| news.ddr8drop.shop/login/form/newloader.gif | 172.67.179.154 | 200 OK | 557 kB |
URL GET HTTP/3news.ddr8drop.shop/login/form/newloader.gif IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeGIF image data, version 89a, 480 x 480 Size557 kB (557122 bytes) Hashef8d4e6b20b0cf0d68713fb2f6069042 d62bb4b1a169c88879de3bd2f5c4292b6259a952 32bfc673211421c1a5a33acc98291840183582f11d15490954b42a81d79d4630
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /login/form/newloader.gif HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:25 GMT
content-type: image/gif
content-length: 557122
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:55 GMT
last-modified: Sat, 15 Jul 2023 08:40:24 GMT
cf-cache-status: HIT
age: 24570
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fXSY%2B9dKViuPV1f7%2Bwqv9zY5i%2BagyKsrPUYlrbRSDlZm0519A6yKxdKAdTWknOnKHQWxQtW2CdOfDGjmsIa51ZG8lky78HQO1AfzXVbahkKg60%2FghX%2FR3wcpLc%2Bypzk%2BtxWtYls%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879df30d7ecb712d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084996&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1714044084997 | 172.67.179.154 | 200 OK | 3.9 kB |
URL GET HTTP/3news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084996&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1714044084997 IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with no line terminators Hash5f6bbada987add448d134d6166f45519 93c02a3ce02421d1d4457e3c86e20e3ceb8fe183 bfbc4e62ec35179d97937c2bf88cb45da6eed98274a86895022a508595f21461
GET /home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084996&data=%7B%22mes%22%3A%22User%20on%20login%20page%22%7D&_=1714044084997 HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:25 GMT
content-type: application/json
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TCcXrKrAocUPPdJC5Zoq2Xotg8n0RsROaRy1P3Aq5s9ckwsUTzlLs9Gig7gmmbsdudbqvxsMN5GGicDVMp%2FmQZT3HhVZqh2Dw5HBsKnY7VaiHpWV2nRKWW1YktJW3NptYMeRtoE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30d9ee2712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084998 | 172.67.179.154 | 200 OK | 3.7 kB |
URL GET HTTP/3news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084998 IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with no line terminators Hash0e4490744638f94eae8da7f02a86d3e0 c2543977018602d7957d7ad7562d9dc64bae35e3 d3b0397aa3fdb157ff09ab99e8a4f657fd8d8280151aaebba28443ad45d1a0eb
GET /home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084998 HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:30 GMT
content-type: application/json
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lJUhymx%2BnTyRX6k4jClhtdTP7mX0wvDfYQ28LYrnfF7lLX%2BGg1gtPhP3UxvIRqEMDQR6f46P6bwaG382fd247BA5OZYzIxKkbiLo6WuAT6GTy211DulgK7slOvqy4b%2FxRgrgQvU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df32cbb3b712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ | 172.67.179.154 | 200 OK | 1.4 MB |
URL User Request GET HTTP/2news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ IP172.67.179.154:443
CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
Size1.4 MB (1426822 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /view/dcbecd224b81e07c3336b69ff0ae3b43/public/ HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e3QfePduvWJdqcUZpUPVQo5vGzxl4Q136SSVg6DXk%2Bw825x8GqcB9%2FruNHjRU56JWP7NnxpYjLa4VKVBz56OUn0x%2BgghFqcBLFUs2YjUbSoduL3SPrcp2oeLNwQHGyZx373n0G0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df3087a067131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| news.ddr8drop.shop/bower_components/font-awesome/css/font-awesome.min.css | 172.67.179.154 | 200 OK | 31 kB |
URL GET HTTP/3news.ddr8drop.shop/bower_components/font-awesome/css/font-awesome.min.css IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /bower_components/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:54 GMT
last-modified: Sat, 15 Jul 2023 08:40:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 24570
