Report - www.wolfvapebelgie.com/

Report Overview

Visited public
2025-04-27 14:00:35
Tags
URL
www.wolfvapebelgie.com/
Finishing URL
www.wolfvapebelgie.com/
IP / ASN
196.242.72.22
#48950 Global Colocation Limited
Title
JNR vape Belgie | JNR vape shop | JNR vapes factory

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-23	1.6 kB	26 kB	142.250.74.35
www.wolfvapebelgie.com	unknown	2024-06-03	2025-04-24	2025-04-24	21 kB	4.6 MB	196.242.72.22
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-23	8.6 kB	165 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed
2025-04-27	medium	wolfvapebelgie.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	www.wolfvapebelgie.com/	DomTimer	37 B	2023-05-10	2025-05-17
Pretty URL www.wolfvapebelgie.com/ IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-10 05:59 Last Seen2025-05-17 14:19 Times Seen1548 Hash 2ae35f23e69e0ebd06359dfbe0c5ce31 956b0ffc3c2eb6d3eeb8186f1d28a53d75d70506 8aade99f8e2e9831797b6836d32508679ccc13b2f63af0ca0015137690516e73 Loading...

	www.wolfvapebelgie.com/	DomTimer	37 B	2023-05-10	2025-05-17
Pretty URL www.wolfvapebelgie.com/ IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-10 05:59 Last Seen2025-05-17 14:19 Times Seen1548 Hash 2ae35f23e69e0ebd06359dfbe0c5ce31 956b0ffc3c2eb6d3eeb8186f1d28a53d75d70506 8aade99f8e2e9831797b6836d32508679ccc13b2f63af0ca0015137690516e73 Loading...

	www.wolfvapebelgie.com/	DomTimer	37 B	2023-05-10	2025-05-17
Pretty URL www.wolfvapebelgie.com/ IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-10 05:59 Last Seen2025-05-17 14:19 Times Seen1548 Hash 2ae35f23e69e0ebd06359dfbe0c5ce31 956b0ffc3c2eb6d3eeb8186f1d28a53d75d70506 8aade99f8e2e9831797b6836d32508679ccc13b2f63af0ca0015137690516e73 Loading...

	www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_extend.js	ScriptElement	641 B	2023-07-04	2025-05-17
Pretty URL www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_extend.js IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-04 01:52 Last Seen2025-05-17 14:19 Times Seen1299 Hash 3bb18f39e30a3049535f9b3fc6fdf9af 8a392a36689b7e763f71899673e2a58855ecb673 d23dc0c134e6b6c3e504f45e55a3bd6931051c3716e13bedb0490e0ba4a94d63 Loading...

	www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-19
Pretty URL www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jquery.min.js IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-19 04:17 Times Seen207093 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_zmain.js	ScriptElement	54 kB	2024-08-04	2025-04-29
Pretty URL www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_zmain.js IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-04 20:37 Last Seen2025-04-29 12:11 Times Seen15 Hash f09cfd0eb56476d81b27b10003023116 54a99510c04295ae895099060f89965a21b2fe5b 65062c5db37479891ed39b34da31a4f3326b5148565187dc82561675ddb4264f Loading...

	www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_plugins.js	ScriptElement	273 kB	2023-03-08	2025-05-17
Pretty URL www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_plugins.js IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:00 Last Seen2025-05-17 14:19 Times Seen1906 Hash 61bced23c3ca3a6b3623097507a8e2e4 fa6e156543aee6ad5fd3f14799140842880142aa 1736d465416b468d9836583f60c9a3165138120678649560a81f6365378a2743 Loading...

	www.wolfvapebelgie.com/	DomTimer	37 B	2023-05-10	2025-05-17
Pretty URL www.wolfvapebelgie.com/ IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-10 05:59 Last Seen2025-05-17 14:19 Times Seen1548 Hash 2ae35f23e69e0ebd06359dfbe0c5ce31 956b0ffc3c2eb6d3eeb8186f1d28a53d75d70506 8aade99f8e2e9831797b6836d32508679ccc13b2f63af0ca0015137690516e73 Loading...

	www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_cookies.js	ScriptElement	745 B	2023-03-07	2025-05-17
Pretty URL www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_cookies.js IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18 Last Seen2025-05-17 14:19 Times Seen2033 Hash 65807f4bee7bcb4f6af769919ee805d3 c75e394f474f9238cb539f8b7ef9708cc083eff2 6979054ef7300efc7abcaefb0168e095f82adc208a00837ae1a95e0f72e2b598 Loading...

	www.wolfvapebelgie.com/	ScriptElement	158 B	2023-03-07	2025-05-17
Pretty URL www.wolfvapebelgie.com/ IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:18 Last Seen2025-05-17 14:19 Times Seen3338 Hash f898517faa32a1d50013fd8b9ab2aaa7 eaeadc084111ee29bc6e1c05e35cfb8a237cbf5f 828a54afa9f3f8d83b680f98ab03887c8fb7999d5eece48e4c7cb3a4842a03d9 Loading...

	www.wolfvapebelgie.com/	DomTimer	37 B	2023-05-10	2025-05-17
Pretty URL www.wolfvapebelgie.com/ IP 196.242.72.22 ASN #48950 Global Colocation Limited Introduced by domTimer Embedded in HTML false Observations First Seen2023-05-10 05:59 Last Seen2025-05-17 14:19 Times Seen1548 Hash 2ae35f23e69e0ebd06359dfbe0c5ce31 956b0ffc3c2eb6d3eeb8186f1d28a53d75d70506 8aade99f8e2e9831797b6836d32508679ccc13b2f63af0ca0015137690516e73 Loading...

