Report - www.skupinainovace.com/redirect.html?target=https://rgts.linkpc.net/lfdz81/YW5keWhvQGtpbmdzZmxhaXIuY29tLmhr

Report Overview

Submitted URL
www.skupinainovace.com/redirect.html?target=https://rgts.linkpc.net/lfdz81/YW5keWhvQGtpbmdzZmxhaXIuY29tLmhr
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 01:13:05
Access
public
Website Title
Digital Secured Platform | Qualia
Final URL
pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk
Tags
suspicious
urlquery detections
Suspicious - Anti-debugging code

Detections

urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.skupinainovace.com	unknown	2020-02-15	2023-06-05	2023-11-14	561 B	1.5 kB	188.114.97.1
pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev	unknown	2022-08-23	2024-04-08	2024-04-08	1.0 kB	809 kB	104.18.3.35
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-25	458 B	31 kB	142.250.74.170
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-25	491 B	272 kB	151.101.130.137
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-24	525 B	7.2 kB	104.17.25.14
logo.clearbit.com	27344	2003-07-04	2015-06-30	2024-04-25	460 B	9.2 kB	54.230.111.26
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-04-25	1.1 kB	196 kB	104.18.11.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js	87 kB	2023-03-07	2024-05-05
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-05 19:51:39 Times Seen64822 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	19 kB	2023-03-07	2024-05-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-05-05 18:01:47 Times Seen113474 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk	1.8 kB	2024-04-04	2024-04-26
Pretty URL pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-04 21:11:42 Last Seen2024-04-26 03:13:05 Times Seen12 Hash ef0d212d795126b6d7a431a4e001c566 90c89d2ce811f2f1488dd46bf2ce01c4cf9d9d44 a13bcdd6d878b16a1552532667dcfa438a4d878bfe737c44a47dfd5ed7c973f6 Loading...

	code.jquery.com/jquery-3.3.1.js	272 kB	2023-03-07	2024-05-05
Pretty URL code.jquery.com/jquery-3.3.1.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-05 19:35:49 Times Seen59794 Hash 6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad Loading...

	pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk	2.0 kB	2024-04-02	2024-04-30
Pretty URL pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-02 13:43:50 Last Seen2024-04-30 15:05:40 Times Seen989 Hash fa3ebdde53fb7797df1739ef4450fc5f 49162599c22b192958412c9725c4ed12fe976abf 192532c33b931ec44f14dd52527e74e11262b62ac01f6a85482613b5c52e3500 Loading...

	maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js	49 kB	2023-03-07	2024-05-05
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-05-05 19:35:49 Times Seen138698 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

HTTP Transactions (9)

	URL	IP	Response	Size
	www.skupinainovace.com/redirect.html?target=https://rgts.linkpc.net/lfdz81/YW5keWhvQGtpbmdzZmxhaXIuY29tLmhr	188.114.97.1		878 B
URL www.skupinainovace.com/redirect.html?target=https://rgts.linkpc.net/lfdz81/YW5keWhvQGtpbmdzZmxhaXIuY29tLmhr IP 188.114.97.1:0 ASN #13335 CLOUDFLARENET File type HTML document, ASCII text Size 878 B (878 bytes) Hash 6615f3fda788770021a489e6533f2a08 b2842cb2e843b9e43fb159ac3ee20b407cfb36d0 229c4cd6aa83ee46a754ef6b036459361fc8bd643975fbb157d55ab2774d61d6 HTTP Headers GET /redirect.html?target=https://rgts.linkpc.net/lfdz81/YW5keWhvQGtpbmdzZmxhaXIuY29tLmhr HTTP/1.1 Host: www.skupinainovace.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 26 Apr 2024 01:12:39 GMT content-type: text/html last-modified: Mon, 01 Aug 2022 16:07:35 GMT vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FWksl6adU2fErjPj45CdHZG6%2BOkhdifdJrJ006tkxQSY98pcZTdHPq1Kj8xaf0Pk6meZDJxpTUqW4KXdBcF5atVzQ5z9kBBAe%2BGkfwqoTLFrjoREqEHMJNed3kQ1szFfBjA0eJRwry5l"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 87a2b4aaf9b0b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html	104.18.3.35		404 kB
URL pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html IP 104.18.3.35:0 ASN #13335 CLOUDFLARENET File type HTML document, ASCII text, with very long lines (51334) Size 404 kB (404176 bytes) Hash 4763b9a100ac77d117ab19ac4d202256 2e8419527256042a628288ac606fa9b129ca308d a88feab7b1387e408e57d140968f5fb04fc7e8d15a49c289bce67e6f878ef926 HTTP Headers `GET /index.html HTTP/1.1 Host: pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 26 Apr 2024 01:12:41 GMT Content-Type: text/html Content-Length: 404176 Connection: keep-alive Accept-Ranges: bytes ETag: "4763b9a100ac77d117ab19ac4d202256" Last-Modified: Thu, 21 Mar 2024 10:39:07 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 87a2b4b09d7a5687-OSL`

	ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js	142.250.74.170	200 OK	30 kB
URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP 142.250.74.170:443 ASN #15169 GOOGLE Requested by https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT File type JavaScript source, ASCII text, with very long lines (32058) Size 30 kB (30306 bytes) Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de HTTP Headers `GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 30306 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 25 Apr 2024 17:46:15 GMT expires: Fri, 25 Apr 2025 17:46:15 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 26786 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	code.jquery.com/jquery-3.3.1.js	151.101.130.137	200 OK	272 kB
URL GET HTTP/2 code.jquery.com/jquery-3.3.1.js IP 151.101.130.137:443 ASN #54113 FASTLY Requested by https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk Certificate IssuerSectigo Limited Subject.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text Size 272 kB (271751 bytes) Hash 6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad HTTP Headers `GET /jquery-3.3.1.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: nginx content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT etag: "28feccc0-42587" cache-control: public, max-age=31536000, stale-while-revalidate=604800 access-control-allow-origin: * via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Fri, 26 Apr 2024 01:12:41 GMT age: 4881936 x-served-by: cache-lga21980-LGA, cache-hel1410030-HEL x-cache: HIT, HIT x-cache-hits: 398, 2435 x-timer: S1714093962.696275,VS0,VE0 vary: Accept-Encoding content-length: 271751 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	104.17.25.14	200 OK	6.2 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.25.14:443 ASN #13335 CLOUDFLARENET Requested by https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (19015) Size 6.2 kB (6157 bytes) Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 HTTP Headers GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 26 Apr 2024 01:12:41 GMT content-type: application/javascript; charset=utf-8 content-length: 6157 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03fa9-4af4" last-modified: Mon, 04 May 2020 16:15:37 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 101514 expires: Wed, 16 Apr 2025 01:12:41 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1m%2BNd76%2BKDHK2P5UKw7AXLU9jMveD9E8ICsSw0b04w1UugWTwJ2ELW28pMYkoOCeT%2BlVouRDSYkXMzkm3XorMEq7b0ZjBYDVP8BRwJa%2B%2FTuaBlU2a8srmaqYTvYudsi9MLh881it"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 87a2b4bd4919b511-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	logo.clearbit.com/kingsflair.com.hk	54.230.111.26	200 OK	8.6 kB
URL GET HTTP/2 logo.clearbit.com/kingsflair.com.hk IP 54.230.111.26:443 ASN #16509 AMAZON-02 Requested by https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk Certificate IssuerAmazon Subjectclearbit.com FingerprintCE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72 ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 18 Feb 2025 23:59:59 GMT File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced Size 8.6 kB (8644 bytes) Hash 382c6ac7be9023216203bc76609f9613 e46fbf23f54c46fe3579b20b917016bee3c93d3b 4881a45bb4a492ba17abae3411145f7f11fb6dd684062c71b930619200c5f62e HTTP Headers `GET /kingsflair.com.hk HTTP/1.1 Host: logo.clearbit.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: image/png access-control-allow-origin: * cache-control: public, max-age=2592000 date: Fri, 26 Apr 2024 01:12:42 GMT x-envoy-response-flags: - server: Clearbit strict-transport-security: max-age=63072000; includeSubDomains; preload x-content-type-options: nosniff x-cache: Miss from cloudfront via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: OuYpL4dOma9JNrtvw5yzYOVmN94CFq_YsU8gDaRg2__lABS2UlvZRA== X-Firefox-Spdy: h2

	maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css	104.18.11.207	200 OK	145 kB
URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css IP 104.18.11.207:443 ASN #13335 CLOUDFLARENET Requested by https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk Certificate IssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT File type ASCII text, with very long lines (65325) Size 145 kB (144877 bytes) Hash 450fc463b8b1a349df717056fbb3e078 895125a4522a3b10ee7ada06ee6503587cbf95c5 2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d HTTP Headers GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 26 Apr 2024 01:12:41 GMT content-type: text/css; charset=utf-8 cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE vary: Accept-Encoding access-control-allow-origin: * cache-control: public, max-age=31919000 content-encoding: br etag: W/"450fc463b8b1a349df717056fbb3e078" last-modified: Mon, 25 Jan 2021 22:04:04 GMT cdn-cachedat: 03/18/2024 12:51:41 cdn-proxyver: 1.04 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 1048 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-status: 200 cdn-requestid: 427d263c0cc73a641ba0cf1217992c42 cdn-cache: HIT cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 87a2b4bc4afb56a5-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js	104.18.11.207	200 OK	49 kB
URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP 104.18.11.207:443 ASN #13335 CLOUDFLARENET Requested by https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html#andyho@kingsflair.com.hk Certificate IssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT File type JavaScript source, ASCII text, with very long lines (48664) Size 49 kB (48944 bytes) Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b HTTP Headers GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev DNT: 1 Connection: keep-alive Referer: https://pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Fri, 26 Apr 2024 01:12:41 GMT content-type: application/javascript; charset=utf-8 cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE vary: Accept-Encoding access-control-allow-origin: * cache-control: public, max-age=31919000 content-encoding: br etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17" last-modified: Mon, 25 Jan 2021 22:04:04 GMT cdn-cachedat: 03/18/2024 12:46:36 cdn-proxyver: 1.04 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 1048 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-status: 200 cdn-requestid: 94cc2419fadaae9c0b741c79621cbf28 cdn-cache: HIT cf-cache-status: HIT age: 111881 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 87a2b4bd1b4456a5-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html	104.18.3.35	200 OK	404 kB
URL User Request GET HTTP/1.1 pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev/index.html IP 104.18.3.35:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subject.r2.dev Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0 ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT File type HTML document, ASCII text, with very long lines (51334) Size 404 kB (404176 bytes) Hash 4763b9a100ac77d117ab19ac4d202256 2e8419527256042a628288ac606fa9b129ca308d a88feab7b1387e408e57d140968f5fb04fc7e8d15a49c289bce67e6f878ef926 HTTP Headers `GET /index.html HTTP/1.1 Host: pub-f4a2f4a2693d4b8f999fda4416871572.r2.dev User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Fri, 26 Apr 2024 01:12:41 GMT Content-Type: text/html Content-Length: 404176 Connection: keep-alive Accept-Ranges: bytes ETag: "4763b9a100ac77d117ab19ac4d202256" Last-Modified: Thu, 21 Mar 2024 10:39:07 GMT Vary: Accept-Encoding Server: cloudflare CF-RAY: 87a2b4b09d7a5687-OSL`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (9)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type