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=exmzrlP6lcHSv8OlQOPAl6oh5It%2FG2kZN6iz7STnuBafT3zBnczS6tX2gX9l0V57myqQh1KFuumbejsSQMpbssmvud9sqP23fnffUUTV%2FIr0dHjQFWzpAZUZvuAEelaqTkMdkBc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a0aff712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/login/form/form.js?v=662a3cb4933ca | 172.67.179.154 | 200 OK | 2.6 kB |
URL GET HTTP/3news.ddr8drop.shop/login/form/form.js?v=662a3cb4933ca IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeJavaScript source, ASCII text, with very long lines (2787), with no line terminators Hashc90b860de78de5ffe4cda9b2d3a62fde 7aec84c45fdfd7b99646b3a87b3312eb83f8442f cca3a6bb4044d0a7d321a27373a421d5045b081c21b68efe314fe35b39e319dd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /login/form/form.js?v=662a3cb4933ca HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 11:21:24 GMT
last-modified: Sat, 15 Jul 2023 08:40:24 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wXPsflRxo1KWYAtdLpB3TN%2F3seSwhH9CKFcu08u3vNPZmunOZODfrOZc%2BsC8WDT6c9huAVxw7kmnT6ZTdGE89r5ePS2J%2FheHeemDiBSmsKDGDHSaqlFlsSdTHUeLetAJh1Zl%2FIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a4b58712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084999 | 172.67.179.154 | 200 OK | 58 B |
URL GET HTTP/3news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084999 IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with no line terminators Hash1771ea336a3058bfc12c22d1a1ad7b99 1d050cac184c7e705d2cbe63a69470eeb611db02 fbff998dcf54d5be37671358fcf0f807295762099a76a2b9d044f560c39d11a8
GET /home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084999 HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:35 GMT
content-type: application/json
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jqTRFETFERT5W718yzXSJWkYVma2MTX8YSIE5aJgDdZEBdOQRFuOfwMwx95qW3%2FTplckMDR2MgW3hOGyfXtoGCxEP%2BH8MNqFB6wNTgAujx%2BxERND6lOcQPvDauonTbzQ2IFW%2F54%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df34c0b1d712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/bower_components/jquery/dist/jquery.min.js | 172.67.179.154 | 200 OK | 87 kB |
URL GET HTTP/3news.ddr8drop.shop/bower_components/jquery/dist/jquery.min.js IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeJavaScript source, ASCII text, with very long lines (32058) Hashc9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /bower_components/jquery/dist/jquery.min.js HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:54 GMT
last-modified: Sat, 15 Jul 2023 08:40:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 24570
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iiRoH4T1qMzYQeCK8nueKN%2BRlt9Q%2FX3b0jsb43AFg%2FskXwZkNv4k%2FR0hNze0Xj07%2FgESzGp0eRHBV5p0KfMhaawmNs9tfU0j5qKESyvTQU425eN1A%2BXBxqWYWT%2FlTlc8H%2Bqg8Y4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a0afc712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/login/form/css.css | 172.67.179.154 | 200 OK | 563 B |
URL GET HTTP/3news.ddr8drop.shop/login/form/css.css IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with very long lines (593), with no line terminators Hashd2fa4f2848d69806d9f0f39dcd92466b 9931bbfc6792da45a421f9b35a5f7f3284a73263 e7bd2de36778afe1a5ddccf9c9d94786eba97b0af8381f23518a6072e5b392b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /login/form/css.css HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:54 GMT
last-modified: Sat, 15 Jul 2023 08:40:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 24570
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S22G%2Fu67IN50ZAMeou4oNxnqObZYpepO5eV52s%2F2V4eUsNHVuOxNRqJ6CD7NMvwICXF65C8QwooapWB%2Bdp2DhuIWYFv%2F%2BLoS4ityphWQU2qXcDJXJjB4ltU4RSRUWPuHWVLQaRc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a1b09712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/login/token/token.js?v=662a3cb4933cd | 172.67.179.154 | 200 OK | 1.3 kB |
