Report - policies-community-scrure.pages.dev/

Report Overview

Submitted URL
policies-community-scrure.pages.dev/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 05:25:30
Access
public
Website Title
Page Help Support Team
Final URL
policies-community-scrure.pages.dev/
Tags
meta facebook phishing social
urlquery detections
Phishing - Facebook

Detections

urlquery
6
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-15	450 B	32 kB	142.250.74.170
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-15	995 B	56 kB	151.101.1.229
policies-community-scrure.pages.dev	unknown	unknown	No data	No data	4.3 kB	263 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.
2024-04-15	medium	policies-community-scrure.pages.dev/	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed
2024-04-16	medium	policies-community-scrure.pages.dev	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	policies-community-scrure.pages.dev/	0 B	2023-03-07	2024-04-29
Pretty URL policies-community-scrure.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 19:21:05 Times Seen37187046 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	policies-community-scrure.pages.dev/	31 B	2023-03-08	2024-04-29
Pretty URL policies-community-scrure.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 12:16:07 Last Seen2024-04-29 06:32:38 Times Seen1630 Hash c8a8aecfed68494dc11a3a2c314544e0 0a032baa9aed1a5c5d570734a958655e008244b0 6dec1d337364ee9defa8079ae6640e5025ee6728e01f98277c6d382947859164 Loading...

	policies-community-scrure.pages.dev/	0 B	2023-03-07	2024-04-29
Pretty URL policies-community-scrure.pages.dev/ IP 188.114.96.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-29 19:21:05 Times Seen37187046 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js	80 kB	2023-03-07	2024-04-28
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:49 Last Seen2024-04-28 06:51:59 Times Seen1536 Hash 6dae88aba81e468737c510cc2e4ec1dd 6b4b985a90abd7ab1c2e35ff3b874d07cf8410ee 2515e37eee31f5ef3d659b21dcc84dc6ea732b06872da51078b5b526de34c0c1 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-04-29
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-29 18:58:02 Times Seen263244 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

		Size	First Seen	Last Seen
	#1 Write - de4be9f23a5290172fcf02581d98aba6	14 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 07:24:10 Last Seen2024-04-16 19:44:30 Times Seen4 Hash de4be9f23a5290172fcf02581d98aba6 d3e367974057f571c46578ad53f1077b5dde31db 3da74b6f83dc5086b62a2b37c29e2b6b5ef0553094c870a1556b6a03522ace77 Loading...

HTTP Transactions (12)

URL IP Response Size

cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css

151.101.1.229

200 OK

30 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (65300)
Size
30 kB (30281 bytes)
Hash
6d9c6fda1e7087224431cc8068bb998f
6273ac1a23d79a122f022f6a87c5b75c2cfafc3a
fb1763b59f9f5764294b5af9fa5250835ae608282fe6f2f2213a5952aacf1fbf

HTTP Headers

GET /npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
Origin: https://policies-community-scrure.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.0-beta1
x-jsd-version-type: version
etag: W/"2f3f9-YnOsGiPXmhIvAi9qh8W3XCz6/Do"
content-encoding: br
accept-ranges: bytes
date: Tue, 16 Apr 2024 05:25:04 GMT
age: 19366548
x-served-by: cache-fra-etou8220113-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30281
X-Firefox-Spdy: h2

policies-community-scrure.pages.dev/citutbesar87/Locked.png

188.114.96.1

200 OK

20 kB

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/Locked.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type
PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced
Size
20 kB (20176 bytes)
Hash
ce97933f4d9d2af68efecceb67ffb645
9ca1f9d8b10afc6af5a76ff14fe76b0da5441230
5b1f89c63b9a87f0a0b2737a0789cf18c8b3786302e2c7dd56fa1d2ebc7bfde2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/Locked.png HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:04 GMT
content-type: image/png
content-length: 20176
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "374c0f7e59bf6d91c489aaf25aa6ba1d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZxzaSUWeNJQTDszR58tdW5BWLimw%2B3WsX8mB%2FFCojKsodVxsTsUd2vra4GzM20L0V607EANs%2BhJIchGCUIvlN8JNax3yiEDlI%2FoZqguaYE%2FusbpXsEaqKxQxnsFurqHS6Ao9VuL4Qv2DHGCUI%2BdKi6VkO8iPPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b078d00b49-OSL
alt-svc: h3=":443"; ma=86400

policies-community-scrure.pages.dev/citutbesar87/intro.png

188.114.96.1

200 OK

3.0 kB

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/intro.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type
PNG image data, 117 x 120, 8-bit/color RGBA, non-interlaced
Size
3.0 kB (2987 bytes)
Hash
2e00ac35746887d77fada7370b8d5e42
a0d8c20d749b3e63e93282d7ba90b35be9c15458
9fc2fe17fa35dc50cbac42366d82e564d0a6e29a6b18f966ba78641b92850514

