| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js |  142.250.74.138 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.138:443
Requested byhttps://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:38:23 GMT
expires: Fri, 25 Apr 2025 17:38:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 16873
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/favicon.ico |  104.17.64.14 | 404 Not Found | 9.8 kB |
URL GET HTTP/2bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/favicon.ico IP104.17.64.14:443
Requested byhttps://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/ CertificateIssuerLet's Encrypt Subjectcf-ipfs.com Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14 ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT
Hash9aab865a376ea7cc05484c061c996b19 d23473ecd41c39d9d368ba3b3d32f9a77bd6d3cf df97a725aeda66a6d4c118480b97ae582799f70cbe9899b920aed68c43df1520
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Generic/Spear Phishing |
GET /favicon.ico HTTP/1.1
Host: bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/
Cookie: __cf_bm=Q38z8lUBK7QbdcLO8hwUK5LH2C7zQIUKaCUb13s6U3M-1714083575-1.0.1.1-RGeANtb5lGH.LuGb8wLE0Io1g5T6sTym1DjFExk0UFtnwxTDXJKKBCgP7vLpr0CijHutmWa7jhYmQ1DS_0W7NQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 22:19:36 GMT
content-type: text/plain; charset=utf-8
cf-ray: 87a1b7315af956bb-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: no-store
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-content-type-options: nosniff
x-ipfs-path: /ipfs/bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy/favicon.ico
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/ | 104.17.64.14 | 200 OK | 29 kB |
URL User Request GET HTTP/2bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/ IP104.17.64.14:443
CertificateIssuerLet's Encrypt Subjectcf-ipfs.com Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14 ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT
File typeHTML document, ASCII text, with very long lines (21422), with CRLF line terminators Hash8d8559aeb8f6e00befbc847cbf36b97d 510c7f49d73e2052075d4f4b34dbbc82d941999a 8e01aec4f652752f457eb472e1fd35ef8aaa3ed5fe96d8d568bebe679fec60c6
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Generic phishing | | urlquery | suspicious | Suspicious - Anti-debugging code | | OpenPhish | phishing | Generic/Spear Phishing |
GET / HTTP/1.1
Host: bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:19:35 GMT
content-type: text/html
cf-ray: 87a1b72adf8c56bb-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy/
x-ipfs-roots: bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy
set-cookie: __cf_bm=Q38z8lUBK7QbdcLO8hwUK5LH2C7zQIUKaCUb13s6U3M-1714083575-1.0.1.1-RGeANtb5lGH.LuGb8wLE0Io1g5T6sTym1DjFExk0UFtnwxTDXJKKBCgP7vLpr0CijHutmWa7jhYmQ1DS_0W7NQ; path=/; expires=Thu, 25-Apr-24 22:49:35 GMT; domain=.bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css | 104.18.10.207 | 200 OK | 160 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css IP104.18.10.207:443
Requested byhttps://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65326) Size160 kB (160302 bytes) Hash816af0eddd3b4822c2756227c7e7b7ee c470239d4c7db36d56dc3a74a080c62218c6edc4 5b0fbe5b7ad705f6a937c4998ad02f73d8f0d976fe231b74aef0ec996990c93a
GET /bootstrap/4.5.2/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:19:36 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"816af0eddd3b4822c2756227c7e7b7ee"
last-modified: Mon, 25 Jan 2021 22:04:11 GMT
cdn-cachedat: 07/07/2023 01:23:40
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1055
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 67b3c37b70a6f8a7212ad3e6c2ca30a3
cdn-cache: HIT
cf-cache-status: HIT
age: 13455496
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a1b72f9905b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css | 104.18.10.207 | 200 OK | 160 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css IP104.18.10.207:443
Requested byhttps://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65326) Size160 kB (160302 bytes) Hash816af0eddd3b4822c2756227c7e7b7ee c470239d4c7db36d56dc3a74a080c62218c6edc4 5b0fbe5b7ad705f6a937c4998ad02f73d8f0d976fe231b74aef0ec996990c93a
GET /bootstrap/4.5.2/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 22:19:36 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"816af0eddd3b4822c2756227c7e7b7ee"
last-modified: Mon, 25 Jan 2021 22:04:11 GMT
cdn-cachedat: 07/07/2023 01:23:40
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1055
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 67b3c37b70a6f8a7212ad3e6c2ca30a3
cdn-cache: HIT
cf-cache-status: HIT
age: 13455496
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a1b72f98ffb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/img/bg-image.jpg | 104.17.64.14 | 404 Not Found | 188 B |
URL GET HTTP/2bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/img/bg-image.jpg IP104.17.64.14:443
Requested byhttps://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/ CertificateIssuerLet's Encrypt Subjectcf-ipfs.com Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14 ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT
File typeASCII text, with no line terminators Hash379d3d9dde51aba293e0b256d3c4e05a 0b57765ad5f18beb4d292b3cf36735223db43203 5652d6ccb3c2e9a93d8a2321b422a6fa5b773f1aca11638bf3f0ff79c153eec5
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Generic/Spear Phishing |
GET /img/bg-image.jpg HTTP/1.1
Host: bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy.ipfs.cf-ipfs.com/
Cookie: __cf_bm=Q38z8lUBK7QbdcLO8hwUK5LH2C7zQIUKaCUb13s6U3M-1714083575-1.0.1.1-RGeANtb5lGH.LuGb8wLE0Io1g5T6sTym1DjFExk0UFtnwxTDXJKKBCgP7vLpr0CijHutmWa7jhYmQ1DS_0W7NQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 25 Apr 2024 22:19:36 GMT
content-type: text/plain; charset=utf-8
cf-ray: 87a1b730aa9456bb-OSL
cf-cache-status: EXPIRED
access-control-allow-origin: *
cache-control: no-store
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-content-type-options: nosniff
x-ipfs-path: /ipfs/bafkreieoagxmj5ssouxuk7vuolq72npprkvd5vp6s3mnk2f6xztz73dayy/img/bg-image.jpg
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|