...

HTTP Transactions (20)

	URL	IP	Response	Size
	cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js	151.101.65.229	200 OK	25 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text, with very long lines (65299) Size 25 kB (25109 bytes) Hash 6baf57f25796c332144ed58a2a0cd9ee f7fd0f3dc84b2cf93bf81e832505a673f354e0a3 82f64f62bb03c1bc1824b0f9c9e05f70dba33e146818e63cdf5c306c8cf3dedd HTTP Headers `GET /npm/bootstrap@5.3.2/dist/js/bootstrap.bundle.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 5.3.2 x-jsd-version-type: version etag: W/"13b17-9/0PPchLLPk7+B6DJQWmc/NU4KM" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 7449858 x-served-by: cache-fra-etou8220085-FRA, cache-hel1410023-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 25109 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/bootstrap-icons@1.10.5/font/bootstrap-icons.css	151.101.65.229	200 OK	13 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap-icons@1.10.5/font/bootstrap-icons.css IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text Size 13 kB (12854 bytes) Hash 8f4b242830ec54686815617e7b5a5b1b a7838d8a20dbda0ee9e4c1cb7f1f832ce9af1c11 d8824f7067cdfea38afec7e9ffaf072125266824206d69ef1f112d72153a505e HTTP Headers `GET /npm/bootstrap-icons@1.10.5/font/bootstrap-icons.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: text/css; charset=utf-8 x-jsd-version: 1.10.5 x-jsd-version-type: version etag: W/"16e26-p4ONiiDb2g7p5MHLfx+DLOmvHBE" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 9339272 x-served-by: cache-fra-etou8220110-FRA, cache-hel1410025-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 12854 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/bootswatch@5.3.2/dist/vapor/bootstrap.min.css	151.101.65.229	200 OK	36 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/bootswatch@5.3.2/dist/vapor/bootstrap.min.css IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type Unicode text, UTF-8 text, with very long lines (65195) Size 36 kB (36538 bytes) Hash 5766c0df9ebe061ca381d5e8a067d43b 866b4e80b447b6f6ef743a566f5679590f1161a0 9e6355ba3d740cf53a154a6d2927c26c01d7a380d253e662707969ce7106470e HTTP Headers `GET /npm/bootswatch@5.3.2/dist/vapor/bootstrap.min.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: text/css; charset=utf-8 x-jsd-version: 5.3.2 x-jsd-version-type: version etag: W/"3c45b-hmtOgLRHtvbvdDpWb1Z5WQ8RYaA" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 2586507 x-served-by: cache-fra-etou8220072-FRA, cache-hel1410023-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 36538 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.min.js	151.101.65.229	200 OK	33 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/jquery@3.6.0/dist/jquery.min.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text, with very long lines (65447) Size 33 kB (32745 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /npm/jquery@3.6.0/dist/jquery.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 3.6.0 x-jsd-version-type: version etag: W/"15d9d-uC0jjU4x/fYYuuisEabIEsA90NQ" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 8133531 x-served-by: cache-fra-eddf8230088-FRA, cache-hel1410025-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 32745 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/gh/ts4rebels/vault@09c1030d3fdd4e1bfa1de2cbfb413200975011bf/css/styles.vapor.css	151.101.65.229	200 OK	329 B