HTTP Transactions (60)

URL IP Response Size

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/banner1d.jpg

196.242.72.22

200 OK

701 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/banner1d.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 3000x1688, components 3
Size
701 kB (701437 bytes)
Hash
9f6f68cc19057cbbb1452d403abf335b
72ab36a57bfa603ee0213d932ffb37a3cb24e9ca
57cf777038354ece8bdfa10939d1bff5b16c5b174b7ad47b16216763cb9929b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/images/jnrvapor5/banner1d.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 701437
last-modified: Thu, 18 Apr 2024 21:45:54 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Tue, 27 May 2025 13:17:53 GMT
etag: "66219492-ab3fd"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap

142.250.74.10

200 OK

34 kB

URL GET
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text, with very long lines (1572)
Size
34 kB (33510 bytes)
Hash
96bbf8b72a82b48af0dae5d748623ba5
298fbfe2e119d786f19a7414392bb2ee6f7dde64
1222c171f51afb03d90e701e6d1a9dbdbe31514f57c26b689f4e230ef328391f

HTTP Headers

GET /css2?family=Roboto:wght@100;300;400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_aardbei_kiwi_JNR_Vape_Shop_8DB4F206.jpg

196.242.72.22

200 OK

129 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_aardbei_kiwi_JNR_Vape_Shop_8DB4F206.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
129 kB (128957 bytes)
Hash
d612a551fb52c3bf56e970d854b385ee
e68b6da7dd009e50b377ddbecf5de7b88822c4c4
932d43668d8431f0c5df425d7e67a423e8f8caf01029023d2109b9f364fb80bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_aardbei_kiwi_JNR_Vape_Shop_8DB4F206.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 128957
last-modified: Fri, 19 Apr 2024 09:49:52 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e40-1f7bd"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Poppins:wght@200;300;400;500;600;700;800;900&display=swap

142.250.74.10

200 OK

9.6 kB

URL GET
fonts.googleapis.com/css2?family=Poppins:wght@200;300;400;500;600;700;800;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
9.6 kB (9596 bytes)
Hash
1e72eac4b3970b9a6953c7f74710c957
719272442bff91b840650353b154471cbf168480
15b829b7cce0bc6124049978cfe054df4c93f033bcdb3b1ec51933fa42c0d894

HTTP Headers

GET /css2?family=Poppins:wght@200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Merienda:wght@400;700&display=swap

142.250.74.10

200 OK

2.5 kB

URL GET
fonts.googleapis.com/css2?family=Merienda:wght@400;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
2.5 kB (2484 bytes)
Hash
4c825e58d6483b66bef1e1b402286403
f061db2936035efcf7142c36b98c28c98c601fc5
75bca623ff67e3c42e315ed00ff88191d113028df40e802d4d697a8e85535578

HTTP Headers

GET /css2?family=Merienda:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbes_kers_cranberry_JNR_Vape_Belgium_8DB4F359.jpg

196.242.72.22

200 OK

104 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbes_kers_cranberry_JNR_Vape_Belgium_8DB4F359.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
104 kB (104252 bytes)
Hash
22fa41f11a5a0311d43e509a249ac5b2
f85dff1360a6a477a098603511159f6482f1747d
2c836e3ec3e23492eed190c34a4c58a58bd8a0c460145b2a593202ed1f02b72f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbes_kers_cranberry_JNR_Vape_Belgium_8DB4F359.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 104252
last-modified: Fri, 19 Apr 2024 09:55:40 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223f9c-1973c"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-skywalkerbox/JNR_SKYWALKER_doos_bosbessen_watermeloen_JNR_Vapes_Factory_86FP4T41.jpg

196.242.72.22

200 OK

73 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-skywalkerbox/JNR_SKYWALKER_doos_bosbessen_watermeloen_JNR_Vapes_Factory_86FP4T41.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 796x796, components 3
Size
73 kB (73369 bytes)
Hash
51f4508a4d1d6651392244712f36bd6d
e2ddb6ca22183124fe44be72a1566ba566d24dfe
c153fed5b9df192b9f7cfc6d4abfdd71ef2cc20ca4564fad6c5d4575cd7aece0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-skywalkerbox/JNR_SKYWALKER_doos_bosbessen_watermeloen_JNR_Vapes_Factory_86FP4T41.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 73369
last-modified: Mon, 27 May 2024 01:13:02 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "6653de1e-11e99"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbeien_watermeloen_limonade_JNR_Vapes_Website_8DB4F357.jpg

196.242.72.22

200 OK

99 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbeien_watermeloen_limonade_JNR_Vapes_Website_8DB4F357.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
99 kB (99345 bytes)
Hash
3b334835ae12169081f967add56de514
ef7a870623265897dd8c8ecdfece95de67d4c1ff
889af715c7e7db113b36b690fd1450fa5907db44bf16473fad933bcf441aed52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbeien_watermeloen_limonade_JNR_Vapes_Website_8DB4F357.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 99345
last-modified: Fri, 19 Apr 2024 09:55:36 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223f98-18411"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_Sakura_druif_JNR_Vapes_Factory_8DB4F205.jpg