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/intro.png HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:04 GMT
content-type: image/png
content-length: 2987
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "7d04217601f68f4e0b4555b48ced9db3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fFcEw6AcKqKKOditI5nVX%2BPh%2Fkv4Cis0wX1ryL7YmxxaryV1adGJXNMgUX%2FCLBvmsv2y%2F9aKEju9IxE1drqMAFAe5cENjW%2Fsi4CM5BfqrtEUWCBdtzUhvRmSm%2F3B6XTEzRb1eITNm6%2FpNV2U0cpgnlPTifADeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b068cf0b49-OSL
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js

151.101.1.229

200 OK

24 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (65293)
Size
24 kB (24445 bytes)
Hash
6dae88aba81e468737c510cc2e4ec1dd
6b4b985a90abd7ab1c2e35ff3b874d07cf8410ee
2515e37eee31f5ef3d659b21dcc84dc6ea732b06872da51078b5b526de34c0c1

HTTP Headers

GET /npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.2.0-beta1
x-jsd-version-type: version
etag: W/"1377e-a0uYWpCr16scLjX/O4dNB8+EEO4"
content-encoding: br
accept-ranges: bytes
date: Tue, 16 Apr 2024 05:25:04 GMT
age: 3560445
x-served-by: cache-fra-eddf8230137-FRA, cache-hel1410024-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24445
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31017 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 18:59:06 GMT
expires: Tue, 15 Apr 2025 18:59:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 37558
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

policies-community-scrure.pages.dev/citutbesar87/XXXX-removebg-preview.png

188.114.96.1

200 OK

16 kB

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/XXXX-removebg-preview.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (920), with CRLF line terminators
Size
16 kB (16326 bytes)
Hash
6f32423f6b696f1e52627b04fbad571e
18974dbd766205bfab8a2f2583298bbb06fdd04a
9ad1753216628b40d0aefb45012465af0c765fd374276c6d352e929c14a71261

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/XXXX-removebg-preview.png HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:05 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d4227c34819b548094a6a19701d4523e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BFO7kJDfkM4%2FwTZSqoyonE%2FsGzLjB6izEM%2BUFqWFPq9emfyzyYxpSV7gKFPh%2FXINcuDr292Tg86fplYMpbAtBxAxnMTSWOET46Ykl14Obp80RQlv9KLLxJKnIJTRwVmP4v6%2FX6fZZ0HxoXl7B9JDbQJ7c65XfA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b259c80b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

policies-community-scrure.pages.dev/citutbesar87/2.css

188.114.96.1

200 OK

153 kB

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/2.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type
ASCII text, with CRLF line terminators
Size
153 kB (153398 bytes)
Hash
c8cc673d0aadd94dd7126051fb0a8f89
9e65cb5aac71e70a1641111c01f8693bc3e993f5
70e82b9c91dab7f2b599dc205d0bbcad1dcf51bd656f14ff3165c8a3997fe645

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/2.css HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:04 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"07652fb11de9ab1c505ae3c17de275aa"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VYescc5Arb7jjCiZ%2FvNmXq1hy8cUhWeicLhSDAZzcnK%2BQRm03dd6RjqKe6VZHTu6%2FdpHOlysqHXREu5uoiErYCwM2sMIgMkAAE4h6vpqzcOWMx3vGAirbvRBES858ww8S51Y8vO%2B16%2FhqIhedrsiZvsuqfYrrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b068cd0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