URL GET HTTP/2 cdn.jsdelivr.net/gh/ts4rebels/vault@09c1030d3fdd4e1bfa1de2cbfb413200975011bf/css/styles.vapor.css IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type ASCII text Size 329 B (329 bytes) Hash 71421b01e31da6c545d44e86ed6b8285 0f1150806292148d1fe738efc27054609c225d41 baf594b4fe7fc38ac90ee991cfb9add7802346e2eb9e09bf465ee1be187d5034 HTTP Headers `GET /gh/ts4rebels/vault@09c1030d3fdd4e1bfa1de2cbfb413200975011bf/css/styles.vapor.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: text/css; charset=utf-8 x-jsd-version: 09c1030d3fdd4e1bfa1de2cbfb413200975011bf x-jsd-version-type: commit etag: W/"1e2-DxFQgGKSFI0f5zjvwnBUYJwiXUE" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 2082090 x-served-by: cache-fra-etou8220057-FRA, cache-hel1410025-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 329 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/gh/ts4rebels/vault@ed7ca58143251b4d083309129f6906c752c3577b/js/app.obf.js	151.101.65.229	200 OK	25 kB
URL GET HTTP/2 cdn.jsdelivr.net/gh/ts4rebels/vault@ed7ca58143251b4d083309129f6906c752c3577b/js/app.obf.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type Unicode text, UTF-8 text, with very long lines (65531), with no line terminators Size 25 kB (24734 bytes) Hash dc78d04901533665211f37daf4d3d3c6 36c0b415e458286e29f64edf27eb31e5e58e9ac9 00caad88de9f2604362f82b3bb5bb66a996250de38f2578961f1e78351b4f273 HTTP Headers `GET /gh/ts4rebels/vault@ed7ca58143251b4d083309129f6906c752c3577b/js/app.obf.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: ed7ca58143251b4d083309129f6906c752c3577b x-jsd-version-type: commit etag: W/"18e6e-NsC0FeRYKG4p9k7fJ+sx5eWOmsk" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 1393066 x-served-by: cache-fra-etou8220036-FRA, cache-hel1410025-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 24734 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/pdfjs-dist@2.12.313/build/pdf.min.js	151.101.65.229	200 OK	67 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/pdfjs-dist@2.12.313/build/pdf.min.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type Unicode text, UTF-8 text, with very long lines (64735) Size 67 kB (66630 bytes) Hash dc9fdd3e5c18ecc4ee0fdcf388d18341 7e24c09f095c4eaf8c82182e51f212ec1b118ae4 72f361167c63be1ba6c513c58bbdb7cf44e9bbaca04102d14f3f5dcc6648ffba HTTP Headers `GET /npm/pdfjs-dist@2.12.313/build/pdf.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 2.12.313 x-jsd-version-type: version etag: W/"3a259-fiTAnwlcTq+MghguUfIS7BsRiuQ" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 3814663 x-served-by: cache-fra-eddf8230086-FRA, cache-hel1410025-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 66630 X-Firefox-Spdy: h2

	cdn.jsdelivr.net/npm/marked@5.1.1/lib/marked.umd.min.js	151.101.65.229	200 OK	18 kB
URL GET HTTP/2 cdn.jsdelivr.net/npm/marked@5.1.1/lib/marked.umd.min.js IP 151.101.65.229:443 ASN #54113 FASTLY Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT File type Unicode text, UTF-8 text, with very long lines (53726) Size 18 kB (18483 bytes) Hash 713f506e5a83b6abc90ad0b56e6eba90 9f669d100cd402c3a44fa70ae6e044bf829d7494 cb1610216b4eecb111801954f8fc53dca173a23094c49ef23ac502f2488bf7af HTTP Headers `GET /npm/marked@5.1.1/lib/marked.umd.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 x-jsd-version: 5.1.1 x-jsd-version-type: version etag: W/"d335-n2adEAzUAsOkT6cK5uBEv4KddJQ" content-encoding: br accept-ranges: bytes date: Fri, 29 Dec 2023 03:55:04 GMT age: 3891825 x-served-by: cache-fra-eddf8230074-FRA, cache-hel1410025-HEL x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 18483 X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Lato:wght@400;700&display=swap	142.250.74.106	200 OK	26 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Lato:wght@400;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type gzip compressed data, max compression Size 26 kB (25503 bytes) Hash 7a06b41c4f6b36c47ad1149be9cd7345 40ec68fca32f54b4fb5f1f2ab028add03dccbaf2 e95abff25034e335b8d0afc08c3c76b11e4af4d4140656c5428b8176891102df HTTP Headers `GET /css2?family=Lato:wght@400;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cdn.jsdelivr.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 29 Dec 2023 03:55:05 GMT date: Fri, 29 Dec 2023 03:55:05 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	vault.ts4rebels.cc/cdn-cgi/rum?	172.67.146.11	204 No Content	0 B