196.242.72.22

200 OK

118 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_Sakura_druif_JNR_Vapes_Factory_8DB4F205.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
118 kB (118233 bytes)
Hash
7c15c9b8ea7dbda719db4b06e22ce5fd
5bec942461472dd2523718905d02c3048bc1e057
3d8c85abcb2655430f0b510e2aa5cee084c4a787d9af508cd669d2b906aad1e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_Sakura_druif_JNR_Vapes_Factory_8DB4F205.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 118233
last-modified: Fri, 19 Apr 2024 09:49:50 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e3e-1cdd9"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/logo.png

196.242.72.22

200 OK

16 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/logo.png
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
PNG image data, 500 x 100, 8-bit/color RGBA, non-interlaced
Size
16 kB (16181 bytes)
Hash
e697de224f9f627f06b00998b3255869
ca62d6148317babc8212e26116b4a5429a1b6edf
22e93e2aebd574b740c7abe425a1e5f6c30675b2bbbf5779b0dbb4efa0fcfccb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/images/logo.png HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/png
content-length: 16181
last-modified: Mon, 03 Jun 2024 08:10:45 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Tue, 27 May 2025 13:17:53 GMT
etag: "665d7a85-3f35"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap

142.250.74.10

200 OK

16 kB

URL GET
fonts.googleapis.com/css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
16 kB (15997 bytes)
Hash
3af1708c7255e03394cdf3fa94b8f015
4874fff1f21f64da96f58067555f4f3f83b194f1
7064570659eabfdcd89738f76ad27407fd3eb57a5ae4cb688d0ab2acc5ff46e6

HTTP Headers

GET /css2?family=Nunito+Sans:ital,wght@0,200;0,300;0,400;0,600;0,800;0,900;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/stylesheet.css

196.242.72.22

200 OK

60 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/stylesheet.css
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
ASCII text, with very long lines (349)
Size
60 kB (60438 bytes)
Hash
88997e5f16d0a141f72f914aa4119d04
ea773375c96b93de7e43656739a25c93257284f2
018054680c3fe3108ec6b6ecd25ca489fd7c1cc0321c6b30a051d96a4be69927

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/css/stylesheet.css HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: text/css
last-modified: Mon, 22 Apr 2024 22:20:58 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Sun, 27 Apr 2025 14:17:53 GMT
etag: W/"6626e2ca-ec16"
content-encoding: gzip
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/banner2d.jpg

196.242.72.22

200 OK

451 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/banner2d.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 3000x1688, components 3
Size
451 kB (450747 bytes)
Hash
478595596aa8aad606a9741ea7d2a812
060ea3f3c99c79078c2ac7759fefa7d9595d974b
99926dac8fe7a522c4dd71bc440f090b8f640e0d7c9c0677da05bc02289684ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/images/jnrvapor5/banner2d.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 450747
last-modified: Thu, 18 Apr 2024 21:52:44 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Tue, 27 May 2025 13:17:53 GMT
etag: "6621962c-6e0bb"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-skywalkerbox/JNR_SKYWALKER_doos_blauw_razz_ijs_JNR_Vape_Nicotine_86FP4T40.jpg

196.242.72.22

200 OK

81 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-skywalkerbox/JNR_SKYWALKER_doos_blauw_razz_ijs_JNR_Vape_Nicotine_86FP4T40.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 796x796, components 3
Size
81 kB (80794 bytes)
Hash
c87b8aeebce58a3e7f93aec57b96631e
0db9cc837ce4fbce69136108f155bbebf9277af9
c0f3816dbfb7177c3a263a5c7489154615e5fdbad30c988c21fce9ac74c8d5f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-skywalkerbox/JNR_SKYWALKER_doos_blauw_razz_ijs_JNR_Vape_Nicotine_86FP4T40.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 80794
last-modified: Mon, 27 May 2024 01:13:00 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "6653de1c-13b9a"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap

142.250.74.10

200 OK

2.7 kB

URL GET
fonts.googleapis.com/css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
2.7 kB (2722 bytes)
Hash
0c5e7ddc8df84a00e40d1be23c643a9f
9b2495b8bc9d13163c238ae083ed8003e70a0d45
797daada520a93ae0813e8c96b8a10baeebf180e3c47dffb3e874e22c81e8bcd

HTTP Headers

GET /css2?family=Libre+Baskerville:ital,wght@0,400;0,700;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wolfvapebelgie.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 14:55:26 GMT
expires: Fri, 24 Apr 2026 14:55:26 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Apr 2025 16:07:17 GMT
content-type: font/woff2
age: 255888
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/style_plugins.css

196.242.72.22

200 OK

0 B

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/style_plugins.css
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/css/style_plugins.css HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: text/css
last-modified: Mon, 22 Apr 2024 22:20:58 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Sun, 27 Apr 2025 14:17:53 GMT
etag: W/"6626e2ca-35e79"
content-encoding: gzip
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_aardbei_kiwi_JNR_Vape_Belgie_8DB4F361.jpg

