| challenges.cloudflare.com/turnstile/v0/api.js | 104.17.2.184 | 302 Found | 0 B |
URL GET HTTP/2challenges.cloudflare.com/turnstile/v0/api.js IP104.17.2.184:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 19:33:13 GMT
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/g/d0ff3ebede6b/api.js
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c378f818b521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js | 142.250.74.74 | 200 OK | 31 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js IP142.250.74.74:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashcf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575
GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 Apr 2024 06:26:29 GMT
expires: Sun, 20 Apr 2025 06:26:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 479204
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jupita.top/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.208.46 | 302 Found | 0 B |
URL GET HTTP/3jupita.top/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.208.46:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerLet's Encrypt Subjectjupita.top Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Thu, 25 Apr 2024 19:33:14 GMT
content-length: 0
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rpq%2BCcMvHJ76m7bKB0vUXIUsStqtyFktaMufPFehO6bOfPds0p5eKJO3DY0EKvfq1jERGujQXOMmRL6q1OK0bLtD%2BrG5k7K19EvjV%2FfaFJ11aQVtlfxWvPc2IBQH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c37a9fd6568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jupita.top/favicon.ico | 172.67.208.46 | 404 Not Found | 287 B |
IP172.67.208.46:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerLet's Encrypt Subjectjupita.top Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT
File typeHTML document, ASCII text Hash336b10694f889d359b2aaccbbcae36a8 b8e9d5f62ef91d64b4bcd37492dd4d94212a1586 a2ef48ed6bc56e45d7cd63bae1dfe95fbf73a6be69562206e668224ec2b5170c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uq0TdyYLAZIrIk04oplfML6Wj%2FAlIOp%2BDG6Hbe%2Bx%2FYa6ntjeY%2BmGL8RB1y6H7QHWNRtJqdu7SpnRt29evWNEZeVgLSNPR%2Bk45OWLzCLbFzI2Rt7YCE8vos%2BLxuZD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c37a9fcd568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jupita.top/cdn-cgi/challenge-platform/h/g/jsd/r/87a0c3747f32b503 | 172.67.208.46 | 200 OK | 0 B |
URL POST HTTP/3jupita.top/cdn-cgi/challenge-platform/h/g/jsd/r/87a0c3747f32b503 IP172.67.208.46:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerLet's Encrypt Subjectjupita.top Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/g/jsd/r/87a0c3747f32b503 HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12227
Origin: https://jupita.top
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=I7bLNfUbaiD2zt4_RQ09i1oEgEGyIixuelL7qxOpa4Y-1714073594-1.0.1.1-d1rSQC8akYeauWpdT4LLsHlo01IPx2pEXE2fcjBniQ0nUSgK9zubPMUkNKBlgR.YV4WZgvQkQKAUKEoqT.brTQ; path=/; expires=Fri, 25-Apr-25 19:33:14 GMT; domain=.jupita.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j3gK90vPHvHYBs2dUWYpf3fzS9syi8Fybr5RYsScAkXE4vbSns17UnV3ZIgcOmxXiz9nlv8SXcbrTTOkfhZ%2B4YAXPOYWr65uHF5RRLIcY140A0vE7NaOAfpgh8iG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0c37c49e0568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e | 104.17.2.184 | | 105 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e IP104.17.2.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size105 kB (104715 bytes) Hash550e230dcd13c7560d0e374e9aec4d6f c90b637aeda1d493b392515d06e2ee2a293505dc 89d9329c1d71587025d7d51bae099cb1b404c5566fafd74f9a9190e4f4379014
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 85c76ac25f3156e
Content-Length: 2609