URL POST HTTP/3 vault.ts4rebels.cc/cdn-cgi/rum? IP 172.67.146.11:443 ASN #13335 CLOUDFLARENET Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerLet's Encrypt Subjectts4rebels.cc Fingerprint64:7A:F0:D7:67:88:E0:19:EF:39:08:6D:39:8D:59:8C:25:7E:E7:9E ValidityTue, 28 Nov 2023 09:54:42 GMT - Mon, 26 Feb 2024 09:54:41 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: vault.ts4rebels.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1125 Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 204 No Content date: Fri, 29 Dec 2023 03:55:05 GMT access-control-allow-origin: https://vault.ts4rebels.cc access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 83cf1afe6ad0568d-OSL x-frame-options: DENY x-content-type-options: nosniff`

	fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2	216.58.211.3	200 OK	39 kB
URL GET HTTP/2 fonts.gstatic.com/s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2 IP 216.58.211.3:443 ASN #15169 GOOGLE Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 39124, version 1.0 Size 39 kB (39124 bytes) Hash 86b73ab5f530be7984b704414f2a711d 8e297794ed7b6f5ea476d14b5270df12e8f3e42a 1a48b70f97555c13f84b8f088a417f9179d99b5101250819350acaf6e91bb92f HTTP Headers GET /s/nunito/v26/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 39124 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 28 Dec 2023 16:21:21 GMT expires: Fri, 27 Dec 2024 16:21:21 GMT cache-control: public, max-age=31536000 age: 41624 last-modified: Thu, 14 Sep 2023 00:02:20 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	i.ibb.co/xYq0yrP/icon-radius10.png	162.19.58.159	200 OK	47 kB
URL GET HTTP/2 i.ibb.co/xYq0yrP/icon-radius10.png IP 162.19.58.159:443 ASN #16276 OVH SAS Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerLet's Encrypt Subjectibb.co FingerprintFC:63:8C:C6:92:83:4E:13:94:18:9A:03:C2:BB:CC:F0:23:97:AA:8C ValiditySat, 09 Dec 2023 13:40:45 GMT - Fri, 08 Mar 2024 13:40:44 GMT File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced Size 47 kB (47293 bytes) Hash b419e0c2eae742b92be22710644513b9 32fea17b3e8f06242da9eaa90d3c77edf5022372 452971bf45715bfe0450877072d1d950666823c9968502909066ba3509046255 HTTP Headers `GET /xYq0yrP/icon-radius10.png HTTP/1.1 Host: i.ibb.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 29 Dec 2023 03:55:05 GMT content-type: image/png content-length: 47293 last-modified: Mon, 19 Sep 2022 20:00:48 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	i.ibb.co/WVgNxBD/40.png	162.19.58.159	200 OK	3.8 kB
URL GET HTTP/2 i.ibb.co/WVgNxBD/40.png IP 162.19.58.159:443 ASN #16276 OVH SAS Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerLet's Encrypt Subjectibb.co FingerprintFC:63:8C:C6:92:83:4E:13:94:18:9A:03:C2:BB:CC:F0:23:97:AA:8C ValiditySat, 09 Dec 2023 13:40:45 GMT - Fri, 08 Mar 2024 13:40:44 GMT File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced Size 3.8 kB (3755 bytes) Hash 3b6c9911fca562e59772f6baf66f64e5 4f37b9cc622dbdf06e956218c2c43f0c411a523e e63d94d7a5bf16489f5945b73d88b75e67f3d018ceb5256f53c74a947ff28195 HTTP Headers `GET /WVgNxBD/40.png HTTP/1.1 Host: i.ibb.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Fri, 29 Dec 2023 03:55:05 GMT content-type: image/png content-length: 3755 last-modified: Sat, 28 May 2022 17:52:07 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	api.iconify.design/line-md.json?icons=search	104.26.13.204	200 OK	840 B