196.242.72.22

200 OK

98 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_aardbei_kiwi_JNR_Vape_Belgie_8DB4F361.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
98 kB (98502 bytes)
Hash
876cb7ffe336692cc63a57522bea650f
ecd82e2ae84eb50a6304d3437343736673df328d
a50d4c37c3ce536e37850a374bcd5df1664d006354d5112210d1bc42bcbbb818

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_aardbei_kiwi_JNR_Vape_Belgie_8DB4F361.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 98502
last-modified: Fri, 19 Apr 2024 09:55:44 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223fa0-180c6"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/subject1d.jpg

196.242.72.22

200 OK

145 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/subject1d.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 782x1098, components 3
Size
145 kB (144638 bytes)
Hash
5d7f46b9af6e3da5a9bee4d37d3479c7
4bf8f20f838165ef845c2903d5d43ea367486224
7ade42ee491bcedae0cbdcab7a4b49e0bdfa13d712650a2fb33dc0f362c9db05

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/images/jnrvapor5/subject1d.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 144638
last-modified: Mon, 22 Apr 2024 02:20:42 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Tue, 27 May 2025 13:17:53 GMT
etag: "6625c97a-234fe"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_Aardbei_watermeloenijs_JNR_Vapes_Website_8DB4F207.jpg

196.242.72.22

200 OK

122 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_Aardbei_watermeloenijs_JNR_Vapes_Website_8DB4F207.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
122 kB (122023 bytes)
Hash
b8320b49fc3bc7685abc2db6dbc4a562
cdd5227743f438b07f579ca0d631a86d939ee27c
cded61642327d958b1cc73478d1061511e9ac4038f39bd1494d1968911ec68f8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_Aardbei_watermeloenijs_JNR_Vapes_Website_8DB4F207.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 122023
last-modified: Fri, 19 Apr 2024 09:49:54 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e42-1dca7"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wolfvapebelgie.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 14:47:23 GMT
expires: Fri, 24 Apr 2026 14:47:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Apr 2025 16:05:59 GMT
content-type: font/woff2
age: 256371
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbeienmojito_JNR_Vapes_Factory_8DB4F355.jpg

196.242.72.22

200 OK

108 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbeienmojito_JNR_Vapes_Factory_8DB4F355.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
108 kB (107896 bytes)
Hash
a91742af8731329885010130fd7be50a
e84164cce7742a50bc552af02db4bcdea5026493
9ecac7ff76f4333e21dfdf2954efbc274434b817ff20db4ac50f60a2af99d6c6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbeienmojito_JNR_Vapes_Factory_8DB4F355.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 107896
last-modified: Fri, 19 Apr 2024 09:55:32 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223f94-1a578"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_cookies.js

196.242.72.22

200 OK

745 B

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_cookies.js
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (745), with no line terminators
Size
745 B (745 bytes)
Hash
65807f4bee7bcb4f6af769919ee805d3
c75e394f474f9238cb539f8b7ef9708cc083eff2
6979054ef7300efc7abcaefb0168e095f82adc208a00837ae1a95e0f72e2b598

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/jscript/jscript_cookies.js HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: application/javascript
content-length: 430
x-accel-version: 0.01
last-modified: Mon, 22 Apr 2024 22:23:22 GMT
accept-ranges: bytes
cache-control: max-age=300
expires: Sun, 27 Apr 2025 13:22:53 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_plugins.js

196.242.72.22

200 OK

273 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_plugins.js
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (64808)
Size
273 kB (273266 bytes)
Hash
61bced23c3ca3a6b3623097507a8e2e4
fa6e156543aee6ad5fd3f14799140842880142aa
1736d465416b468d9836583f60c9a3165138120678649560a81f6365378a2743

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/jscript/jscript_plugins.js HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: application/javascript
last-modified: Mon, 22 Apr 2024 22:23:26 GMT
vary: Accept-Encoding
cache-control: max-age=300
expires: Sun, 27 Apr 2025 13:22:53 GMT
etag: W/"6626e35e-42b72"
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700;800&display=swap

142.250.74.10

200 OK

6.6 kB

URL GET
fonts.googleapis.com/css2?family=Jost:wght@300;400;500;600;700;800&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
6.6 kB (6600 bytes)
Hash
18079f647e6965afb5f38f4cbb86497b
4a70688a9a0054e9c369ab7e81efc882d6d54407
debe95cb390f5df754de4cff8efab7b21a482f9bb44a616c57023385688d93a2

HTTP Headers

GET /css2?family=Jost:wght@300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/favicon.ico

196.242.72.22

200 OK

4.3 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/favicon.ico
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Size
4.3 kB (4286 bytes)
Hash
eadcf92d46553057dbc021da77049657
ea4b1865c46255610f426c2b8f23331259136268
6af0119970309eb2a35c67f7eecd3f7d9de4cb7d88164a9d6007df3465238c08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/images/favicon.ico HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:54 GMT
content-type: image/x-icon
content-length: 4286
last-modified: Thu, 18 Apr 2024 19:58:58 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Mon, 28 Apr 2025 13:17:54 GMT
etag: "66217b82-10be"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbessen_op_ijs_JNR_Vape_Flavours_8DB4F358.jpg