URL GET HTTP/3news.ddr8drop.shop/login/token/token.js?v=662a3cb4933cd IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeJavaScript source, ASCII text, with very long lines (1340), with no line terminators Hasha4c1710281b81e6ba56fd4c3c16e4f64 d973b08d0b9ce7345733fd17cc6606d3ba222b0c e460dc38e8569d1ad35ac31920e3f5358717425f7803eddbfda7b39348f95af1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /login/token/token.js?v=662a3cb4933cd HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 11:21:24 GMT
last-modified: Sat, 15 Jul 2023 08:40:24 GMT
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Q8uRlFVNkocgSurtFMEblHrSNLxI%2F22I98Ji1e2M%2BOpH6Fmua%2FcpeLCavO2qQxy%2FPKYXEBFmvEoGickZtgz5NYUCQ3emdnfqo6QJt0h4YwkHSVVmYJF13IwXxHekmmz0nfBMT8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a4b59712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084995 | 172.67.179.154 | 200 OK | 58 B |
URL GET HTTP/3news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084995 IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with no line terminators Hash1771ea336a3058bfc12c22d1a1ad7b99 1d050cac184c7e705d2cbe63a69470eeb611db02 fbff998dcf54d5be37671358fcf0f807295762099a76a2b9d044f560c39d11a8
GET /home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044084995 HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:25 GMT
content-type: application/json
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L40L33ysCvSEu2KTzHTmhSJgR6Wcp0w8xs%2Fj7MJkm%2BUoASk5Ra364kM8SblVcbTRMhtrxe%2Bum1fSjr1OgVxZrBQqf2h3YXbNbPcOc7NsVJTkE2mY4roYXVC%2BthOoAQn9Bq8Lf9Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30d8edc712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/bower_components/ua-parser-js/dist/ua-parser.min.js | 172.67.179.154 | 200 OK | 17 kB |
URL GET HTTP/3news.ddr8drop.shop/bower_components/ua-parser-js/dist/ua-parser.min.js IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bower_components/ua-parser-js/dist/ua-parser.min.js HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:54 GMT
last-modified: Sat, 15 Jul 2023 08:40:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 24570
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=THdscFIYnVDtcTPHUUNveS8TV1hTP3w6Ac1pNiy2eBWu2lXJM9dCW1J%2BcSqSxbDjTakmmsv5VdV874NRiwZ7kjs4x0ayTjZq%2B098d9nLiKYBxPtUaGW42kY6w4BqkPNDRMh11Ec%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a0afd712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/core/token/core_token.js | 172.67.179.154 | 200 OK | 14 kB |
URL GET HTTP/3news.ddr8drop.shop/core/token/core_token.js IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeJavaScript source, ASCII text Hash94f53d530575909ce27cdd1f5dc64372 91b96e78d0aad4dfb6fa1834e7d9a60829d42eb8 3c8c63b5d734c8307e26340fabc40d2db29b8e790c857bc794f429196bc8bcf1
GET /core/token/core_token.js HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:54 GMT
last-modified: Thu, 30 Nov 2023 18:01:24 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 24570
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZNwKD6%2BB7JUQeAqlRrintd1Vqy7X0eF8ks%2B%2Fd%2Bw7LC5oYWrQzClUxW2Pmoqq7sZfS9dOBFmtFjHD4kNtEezKpvr6KPKxK9s2egMIp%2Ftw1qc6XGkQFEgHDY5RuTH422nZzV1i%2FBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a1b03712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044085000 | 172.67.179.154 | 200 OK | 58 B |
URL GET HTTP/3news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044085000 IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with no line terminators Hash1771ea336a3058bfc12c22d1a1ad7b99 1d050cac184c7e705d2cbe63a69470eeb611db02 fbff998dcf54d5be37671358fcf0f807295762099a76a2b9d044f560c39d11a8
GET /home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044085000 HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:40 GMT
content-type: application/json
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8zf%2Fx%2FLBG7lTZl9laIMGYmV%2B%2BfcZQ7zpMTITYzmiJPKzZvdrnSEbVVU19XJONzM%2FQGp0Ckr9UTU6YL5mzWvbOaHkdCdit5N4kzhenYjOHdBbAsnftUgL1hKF41AU1IvxN6x14yI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df36b4b4b712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044085001 | 172.67.179.154 | 200 OK | 58 B |