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: bdIfaOSrMlhKdVo1cK52bxtg7/U9vSMOlt6rgSOJsuDcnixlbXHSCMQ41KcQf6VX63VEZ0+g2TlillOqKAQ/bh6VJ/9BiJyRqdxpQJtHJnQsKdPiLQGcj7yqvzR8MeRmMeufDcwbRtjTHtOJBToiPPrDMHGgrZdjLtUNDwUgtuYlWGO3inojiw4eSb+KejGQ1IIMaZol8tYjC3SaPbkc5GDiNh67/QOllU6y1AfasiR6fc9Wr6CCVa+b8hi2dNswZUndrCg8T9Bsy2AGPwPbmLVvX4/hhJDXe9HlCpqmYOy16BmHKKnqqPXSaLD1CQaqerqID3iQIvoZilT1ZMjVvBxBjPX0v2LRFW7Htfq77e/5rxXSNegPj1a1WvQydg19M1N8wAndqG79lp1rDEsnfnopTdv0ukZlsFj8tBh+YwE=$f5Mxua3LyMPaW72hTHGD6w==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c37e3b34b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c37aceeeb50f/1714073594615/f138da0d87f8886f260b7766d946ec1c14ae5da2ea91015f9a994bcf167433da/Vy0mMw4eEeljjip | 104.17.2.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c37aceeeb50f/1714073594615/f138da0d87f8886f260b7766d946ec1c14ae5da2ea91015f9a994bcf167433da/Vy0mMw4eEeljjip IP104.17.2.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/87a0c37aceeeb50f/1714073594615/f138da0d87f8886f260b7766d946ec1c14ae5da2ea91015f9a994bcf167433da/Vy0mMw4eEeljjip HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Thu, 25 Apr 2024 19:33:16 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g8TjaDYf4iG8mC3dm2UbsHBSuXaLqkQFfmplLzxZ0M9oAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIPE42g2H-IhvJgt3ZtlG7BwUrl2i6pEBX5qZS88WdDPaABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 87a0c388bec5b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c37aceeeb50f/1714073594619/k36FOwOuRhNe4KA | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c37aceeeb50f/1714073594619/k36FOwOuRhNe4KA IP104.17.2.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 72 x 27, 8-bit/color RGB, non-interlaced Hash3d60bfbccfad1e3044fd4e4e4a58ac5f f2d0ab883f9f971bed36167678a5e61327cd29ce 6067fce3038a452dd54731c3a1dea26afcda58493080a4002bcf2c19e3e8d710
GET /cdn-cgi/challenge-platform/h/g/i/87a0c37aceeeb50f/1714073594619/k36FOwOuRhNe4KA HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:16 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87a0c3895f78b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e | 104.17.2.184 | | 7.4 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e IP104.17.2.184:0
CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (960), with no line terminators Hashbca4983065105904d30b0b0b27fa3ab4 4c75af4cb305f9f5a7e5499ae87a9ff96d8a6fba a565d188d9e356aa3cfb6ef24a21d0624a4bc2ac2a2e7c99bda0cea932dcea0b
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/831664163:1714072618:mgIcuFBF4JdgOV6kBbAp-UEiC8XhJsZlIze3tUxOoEY/87a0c37aceeeb50f/85c76ac25f3156e HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 85c76ac25f3156e
Content-Length: 27273
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:16 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: 06QDPo3X4GEN+fJxBZElljz//EMf8YSA3vHAZPByyWQ5029a0ULBBBAYiy+p7xE1KRjrI2Gfd18nk0o4ynZFKgzetZtcFAgPT9PON3XAjTo=$SP0J28rgAqfZUkgoLRealw==
cf-chl-out-s: Jp3BNLBD2HgT/rQtsoMh3g==$1jBTkJw71nz8/KINz1B/QA==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c38aa8f9b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:26 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87a0c3c9caf6b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c3c98a65b50f/1714073606994/daedb92af8ec61b0a947b21b671b0aeb4e76e8187f9f2588cdc93484a30a9bc5/GPYVk9ZkTPovyOT | 104.17.2.184 | 401 Unauthorized | 1 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/87a0c3c98a65b50f/1714073606994/daedb92af8ec61b0a947b21b671b0aeb4e76e8187f9f2588cdc93484a30a9bc5/GPYVk9ZkTPovyOT IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/87a0c3c98a65b50f/1714073606994/daedb92af8ec61b0a947b21b671b0aeb4e76e8187f9f2588cdc93484a30a9bc5/GPYVk9ZkTPovyOT HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Thu, 25 Apr 2024 19:33:27 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20g2u25KvjsYbCpR7IbZxsK60526Bh_nyWIzck0hKMKm8UAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApc5PUXcXSrXwpeNe3kT6EaAJPDsPBMfFZc7M608yW3JV6YSHiGBLoFiLtNHD3Yj8UsOtWbQeFa2uvS_dYz5MBsoSW4-RbOY-WCB2aGEB-eoRbXl4lJRl0UNGi00lNBgNTil_mTTSNV3ssSkmSY8kwM-5GqBNfJ2kmJPKo02MWiXn1pwc4YXbeATUrYDRvvXUXYZrgaarjDyvHFhnYpD3mqr5qOj_TS_1SCUZ0HIp8ywDX06Xc59cKjzFHEUzD3gWutoK4apMxNt9bWWxcH3D_UL1a1llCxh-knMwTxgvRXS-XHap_ymO2zCuAPNgo1SDCTl4lTQZbVX7VvpDZwMaiQIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tINrtuSr47GGwqUeyG2cbCutOdugYf58liM3JNISjCpvFABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEA1FEYykHcK8H9rb_u0aFz3CmWgYloQw4YhedoEOAjJ0vy2Axa4f9UG9Dzs4uXS34_h8l6MDo2nRCvLI9lvebilMnTjCn-6D77bewqYxJKUFZW1z2jBIdu03TrETczfEg7kxgKtJE9NXGDjYJcF_iMgzgNA0PEAVM89tUYXXlFy4cUAGlqU2mPpIEOxm5ARsXC-zlLK60fkJ4cOsZRkZa6EExdhmgdwQ0fEJuSOHrBO_-zJn4hUP8q9g4yqkxW2UrfJgD07F4HaHGBEiei06sGDvH2NEPvswEl5dTGxutNrxlU7W24iYhNa2nhjlc53nNb0mKtszv-czVE9UhXyJ7-RQIDAQAB", max-age=20