196.242.72.22

200 OK

102 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbessen_op_ijs_JNR_Vape_Flavours_8DB4F358.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
102 kB (101560 bytes)
Hash
bf63acdef554f255b84f75c5fc1f0812
482320ca933bb6210370f828a6f1c6cb28c704b8
f8b96d51225eb6a667191a280f4a0162b0eee6aa074ebcb1127575f9dc56c80b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbessen_op_ijs_JNR_Vape_Flavours_8DB4F358.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 101560
last-modified: Fri, 19 Apr 2024 09:55:38 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223f9a-18cb8"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_bosbessen_granaatappelijs_zonder_fruit_JNR_Vapes_Factory_8DB4F215.jpg

196.242.72.22

200 OK

126 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_bosbessen_granaatappelijs_zonder_fruit_JNR_Vapes_Factory_8DB4F215.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
126 kB (125732 bytes)
Hash
7306e0fba0c747e9a22eeb532859a384
3dca74fae7ee8eb0095e41370093ac9ddc1963a3
de779f866b34265c09bec2886b1c61ff4c8957b12868788eac121d43aae4214f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_bosbessen_granaatappelijs_zonder_fruit_JNR_Vapes_Factory_8DB4F215.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 125732
last-modified: Fri, 19 Apr 2024 09:50:14 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e56-1eb24"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_roze_citroen_JNR_Vape_Nicotine_8DB4F204.jpg

196.242.72.22

200 OK

104 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_roze_citroen_JNR_Vape_Nicotine_8DB4F204.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
104 kB (103890 bytes)
Hash
ec1e454d2d18574b1358aaa9753fd9b1
16426820b517c1e0685b19f4627fab0741367111
77a1048bdfef933edf232eed43fa0b1cdad683c1f513ddd368a4b0a4062692d3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_roze_citroen_JNR_Vape_Nicotine_8DB4F204.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 103890
last-modified: Fri, 19 Apr 2024 09:49:48 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e3c-195d2"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap

142.250.74.10

200 OK

9.8 kB

URL GET
fonts.googleapis.com/css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
9.8 kB (9834 bytes)
Hash
817024d62ad33a9315d9001c96414698
f0e417264d475590b247ae4e6cc5f90b4317852d
013c00c26d4827674736235cb7774ef90cdca8dd67c9190117a14618df26408a

HTTP Headers

GET /css2?family=Playfair+Display:wght@400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/fonts/annimex-icons.ttf?teavmy

196.242.72.22

200 OK

141 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/fonts/annimex-icons.ttf?teavmy
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, adorn-icons
Size
141 kB (140608 bytes)
Hash
7d3c0284348a1f07b4cd6ff41354551b
6ff4eb286a7b3c980866382a40dd9279c99cb9cd
924025d175bc0292a137b2b46a4ee48e77c8618c3ea19e44214b6abf30f16005

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/fonts/annimex-icons.ttf?teavmy HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/style_plugins.css
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:54 GMT
content-type: application/x-font-ttf
content-length: 140608
last-modified: Wed, 08 Jun 2022 08:11:08 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Sun, 27 Apr 2025 13:22:54 GMT
etag: "62a0599c-22540"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/style_zo.css

196.242.72.22

200 OK

153 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/style_zo.css
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
assembler source, ASCII text, with very long lines (532)
Size
153 kB (152918 bytes)
Hash
5b24bf3d55b960e8290d323f3766b72b
0e8ad0c54b9270cb1e2bdb81ee4c220fd391fb61
28ae8b47d66b02fa47d1f7f303fffbaa7a70f4d833c741d459a44159daee6c8f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/css/style_zo.css HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: text/css
last-modified: Mon, 22 Apr 2024 22:20:58 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Sun, 27 Apr 2025 14:17:53 GMT
etag: W/"6626e2ca-25556"
content-encoding: gzip
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_blauw_razz_ijs_zonder_fruit_JNR_Vape_Nicotine_8DB4F214.jpg

196.242.72.22

200 OK

114 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_blauw_razz_ijs_zonder_fruit_JNR_Vape_Nicotine_8DB4F214.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
114 kB (114439 bytes)
Hash
cbccd7a17df9892c8bd28121010dc8fa
d2b6c5f0a3dd34e782325c45c3736278d923ef27
bb1dd019a10fa87dee17bc37b88e94cd445237fa30faa10b64e910ae58e75480

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_blauw_razz_ijs_zonder_fruit_JNR_Vape_Nicotine_8DB4F214.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 114439
last-modified: Fri, 19 Apr 2024 09:50:12 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e54-1bf07"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/payment.png

196.242.72.22

200 OK

6.2 kB

URL GET
www.wolfvapebelgie.com/images/payment.png
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
PNG image data, 248 x 26, 8-bit/color RGBA, non-interlaced
Size
6.2 kB (6248 bytes)
Hash
1fb5f66cada185d72ccefaeb9e9a2963
584108601272e3ed07abe10b4c3ca2f6b200d552
ef645db0e0a9a267fda954e584782b888929b2827548ecaef07600656022535b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/payment.png HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/png
content-length: 6248
last-modified: Thu, 09 Jun 2022 11:19:36 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "62a1d748-1868"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Archivo+Narrow:wght@400;500;600;700&display=swap