policies-community-scrure.pages.dev/

188.114.96.1

200 OK

8.4 kB

URL User Request GET HTTP/2
policies-community-scrure.pages.dev/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (8903), with no line terminators
Size
8.4 kB (8435 bytes)
Hash
abda512202823cd07c0f7df49b0dd96f
471c04e6b4999fc7326a48bba72b965a88105799
2c7fdcf4c7b91914053e7d216098768ecdc2f9d7989465e46ed34ff35a30d75f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 16 Apr 2024 05:25:04 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d4227c34819b548094a6a19701d4523e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nPWAzm1TA2Bmoays5L8U2DTOxzR5kPFn5AwDgXw%2F5G%2Fxi5dD8QHPRyUkh4MKNZ0Yl8uDroC3egW0AA33JRSkaRg%2FhnVs29NAYz6TzQuAmOb0oU5GlmAeQsm5M0eeHJAcKrxhJLw%2BAL42QLcrtATA7mlmm6F2Pw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0ae9dfb56aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

policies-community-scrure.pages.dev/citutbesar87/popup.js

188.114.96.1

200 OK

0 B

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/popup.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/popup.js HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:04 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d4227c34819b548094a6a19701d4523e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u8FQZU1eW%2FBvwaz9KWNFICpA%2BSLOGD6RBvLMLEsm%2BtR9P%2BAItF%2FvNY5pAC3q0ISk8Y55tw3nWrtUbuWMMi9KpsPUDh4dLiDDZ9lz3DDAIlilezUvL%2Ft0Rr6tyXsW1FLhXPKZlihE%2FlXFW45MlJb8h6r7E18mRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b078d20b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

policies-community-scrure.pages.dev/citutbesar87/1.css

188.114.96.1

200 OK

963 B

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/1.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type
HTML document, ASCII text, with very long lines (1067), with no line terminators
Size
963 B (963 bytes)
Hash
6fe85880dc942336995755174c110bd1
bed3e1819cbf4cc39a6421a32052457792181890
e6dbd196ea21f27f857bbaab98cf1c41550082b67191c75d509e75a97c6ee062

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/1.css HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:04 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"2d0acec188512125ec3c91bc5e22339f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aj5BcVewLU5JOGKaTFcu%2BB4lD%2Bv%2FDwbdQK9DleMXpicQMMRaP0%2B%2FEiG7XbuUIV91lyHVuD5OvM7h88IrzaI2rdR0QYF0qDL%2BpfsXqbCwa%2B1H2XYj26Mqvc98x%2BuxWauYVWQslQj90ThLxu3BMsC8Y2LFwpq29g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b068ce0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

policies-community-scrure.pages.dev/citutbesar87/popup.js

188.114.96.1

200 OK

0 B

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/popup.js
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/popup.js HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:05 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d4227c34819b548094a6a19701d4523e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H%2BqqjWG4%2BXidLOaNiiO%2FVt%2FGPXrbZcFa6EP2ua7gU5rJRVP5k1tHEafZ%2F4Y4HJtDTgTXHodJzhvrIXqSeFnSCVifr7TdLKoWNfsbw0%2FtJQXiWXDXxxNOI1zHqDTaVOTSoeIgcQ7bGif6JcjrdAfs8lFF8unXZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b219a70b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

policies-community-scrure.pages.dev/citutbesar87/3.css

188.114.96.1

200 OK

54 kB

URL GET HTTP/3
policies-community-scrure.pages.dev/citutbesar87/3.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://policies-community-scrure.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectpolicies-community-scrure.pages.dev
FingerprintAD:8F:D3:46:44:2B:6C:60:98:66:AD:93:FB:B1:90:52:EE:6B:1E:3B
ValidityMon, 25 Mar 2024 12:45:47 GMT - Sun, 23 Jun 2024 12:45:46 GMT

File type
ASCII text, with CRLF line terminators
Size
54 kB (53499 bytes)
Hash
1e8adfd0cedee04d1a1a30d82a2c2978
6d0ec04f59c0ed2cfcd4864c730a2639610a2d7d
d79aaf3f68954b2ff64615055ddd7d35bc415fb8f36c1e3702316de1cf90c512

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Facebook
OpenPhish	phishing	Facebook, Inc.
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /citutbesar87/3.css HTTP/1.1
Host: policies-community-scrure.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community-scrure.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:04 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1f3f4a99a9e1db2e6dede173e8b8cc6f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tnwfpSHcyF96l1LY9YphbItrbc6yIWrHFjN5TliSs%2FhdqVKJv%2B78O76TKGucljbPUgNizHoxvPKQHKAUDgk0Ru561kzmfUahg4Amk4a7sZEpHDdfgmaFfr7W9WRAKO9RXZzExW6ajhSoA7Fdc0uHgyh3HyMK4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c0b068cc0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (12)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size