server: cloudflare
cf-ray: 87a0c3d14d29b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c3c98a65b50f/1714073606995/JZ7xmYKiBA6EcLe | 104.17.2.184 | 200 OK | 61 B |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/87a0c3c98a65b50f/1714073606995/JZ7xmYKiBA6EcLe IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typePNG image data, 10 x 5, 8-bit/color RGB, non-interlaced Hash79ffbbb469ced8f5ca66595855953962 35dcb289ac52331856ea5197b2d6b7c55bd2ebfa b1007a47ea0a8ab848b49b5354f014108ec0a80ac1535f2b796993c3fe1b8137
GET /cdn-cgi/challenge-platform/h/g/i/87a0c3c98a65b50f/1714073606995/JZ7xmYKiBA6EcLe HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:27 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87a0c3d16d70b50f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=HNGKwXTNtQNQOXxhaE34eAz0SOP_fwyb11pV0YkCtjopsNshlAbRs4EmGl1O9ES-5-R8IO0HPu2njHPs9YK0E2TJXUluI4atoyfk60REMoQigdAbECP9Qgw5AACXbLGr
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Thu, 25 Apr 2024 19:32:57 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 35
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 | 104.17.2.184 | 200 OK | 104 kB |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size104 kB (104300 bytes) Hashc6749156a903076b79b53f454ba1c370 6d172230944ca3916ea1c8735d63f2df37b576aa a95af1a146306f19800c1478167bdd626448f4037001988380b99574721f1430
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 50b33df24bc5e06
Content-Length: 2667
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:27 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: e2mV17pEd12kc08XPZz18nGT8aR3SVVkka9cKWkmW4SjtZcyqCaBohcHLijeUNrCK3HyjkDaxHBu1mtqo0qamCpbatIPZRo9Pc/gw+TV1VEJFXNhbH9qkz4mPIssEkO1nf45oFFMKedpb3KkogkRqtfHth8nWf5sX+AlvQVMbh43BR+qAmus/1GH2VNIXUw2qBG6U8eEVn0pOzwC/bbBOy/fcTY8Ix3V5Cd8wjoASV3RmuA7kV9GcR5PL9JDk8YLPGBvCO/ewRRO1xHdPum0l64ZY7RIQllYVfl9SzKrnVolk7x/d56DrZ0QKA0xIWeJulK2A4Qays88Nyj5kNRf3ba+WhJZ7ddPfvcxgeQh2CVeBcKqH9PFUsCkeOMrDzpp5Lp2zOdLHCOPJzRxJ2jgtRkSww9pZ4laRQQCHV30aVs=$uDkKAvIcEZr6jQW6RNTrcg==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3cb9d4fb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jupita.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js | 172.67.208.46 | 200 OK | 7.8 kB |
URL GET HTTP/3jupita.top/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js IP172.67.208.46:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerLet's Encrypt Subjectjupita.top Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT
File typeJavaScript source, ASCII text, with very long lines (7836), with no line terminators Hash1dfb37a1340dd505ae79585a6d3863b4 7b782b051f19836cf4461220fd0f91253f8e23f9 8e1b1f8aded24f19c094620350b1811f0b8029cd7236415a36bb55f6d0de15c9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
content-encoding: br
vary: accept-encoding
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YW6DCvtctgpC6DZwdtoYUl1MlcJTCGgRjSaB2USGb0tdwKtkUOyZK9%2FQl0fzjTMqP3z9mI3pWS6c%2Bu1KjVoi3b6%2BVm18C%2Ff4lluihtnsQ5syi987mPFLtr6Q7hxt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0c37ad81f568a-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal | 104.17.2.184 | 200 OK | 80 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal IP104.17.2.184:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash3e96cf5d9d15df348a916884aa5459c5 3a55e866197dc4c6f30992dcba07db575394514f 47ebbdd9bf06cc80647fafa8c91a4ddeb6eea93978c689d63bf2a6a139b94f10
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:26 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
origin-agent-cluster: ?1
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
document-policy: js-profiling
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3c98a65b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f | 104.17.2.184 | 200 OK | 433 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size433 kB (433218 bytes) Hash3ad63b49bf9667e2c47f618f9e1a7b1a 80886adfd83871fc53ce14fd8d73a8936415dc39 fdb684dc128276c0247210f3dad514799af8d0e774788258cbfb4bd67db2edcd
GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_api/v1?ray=87a0c3c98a65b50f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:26 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3c9dafeb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal | 104.17.2.184 | 200 OK | 80 kB |
URL GET HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal IP104.17.2.184:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (41702) Hash3caa76271796005f0d0b05f53c789ed1 b5ad04ed72af3bb60573c8004ee256e508825ade 1c410b5c75dc3ea59775bef1dc7ea1793bc0ff10c763adfab89fadae4a356640
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jupita.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:14 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-opener-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
document-policy: js-profiling
origin-agent-cluster: ?1
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c37aceeeb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 | 104.17.2.184 | 200 OK | 960 B |
URL POST HTTP/3challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 IP104.17.2.184:443
Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeASCII text, with very long lines (960), with no line terminators Hashc2e626c38a2f22f24f56bbcce94042e6 dcc2f3f60978727405a99114d447ca34aeb8f403 fcef9548d0e434290ef087f8726140bf92dd600890addbcfa5e8be346a7376c0
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/697102180:1714072671:i1BX_s_Tg-BGZa61ZS_dRZm7eJYHQfjK2nwiMck4RMo/87a0c3c98a65b50f/50b33df24bc5e06 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv1/42BoqtBW7FWf6hi/oj7n4/0x4AAAAAAAXjXiXiV7KvBpAv/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 50b33df24bc5e06
Content-Length: 27469
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:28 GMT
content-type: text/html; charset=UTF-8
cf-chl-out-s: K/w3ceSWokGzkV7SX5I02w==$wkWrVwOhRVXOhKrEXQCQOg==
cf-chl-out: jx/TE9aAZLhuVXBRJqZqVPkzCWVIxLvKh+ozot065qcVfYJ+YeHDs3dUdLraeuiHFwEMD2y4WQHxzuSiRw38QP+/G+dXR42QzgHin+gBv2I=$ASR10pK0wma5jsGZ7jUEtA==
vary: accept-encoding
server: cloudflare
cf-ray: 87a0c3d61b59b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php | 172.67.208.46 | 200 OK | 2.0 kB |
URL User Request GET HTTP/2jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php IP172.67.208.46:443
CertificateIssuerLet's Encrypt Subjectjupita.top Fingerprint9E:5B:A3:A8:86:17:B2:D3:02:73:C1:56:80:93:96:CC:EA:89:5C:6D ValidityThu, 18 Apr 2024 20:57:05 GMT - Wed, 17 Jul 2024 20:57:04 GMT
File typeHTML document, ASCII text, with very long lines (2062), with no line terminators Hashcb8b65f5a75da653b0122a7de00e03c9 f07c51e70f874aecf780e01b40fba9cf91be76e5 0e8fc93c241f1710cc749e40b8ea289b8f0964c25eb804fd978b2ca2157ec35c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook | Quad9 DNS | malicious | Sinkholed |
GET /_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php HTTP/1.1
Host: jupita.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 19:33:13 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ErU4jTvcykvtopi%2Bx3xWARxwXzBfGpzcPiCaCT%2BjbPZxkrsGW6PWEjRX6Johr78LFgS4ASPC1NIwPQ4rudStklT8a3s3Rk1v5Tc3%2BCrg%2Fmjihi5MD%2Fu3KNf%2BWUjG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a0c3747f32b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/turnstile/v0/g/d0ff3ebede6b/api.js | 104.17.2.184 | 200 OK | 43 kB |
URL GET HTTP/3challenges.cloudflare.com/turnstile/v0/g/d0ff3ebede6b/api.js IP104.17.2.184:443
Requested byhttps://jupita.top/_bahamas_delta/zone/de01c1d48db6c321c637457113ed80d5/login.php CertificateIssuerCloudflare, Inc. Subjectchallenges.cloudflare.com Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42565) Hash65b0a652c40c95d12c4ddb3b4567c1ea c654efa19d01d6553ed4e0f500d350011e023ad1 c6b5cd0b65ebbb519dd845ba2979b40e58b056ca2c90f67a8bfea871d39615a7
GET /turnstile/v0/g/d0ff3ebede6b/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jupita.top/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 19:33:13 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a0c379bd7ab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|