URL GET HTTP/2 api.iconify.design/line-md.json?icons=search IP 104.26.13.204:443 ASN #13335 CLOUDFLARENET Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerCloudflare, Inc. Subjecticonify.design Fingerprint79:BD:70:71:52:C8:91:3D:C6:E9:54:9C:F9:65:7D:B3:7F:62:A2:D9 ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT File type JSON data Size 840 B (840 bytes) Hash fcee1a5c1f18a9160beb90d765db9cb9 5ef5cae40aa19f13dea5371c9b0bf37d95f81263 94192fc7c9f939fa646f03aeab5b11b837ebe3c9459bdf4ec98162b09a791f55 HTTP Headers `GET /line-md.json?icons=search HTTP/1.1 Host: api.iconify.design User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://vault.ts4rebels.cc/ Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 29 Dec 2023 03:55:05 GMT content-type: application/json; charset=utf-8 access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Encoding access-control-max-age: 86400 cross-origin-resource-policy: cross-origin cache-control: public, max-age=604800, min-refresh=604800, immutable cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SvaRUyz24tvjDhxj6vZpyOeV8qgzYWkEGN3a%2FprccLXFdLbVIZcweUIpx0Z%2F91QbUnHSRZoKIxnYvtxAhzJaY%2Bj6I%2BpeJmRDeCLfVQ78gBK1RYOIjKOikq6%2FH07jCHB5ydfqEQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 83cf1afecd320b06-OSL content-encoding: br X-Firefox-Spdy: h2

	vault.ts4rebels.cc/cdn-cgi/rum?	172.67.146.11	204 No Content	0 B
URL POST HTTP/3 vault.ts4rebels.cc/cdn-cgi/rum? IP 172.67.146.11:443 ASN #13335 CLOUDFLARENET Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerLet's Encrypt Subjectts4rebels.cc Fingerprint64:7A:F0:D7:67:88:E0:19:EF:39:08:6D:39:8D:59:8C:25:7E:E7:9E ValidityTue, 28 Nov 2023 09:54:42 GMT - Mon, 26 Feb 2024 09:54:41 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: vault.ts4rebels.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 620 Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/3 204 No Content date: Fri, 29 Dec 2023 03:55:27 GMT access-control-allow-origin: https://vault.ts4rebels.cc access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 83cf1b89ef5f568d-OSL x-frame-options: DENY x-content-type-options: nosniff`

	code.iconify.design/3/3.1.1/iconify.min.js	104.26.13.204	200 OK	26 kB
URL GET HTTP/2 code.iconify.design/3/3.1.1/iconify.min.js IP 104.26.13.204:443 ASN #13335 CLOUDFLARENET Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerCloudflare, Inc. Subjecticonify.design Fingerprint79:BD:70:71:52:C8:91:3D:C6:E9:54:9C:F9:65:7D:B3:7F:62:A2:D9 ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT File type ASCII text, with very long lines (25529) Size 26 kB (25754 bytes) Hash e03e81386c237437b6e309ad988c7273 595144883cf473fbdd9e88d55109d698b2f70f64 98d393ba8bc8f81c23d5337f45bac1618c355308a57eccfd30b4af1be8e6469b HTTP Headers `GET /3/3.1.1/iconify.min.js HTTP/1.1 Host: code.iconify.design User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Fri, 29 Dec 2023 03:55:04 GMT content-type: application/javascript; charset=utf-8 x-origin-cache: HIT last-modified: Wed, 20 Dec 2023 07:24:50 GMT access-control-allow-origin: * etag: W/"658296c2-649a" expires: Tue, 26 Dec 2023 04:59:05 GMT cache-control: max-age=172800 x-proxy-cache: MISS x-github-request-id: 16F6:29F9C5:280A430:28C1D6D:658297C7 via: 1.1 varnish x-served-by: cache-bma1662-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1703058726.083556,VS0,VE123 vary: Accept-Encoding x-fastly-request-id: ac8b647de688992c948f5c7bd6b485b557bf4219 cf-cache-status: REVALIDATED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y2Ej%2B%2BR43dvhzczx5iGuwWsjnfzny8Fl%2BivvRuTR%2B9gfaCBc88S0X4QOZ9Q8eAREb9HqP6j3eUTIwPlZYdKpVOBshIj9A2TmWQh0Ta%2F7RQTzuRsDTiJA8R%2Fjzb3tL4oo90UHiNs%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 83cf1afa1cc7b4f7-OSL content-encoding: br X-Firefox-Spdy: h2

	vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view	172.67.146.11	200 OK	615 B