URL GET HTTP/3news.ddr8drop.shop/home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044085001 IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with no line terminators Hash1771ea336a3058bfc12c22d1a1ad7b99 1d050cac184c7e705d2cbe63a69470eeb611db02 fbff998dcf54d5be37671358fcf0f807295762099a76a2b9d044f560c39d11a8
GET /home.php?pl=token&link=Gimi&bid=dcbecd224b81e07c3336b69ff0ae3b43&callback=jQuery321033977441209912695_1714044084994&data=%7B%22online_bider%22%3A1%2C%22w%22%3A0%2C%22dev%22%3A3%7D&_=1714044085001 HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:45 GMT
content-type: application/json
x-powered-by: PHP/7.3.33
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tH6kSWUSCdxJJPsq2yteJ7CmUnJKppttXeuwZDAWr0Rk36yz47h0kGc2j48qFAv6K1iTtMJ70IB8Vu1Wiz%2BDL0vYOesAxwvnhpJvrCCOVzu%2FHMgW2mgpPy%2FFXmLhumbf14PJS7Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df38a8ca8712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public | 172.67.179.154 | 301 Moved Permanently | 1.4 MB |
URL User Request GET HTTP/2news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public IP172.67.179.154:443
CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
Size1.4 MB (1426822 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /view/dcbecd224b81e07c3336b69ff0ae3b43/public HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: text/html
location: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pyo%2F5F8a1cetJl78mOd59UsLdbCPxKnLth3IA8KwjoBoF7XjFwMeT7TrEsjBWDlabjHmwWxMzYjwwSpuRtzyQSspssxFyoEeaRPiLen7OCqB9k%2BYIKzlpdP9oPnqXXG3FEz7Sj8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df307b9507131-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| news.ddr8drop.shop/core/form/core_form.js | 172.67.179.154 | 200 OK | 17 kB |
URL GET HTTP/3news.ddr8drop.shop/core/form/core_form.js IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeJavaScript source, ASCII text Hasha17c7e17b71ea10cf76bf5bbb8fb6f57 08ebb851c9c37f53a2b8fedc94adc9d1cacb1cb8 871d7d34566ed4c3206be32e299552d04a697a82a36829cc71ba258ce44e4ca1
GET /core/form/core_form.js HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:54 GMT
last-modified: Thu, 30 Nov 2023 18:01:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 24570
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kxM0mYerfH%2FqbiI9hckBSQ5TLHCKXbjdd01aQRnXMWoBoERekp5zN0JnKQAPko9GLOCRApIgpRo1I9O6cNIWNeI6Dg%2BYCHFut3zpLhaANPITw7%2Fgtom1hxNVoT5TEiJy2ENKmbE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a0b01712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| news.ddr8drop.shop/core/form/core_form.css | 172.67.179.154 | 200 OK | 2.7 kB |
URL GET HTTP/3news.ddr8drop.shop/core/form/core_form.css IP172.67.179.154:443
Requested byhttps://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/ CertificateIssuerGoogle Trust Services LLC Subjectddr8drop.shop Fingerprint89:27:33:23:C9:2E:ED:8C:AD:3D:6C:C2:0B:51:99:6A:18:3A:A8:F3 ValidityWed, 17 Apr 2024 18:14:49 GMT - Tue, 16 Jul 2024 18:14:48 GMT
File typeASCII text, with very long lines (2859), with no line terminators Hash395aa28d6d2623a6313a5bcaaa88a6c0 81be4728c9cb426d8edaa75d4cc64aa15b48dee0 3a6006d052f07c3c1cb20e63b906e851b3848a34f87cf56580758fe7501d7630
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /core/form/core_form.css HTTP/1.1
Host: news.ddr8drop.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://news.ddr8drop.shop/view/dcbecd224b81e07c3336b69ff0ae3b43/public/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 11:21:24 GMT
content-type: text/css
cache-control: public, max-age=604800
expires: Thu, 02 May 2024 04:31:54 GMT
last-modified: Sat, 25 Nov 2023 12:54:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 24570
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MHcYx8s6Lqlfz4e01dnPSiGm7Tru6gH6eU%2FgmKVhYgIvflnSVAOa9rbt81OZKWG3HLl68vpE2uHBlw%2FFyjA%2FWt3mWHUatIgvtBymYNX9OLOUHmeW0pCaMLUghL312H%2Bh6FYIyHs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879df30a1b04712d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|