142.250.74.10

200 OK

5.2 kB

URL GET
fonts.googleapis.com/css2?family=Archivo+Narrow:wght@400;500;600;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
5.2 kB (5196 bytes)
Hash
3bf584d20200220fcc39b5e65d8570f8
6c7ad21e6a518a6ba13bf25e44b92a68508034b7
261f1e6a1c70c745d80cbc4336f3cc1b5736b4f18929dd2cc81f5ebfd090bec5

HTTP Headers

GET /css2?family=Archivo+Narrow:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_watermeloen_ijs_JNR_Vape_Brussel_8DB4F210.jpg

196.242.72.22

200 OK

114 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_watermeloen_ijs_JNR_Vape_Brussel_8DB4F210.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
114 kB (114432 bytes)
Hash
98d745d695658245300aaffff545c933
9779fcc60b88930628d3e4e6a03022c8f02691e4
b02e2d20111aa7c202331fa03e02011a4cec6bb6ae888f38eb37c269c7a8f135

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_watermeloen_ijs_JNR_Vape_Brussel_8DB4F210.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 114432
last-modified: Fri, 19 Apr 2024 09:50:01 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e49-1bf00"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_pina_colada_JNR_Vape_Price_8DB4F212.jpg

196.242.72.22

200 OK

105 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_pina_colada_JNR_Vape_Price_8DB4F212.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
105 kB (104797 bytes)
Hash
466f36a70f0591ddc3db29de275b6a4c
678a6620f10064ca179697fe6e6d9ae644b0ad88
10d4342ef7b3679f37153c03986cf9d413d6976c2b8ddbee9cc7497eca52382d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_pina_colada_JNR_Vape_Price_8DB4F212.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 104797
last-modified: Fri, 19 Apr 2024 09:50:06 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e4e-1995d"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Quicksand:wght@400;500;600;700&display=swap

142.250.74.10

200 OK

5.0 kB

URL GET
fonts.googleapis.com/css2?family=Quicksand:wght@400;500;600;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
5.0 kB (5004 bytes)
Hash
b3ab30fb77f7f9eedf2ca6f781b9f2f1
b01fb7b0e15186f2000baba26b9fd4c583354f13
3dacc7f22398ee6c30d6b183f92e690af8883619a8911b820b83bebc907592a0

HTTP Headers

GET /css2?family=Quicksand:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap

142.250.74.10

200 OK

9.7 kB

URL GET
fonts.googleapis.com/css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
9.7 kB (9656 bytes)
Hash
8209cff806aae56af4384e75c88bf521
9612d3683c6684462b6182398b41ae239cf00549
ea8def94ac615a03ed43ed4d8bb30dfde63f50e4c7d0b6ff58d0640fcd418a40

HTTP Headers

GET /css2?family=Arima+Madurai:wght@300;400;500;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/

196.242.72.22

200 OK

67 kB

URL User Request GET
www.wolfvapebelgie.com/
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2450), with CRLF, LF line terminators
Size
67 kB (66679 bytes)
Hash
05148829ecb9919bf81c3acb465d9524
3c56a99dd16b9d92f24bd5e793742a8b23ef4159
a44ac1ee27c3af544b739f8e16283cd9d443d010ea3b3277beb4b5cd1186f776

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:52 GMT
content-type: text/html; charset=utf-8
content-length: 7754
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
set-cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f; path=/; domain=.www.wolfvapebelgie.com; secure; HttpOnly; SameSite=lax
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/style_zp.css

196.242.72.22

200 OK

24 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/css/style_zp.css
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
ASCII text
Size
24 kB (24140 bytes)
Hash
9735cdc024e4430ac4e5dd6215a3c32e
4a89a6ff4d4cfb8cc4a2f4f4644a67732586799b
98037abb23673760865bd6e36ff441db1f75f8e8c1629c97d08a28e5a5b0f5a7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/css/style_zp.css HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: text/css
last-modified: Mon, 03 Jun 2024 08:12:23 GMT
vary: Accept-Encoding
cache-control: max-age=3600
expires: Sun, 27 Apr 2025 14:17:53 GMT
etag: W/"665d7ae7-5e4c"
content-encoding: gzip
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbes_zure_framboos_JNR_Vape_Brussel_8DB4F360.jpg

196.242.72.22

200 OK

108 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbes_zure_framboos_JNR_Vape_Brussel_8DB4F360.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
108 kB (107738 bytes)
Hash
f6dbc2ac74a26d7c4f989e371efa624e
3813f0ea06ea426dc0acc34725ae2fd70e816176
ed374f65f749c258245365fa1c341b6980ccd60c732ae1eb5abd741e890f6264

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_bosbes_zure_framboos_JNR_Vape_Brussel_8DB4F360.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 107738
last-modified: Fri, 19 Apr 2024 09:55:42 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223f9e-1a4da"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_druif_zwarte_bes_JNR_Vape_Belgie_8DB4F211.jpg

196.242.72.22

200 OK

116 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_druif_zwarte_bes_JNR_Vape_Belgie_8DB4F211.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
116 kB (115967 bytes)
Hash
eb9eb3d4fb311dc84e0a0468a3124a0c
cad2fe61ea5e5da6bef54a68f2fa167d8af6c99f
6ab897bdc5fbe34aaf8fa10d148b3c610ee1a20bf1c7ef6f9fe06a141b80123a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_druif_zwarte_bes_JNR_Vape_Belgie_8DB4F211.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 115967
last-modified: Fri, 19 Apr 2024 09:50:04 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e4c-1c4ff"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Crimson+Pro:wght@200;300;400;500;600;700;800;900&display=swap

142.250.74.10

200 OK

10 kB

URL GET
fonts.googleapis.com/css2?family=Crimson+Pro:wght@200;300;400;500;600;700;800;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
10 kB (10152 bytes)
Hash
d0eee640ebed959d87434b2c23cfa085
60a198ed32c124612380a1c680b320ecc79cdafa
3bf18f8ac664e7de75fc7016a3aadd3f1285c2a20d9bb9b1938691e61fc880af

HTTP Headers

GET /css2?family=Crimson+Pro:wght@200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/subject2d.jpg

196.242.72.22

200 OK

98 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/images/jnrvapor5/subject2d.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 782x1098, components 3
Size
98 kB (98386 bytes)
Hash
76bcff205ba8efe309fb62a9abd45f8a
d53f5ec3fc46401bfb6cc40d145db70f02d7ed5f
1041d0bcd7e898fd1d51c5e3d16f4e1777147812b44f9ad01d8a3c19e70259e7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/images/jnrvapor5/subject2d.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 98386
last-modified: Mon, 22 Apr 2024 02:20:54 GMT
cache-control: max-age=864000, public, must-revalidate
expires: Tue, 27 May 2025 13:17:53 GMT
etag: "6625c986-18052"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_bes_barstte_zonder_fruit_JNR_Vape_Review_8DB4F213.jpg

196.242.72.22

200 OK

128 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_bes_barstte_zonder_fruit_JNR_Vape_Review_8DB4F213.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
128 kB (127913 bytes)
Hash
5aca39b4a25d9f4dfc33d6bee7c173de
978748215472e621562e7dd777e504277d9f4d80
8fc2df51a8d143266e074099def5fcb5ad9754fee07f4187c720e1221d833d6f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_bes_barstte_zonder_fruit_JNR_Vape_Review_8DB4F213.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 127913
last-modified: Fri, 19 Apr 2024 09:50:09 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e51-1f3a9"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_extend.js

196.242.72.22

200 OK

641 B

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_extend.js
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
641 B (641 bytes)
Hash
3bb18f39e30a3049535f9b3fc6fdf9af
8a392a36689b7e763f71899673e2a58855ecb673
d23dc0c134e6b6c3e504f45e55a3bd6931051c3716e13bedb0490e0ba4a94d63

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/jscript/jscript_extend.js HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: application/javascript
content-length: 311
x-accel-version: 0.01
last-modified: Mon, 22 Apr 2024 22:23:22 GMT
accept-ranges: bytes
cache-control: max-age=300
expires: Sun, 27 Apr 2025 13:22:53 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Glegoo:wght@400;700&display=swap

142.250.74.10

200 OK

2.4 kB

URL GET
fonts.googleapis.com/css2?family=Glegoo:wght@400;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
2.4 kB (2370 bytes)
Hash
af2b05854a2019533ae310b7b41214e7
b986b8fad9d1a3b562e9f970c0579f417012bea9
f21082e9c02b27821682de119c2881d95363984b8392064bf2b699fda7046cce

HTTP Headers

GET /css2?family=Glegoo:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jquery.min.js

196.242.72.22

200 OK

90 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jquery.min.js
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
90 kB (89501 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/jscript/jquery.min.js HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: application/javascript
last-modified: Mon, 22 Apr 2024 22:23:22 GMT
vary: Accept-Encoding
cache-control: max-age=300
expires: Sun, 27 Apr 2025 13:22:53 GMT
etag: W/"6626e35a-15d9d"
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap

142.250.74.10

200 OK

11 kB

URL GET
fonts.googleapis.com/css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
11 kB (11322 bytes)
Hash
d4991162fd9e2ace71f57843dc6c94a9
c5c6f806559be144f89dea4950da128c4994a4ae
47865288ef783834a6c47bd391b4d3944da65112f2705b6cd9487dbd3531a0cb

HTTP Headers

GET /css2?family=Montserrat:wght@300;400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Alata&display=swap

142.250.74.10

200 OK

1.2 kB

URL GET
fonts.googleapis.com/css2?family=Alata&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
1.2 kB (1212 bytes)
Hash
216417cf1b78673b5ec7caa4ff05bef9
e566f62b35b347e0f59b779a5c58d914babdc70c
c4c3672e4431a4db73b14f57fcbf04eeaac3599752380f766ba55da9c2056b79

HTTP Headers

GET /css2?family=Alata&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.10

200 OK

565 B

URL GET
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
565 B (565 bytes)
Hash
736c83e15fc300de505f6ce9762a9396
31c0f11ada78e92970ff42d990116d77c169c6d7
c31266310101d0b1607937a7baf07f1601b7637bd2373176696488a07d7b4302

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_zmain.js

196.242.72.22

200 OK

54 kB

URL GET
www.wolfvapebelgie.com/includes/templates/jnrvapebelgie/jscript/jscript_zmain.js
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (528)
Size
54 kB (54450 bytes)
Hash
f09cfd0eb56476d81b27b10003023116
54a99510c04295ae895099060f89965a21b2fe5b
65062c5db37479891ed39b34da31a4f3326b5148565187dc82561675ddb4264f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /includes/templates/jnrvapebelgie/jscript/jscript_zmain.js HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: application/javascript
last-modified: Mon, 22 Apr 2024 22:23:26 GMT
vary: Accept-Encoding
cache-control: max-age=300
expires: Sun, 27 Apr 2025 13:22:53 GMT
etag: W/"6626e35e-d4b2"
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Staatliches&display=swap