URL POST HTTP/3 vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view IP 172.67.146.11:443 ASN #13335 CLOUDFLARENET Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerLet's Encrypt Subjectts4rebels.cc Fingerprint64:7A:F0:D7:67:88:E0:19:EF:39:08:6D:39:8D:59:8C:25:7E:E7:9E ValidityTue, 28 Nov 2023 09:54:42 GMT - Mon, 26 Feb 2024 09:54:41 GMT File type troff or preprocessor input, ASCII text, with very long lines (655), with no line terminators Size 615 B (615 bytes) Hash 920ae50f8c8125aa7aa03903564dabf0 5ee02f442189853e4cb32f7b7de921eaef9d8608 588dc10f42485a0efbe6bacca138961cec36cc5b91d1d63a153135737d69255f HTTP Headers POST /0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view HTTP/1.1 Host: vault.ts4rebels.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Content-Type: application/json Content-Length: 56 Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Fri, 29 Dec 2023 03:55:05 GMT content-type: application/json;charset=UTF-8 access-control-allow-origin: * priority: u=4,i=?0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X9UVuL7Xx2OH478tqDMJqxAN8QwBa5hMqOrrn50EwWnnEtpYhGLiBTaYq5qpveAar9sAbao7TOkAECPWV1oEZT9mFcp4psfMZPNChwxZsVrHLeO5hx%2BMlapo%2F1OWuOyIdYNMjCo%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 83cf1afe4ac5568d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view	172.67.146.11	200 OK	7.0 kB
URL User Request GET HTTP/2 vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view IP 172.67.146.11:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectts4rebels.cc Fingerprint64:7A:F0:D7:67:88:E0:19:EF:39:08:6D:39:8D:59:8C:25:7E:E7:9E ValidityTue, 28 Nov 2023 09:54:42 GMT - Mon, 26 Feb 2024 09:54:41 GMT File type HTML document, ASCII text, with very long lines (7266), with no line terminators Size 7.0 kB (6986 bytes) Hash 7fd900dc63e4a4e7756ddd744c5c51a6 0425f30b7974ae3942d9cc74235f27cf87f368e4 a95cfbebcacf3f3095eded9ec22647b3db15fecfbd03a813597a252c0be6c3e2 HTTP Headers GET /0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view HTTP/1.1 Host: vault.ts4rebels.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 29 Dec 2023 03:55:04 GMT content-type: text/html; charset=utf-8 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kaWfTEcXCNiY8gPxhGB09FrFJQsg4gEztAj80Jb9JmkymDHV%2BX75NeBn3dbKEMe0zTHks45DqS1bRgkQR96VUPy4NzIeEdTPuCJGygTbSUuMGQ7LiQNbFyBQ5O8ybQBxFHReQig%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 83cf1af54ac556a2-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	104.16.56.101	200 OK	20 kB
URL GET HTTP/2 static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.56.101:443 ASN #13335 CLOUDFLARENET Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8 ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (19986), with no line terminators Size 20 kB (19986 bytes) Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 HTTP Headers `GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://vault.ts4rebels.cc DNT: 1 Connection: keep-alive Referer: https://vault.ts4rebels.cc/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Fri, 29 Dec 2023 03:55:04 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2023.10.0" last-modified: Tue, 10 Oct 2023 21:38:13 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 83cf1afa1956568b-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css2?family=Nunito:wght@300;400;500&display=swap	142.250.74.106	200 OK	5.3 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Nunito:wght@300;400;500&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://vault.ts4rebels.cc/0:/Kiki%20Chain/WW_Kiki_animations_v2.15.zip?a=view Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (5427), with no line terminators Size 5.3 kB (5292 bytes) Hash 339f5de036c4a3f88416a29e9850d609 dca614c5d17310c7dcd845e5812285b1ffedb831 054892a4a388253e5d2e1798a9419fe0cc3cc35c850694f9b8663b88a5f87cdf HTTP Headers `GET /css2?family=Nunito:wght@300;400;500&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://cdn.jsdelivr.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 29 Dec 2023 03:55:05 GMT date: Fri, 29 Dec 2023 03:55:05 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (20)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash