http://system-failure4732.57lp42129313.com-7is-li9vtp6.loan/
I don’t know if it’s their side or our side of the problem.
@Jnteamed#3873 @Afootpluto#3871 It doesn’t need a redirect cookie, in the vast majority of cases they accept all traffic on a single token which would be in the URL if it were being used (which it is not). They simply redirect the site when they get caught, often leave it down till they feel it is safe to use the site again, and then pop back up at a later date, or on a new subdomain. I would vouch that they are still using this site, just with other subdomains.