142.250.74.10

200 OK

865 B

URL GET
fonts.googleapis.com/css2?family=Staatliches&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
865 B (865 bytes)
Hash
c505c7b4546220eb1b8dcc888b511c37
0d72b695822407c71ba597776534f813d551d694
a55a8d2c10fc4662227d5a852ca8153c10c0540e47f602927705e1bba839fb02

HTTP Headers

GET /css2?family=Staatliches&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

142.250.74.35

200 OK

7.7 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.wolfvapebelgie.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Apr 2025 20:17:34 GMT
expires: Thu, 23 Apr 2026 20:17:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Apr 2025 16:07:32 GMT
content-type: font/woff2
age: 322960
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbei_framboos_kersenijs_JNR_Vape_Shop_8DB4F356.jpg

196.242.72.22

200 OK

109 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbei_framboos_kersenijs_JNR_Vape_Shop_8DB4F356.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
109 kB (108684 bytes)
Hash
ec0e21e4ac38f9d3f1b79b2ab88c63e4
8855c24ffb4e08509ad5455e4465b29b1f45929d
eefb8b876873e4677705afc785c1fd6a884067825a878692193e8dae3fffe58b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-wolfniplo/jnr_wolfniplo_Aardbei_framboos_kersenijs_JNR_Vape_Shop_8DB4F356.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 108684
last-modified: Fri, 19 Apr 2024 09:55:34 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223f96-1a88c"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap

142.250.74.10

200 OK

18 kB

URL GET
fonts.googleapis.com/css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
18 kB (17559 bytes)
Hash
f64ae941541249eec96d06f8e3c5ad7b
3653c05af239d54680485e0b10402601c20cfa08
174ff797df7ec6bf883050bff55d289e531668e34797993ecc6e6dc964e75b7e

HTTP Headers

GET /css2?family=Libre+Franklin:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_mandarijn_limoen_JNR_Vape_Flavours_8DB4F208.jpg

196.242.72.22

200 OK

107 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_mandarijn_limoen_JNR_Vape_Flavours_8DB4F208.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
107 kB (106565 bytes)
Hash
780a8cd199ef7a3cd0439ee7a0e82fb2
ffbafe70a93123a2e05dc392f2b1c5746a0e2681
e90ae09f29d0d344f81cea911cee16f410cb516117ba4c4e1b4fa621a647fe49

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_mandarijn_limoen_JNR_Vape_Flavours_8DB4F208.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 106565
last-modified: Fri, 19 Apr 2024 09:49:57 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e45-1a045"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_watermeloen_mango_perzik_JNR_Vape_Belgium_8DB4F209.jpg

196.242.72.22

200 OK

125 kB

URL GET
www.wolfvapebelgie.com/images/wegwerp-damp/jnr-valk/jnr_valk_watermeloen_mango_perzik_JNR_Vape_Belgium_8DB4F209.jpg
IP
196.242.72.22:443
ASN
#48950 Global Colocation Limited

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerZeroSSL
Subjectwolfvapebelgie.com
Fingerprint2A:83:B8:03:C8:A9:8D:15:E5:03:80:EB:38:58:03:8E:AD:BC:03:62
ValidityThu, 06 Mar 2025 00:00:00 GMT - Wed, 04 Jun 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 882x882, components 3
Size
125 kB (124755 bytes)
Hash
fc9f083c9dc841a7ca59dee72b20f4f0
9e5951f283825eda0a204821db296816a9076994
a7b4ab5cbbce874aa5ebd876f8333e5e20464638bb8f0aa32f9c5d8bc4c282d7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/wegwerp-damp/jnr-valk/jnr_valk_watermeloen_mango_perzik_JNR_Vape_Belgium_8DB4F209.jpg HTTP/1.1
Host: www.wolfvapebelgie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Cookie: zenid=oc96o0ovlv1h9o5mdbsjun6h4f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 27 Apr 2025 13:17:53 GMT
content-type: image/jpeg
content-length: 124755
last-modified: Fri, 19 Apr 2024 09:49:59 GMT
cache-control: max-age=864000, public, must-revalidate
etag: "66223e47-1e753"
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto+Condensed:wght@300;400;700&display=swap

142.250.74.10

200 OK

7.8 kB

URL GET
fonts.googleapis.com/css2?family=Roboto+Condensed:wght@300;400;700&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.wolfvapebelgie.com/
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text
Size
7.8 kB (7794 bytes)
Hash
7031b7c9bfd2128cc10918c9fcf8682b
e431d72065928623e0da948c3eb4808f8d9e37dd
58f34dfefee98b8d0cd4b4d8d66f9ecbca5911bc1fce4b8cda3e2918feae6f72

HTTP Headers

GET /css2?family=Roboto+Condensed:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.wolfvapebelgie.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Apr 2025 14:00:13 GMT
date: Sun, 27 Apr 2025 14:00:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML