| nocodeform.io/assets/logo.png | 188.114.96.1 | | 19 kB |
URL nocodeform.io/assets/logo.png IP188.114.96.1:0
File typePNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced Hashf2aa8fb62aad88f711e4bde928703e20 f058796691a84ca9c2a8d43fd0c5dfb9fda6958b d4c969e8598b897b8e45b25e7a68beec4a837445c093e3c4c7ad14470176340a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/logo.png HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: image/png
content-length: 18846
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
content-disposition: inline; filename="logo.png"
etag: W/"d4c969e8598b897b8e45b25e7a68beec4a837445c093e3c4c7ad14470176340a"
strict-transport-security: max-age=63072000
x-matched-path: /assets/logo.png
x-vercel-cache: HIT
x-vercel-id: arn1::chmgv-1713107235689-123ea444fad2
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8HvUFiTzZXnNjiRat2rsVFnDNmBTgegOZZVdb31CSt6aNZ61SnHr0mxNrZ6fVe73KOZMgPcoB4FmAI1IBASbE19gvuEF1YlrkeWeI93eVeyGlFPtz%2FJ0Lu9%2BURQideuk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e4a5693-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-84YNES42L1 | 142.250.74.168 | 200 OK | 93 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-84YNES42L1 IP142.250.74.168:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (3034) Hash46d8b627b51088cb0f5426ba46a9f55e 48c9c0bc4d1e5f07ef74df561ec3797b0ce9119a f096400aedef9ac54bfeac23e800951b62f2efb5fac15ad09d7f0aeebe3d0761
GET /gtag/js?id=G-84YNES42L1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 23:41:38 GMT
expires: Thu, 25 Apr 2024 23:41:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 92851
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nocodeform.io/api/auth/session | 188.114.96.1 | 200 OK | 2 B |
URL GET HTTP/3nocodeform.io/api/auth/session IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hash99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /api/auth/session HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: application/json; charset=utf-8
content-length: 2
age: 0
cache-control: public, max-age=0, must-revalidate
etag: "2-vyGp6PvFo4RvsFtPoIWeCReyIC8"
set-cookie: __Host-next-auth.csrf-token=4801244544bc61e05978ae762af140a1a191cdee8e9556b9b51750715e6f3fdd%7C0d286075aa3401d3c163ddd97a57c290f0747f6cb92b04d68cafb1835c1d3e16; Path=/; HttpOnly; Secure; SameSite=Lax
__Secure-next-auth.callback-url=https%3A%2F%2Fnocodeform.io; Path=/; Secure; SameSite=Lax
strict-transport-security: max-age=63072000
x-matched-path: /api/auth/[...nextauth]
x-powered-by: nocodeform.io
x-vercel-cache: MISS
x-vercel-id: arn1::iad1::vwb6f-1714088498328-b3c886c5d708
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=INfop3WKGa50l%2BQQsV4G7ql%2FbW2he91R3OtiXRy6H9IBb7YopmxIJ5rYIKppO%2FLTbgP4Ibz%2Bpfvmh0rkz0w6bzDb43lWjfQ16hKkTTpcKWfj70QrRLtoxRbmbW%2B6VV4M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22f5a7f065693-OSL
alt-svc: h3=":443"; ma=86400
|
|
| rsms.me/inter/font-files/InterVariable.woff2?v=4.0 | 104.21.234.235 | 200 OK | 346 kB |
URL GET HTTP/3rsms.me/inter/font-files/InterVariable.woff2?v=4.0 IP104.21.234.235:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerLet's Encrypt Subjectrsms.me Fingerprint50:5A:A9:41:05:90:1B:67:37:D9:4D:C6:CC:FC:1B:E5:5A:5E:72:88 ValidityThu, 25 Apr 2024 07:54:14 GMT - Wed, 24 Jul 2024 07:54:13 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 345588, version 4.0 Size346 kB (345588 bytes) Hash499fcada6ddb2c38718c2c16a190d639 9ef5d7d28925b9e0213f67b8105870e0afade711 8af7bd5b545567adffb3dfceb5bedb353a522d7bf1b3a2b8af7b6064156babc0
GET /inter/font-files/InterVariable.woff2?v=4.0 HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nocodeform.io
DNT: 1
Connection: keep-alive
Referer: https://rsms.me/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: font/woff2
content-length: 345588
x-origin-cache: HIT
last-modified: Mon, 25 Mar 2024 16:53:19 GMT
access-control-allow-origin: *
etag: "6601abff-545f4"
expires: Wed, 17 Apr 2024 03:10:16 GMT
cache-control: max-age=2678400
x-proxy-cache: HIT
x-github-request-id: 2846:0E80:89CD03F:8C1D422:6601ACBC
via: 1.1 varnish
age: 4784
x-served-by: cache-lcy-eglc8600069-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1711406328.787230,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 7ac04648e38412b94335b282bf1bafb99cad6af9
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J5ihCSPpj2aQFMj9rUMDaa%2BGYeCmrep4h3Lm68pf69HkBtnqKnVCAwFsmkXyBRSdG7BKdkclNRjWySYGM0EIkjcxMJq0tR2m0lpa2XKaq3%2FXLmcs3ywoxRtQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22f5ad9da71f2-LHR
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/favicon-16x16.png | 188.114.96.1 | | 961 B |
URL nocodeform.io/favicon-16x16.png IP188.114.96.1:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hashda1fa045f6dd6db952c543291ac0603c 205b6cbcc448bf4023574f6aede8d1b8ad392d07 36b35ac57b98fd1232f5426deacace17e913a4ca7d8e01a69b7db2e9fde6769e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon-16x16.png HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Cookie: _ga_84YNES42L1=GS1.1.1714088498.1.0.1714088498.0.0.0; _ga=GA1.1.646473948.1714088498; __Host-next-auth.csrf-token=4801244544bc61e05978ae762af140a1a191cdee8e9556b9b51750715e6f3fdd%7C0d286075aa3401d3c163ddd97a57c290f0747f6cb92b04d68cafb1835c1d3e16; __Secure-next-auth.callback-url=https%3A%2F%2Fnocodeform.io
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: image/png
content-length: 961
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
content-disposition: inline; filename="favicon-16x16.png"
etag: W/"36b35ac57b98fd1232f5426deacace17e913a4ca7d8e01a69b7db2e9fde6769e"
strict-transport-security: max-age=63072000
x-matched-path: /favicon-16x16.png
x-vercel-cache: HIT
x-vercel-id: arn1::js7f7-1712820060597-387c5de6df5c
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RzArzB1upD8C2nAW9LabjEPEyyzki2KYCt3pLk4M58A80hTd8f8Hsa911gjMbLq1BSM%2Buds1xOSMbIaZuSpzJDLL07z6mVnlD%2B53hBlVM9LKXMq871Q2h1di26OH7wQ3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f5bcfb95693-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/apple-touch-icon.png | 188.114.96.1 | 200 OK | 6.0 kB |
URL GET HTTP/3nocodeform.io/apple-touch-icon.png IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash0bb0f161dbf8508acca71c7a3c5ad98e f75d09f0ceec994406399128ac830cd0681c9375 3641b7cb8d5d19cde3d323e57fe4d89bc6fe176083eeb290f52f30973843106b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /apple-touch-icon.png HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Cookie: _ga_84YNES42L1=GS1.1.1714088498.1.0.1714088498.0.0.0; _ga=GA1.1.646473948.1714088498; __Host-next-auth.csrf-token=4801244544bc61e05978ae762af140a1a191cdee8e9556b9b51750715e6f3fdd%7C0d286075aa3401d3c163ddd97a57c290f0747f6cb92b04d68cafb1835c1d3e16; __Secure-next-auth.callback-url=https%3A%2F%2Fnocodeform.io
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: image/png
content-length: 6045
access-control-allow-origin: *
cache-control: public, max-age=14400, must-revalidate
content-disposition: inline; filename="apple-touch-icon.png"
etag: W/"3641b7cb8d5d19cde3d323e57fe4d89bc6fe176083eeb290f52f30973843106b"
strict-transport-security: max-age=63072000
x-matched-path: /apple-touch-icon.png
x-vercel-cache: HIT
x-vercel-id: arn1::prkzs-1714088498565-a46707e4b5b7
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3lrnMctglrixGVcaQIcXdibTTGVkJtWok2JIJ200rzMMnpC6TI4TG0KhKLrJxRa8aI%2Bg%2B61UO%2BoNeOnzyxxWJdK4vBZr4xbIYS2woiSBu3o1d0mF8%2BRT6VFtUHICeMQ%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f5bcfb85693-OSL
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/chunks/webpack-99e4e9ea7e1cf4155345.js | 188.114.96.1 | 200 OK | 1.4 kB |
URL GET HTTP/3nocodeform.io/_next/static/chunks/webpack-99e4e9ea7e1cf4155345.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1756), with no line terminators Hash13240a54e7b08d770f595004eb0d04f2 2dac62a3cf104dd96aeeb308d6f72b07f29c812b ee2d202f2a4a44c7adb9ce8deb854b71b88a3d4c9694d2bda2081081bd867ddc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/webpack-99e4e9ea7e1cf4155345.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:37 GMT
content-type: application/javascript; charset=utf-8
age: 13018983
cache-control: public, max-age=31536000, immutable
cf-bgj: minify
access-control-allow-origin: *
content-disposition: inline; filename="webpack-99e4e9ea7e1cf4155345.js"
etag: W/"ee2d202f2a4a44c7adb9ce8deb854b71b88a3d4c9694d2bda2081081bd867ddc"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/webpack-99e4e9ea7e1cf4155345.js
x-vercel-cache: HIT
x-vercel-id: arn1::24wkr-1701069514192-691f78372b32
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JfbBUmB4gqVqYnlAUpjhCOuIh1cVqP%2BpflBZRiAwc52%2FQVoGSE3DWKuH7Wmp0luNDwBiR%2FYEP%2FvNUx3G9sZkPv9Ui2vexQQBhJ3QcYMI7GFLpTMoVUvsiFCz8gNcpUhW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e415693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/chunks/pages/_app-a580055d5182a3fdf0a8.js | 188.114.96.1 | 200 OK | 8.2 kB |
URL GET HTTP/3nocodeform.io/_next/static/chunks/pages/_app-a580055d5182a3fdf0a8.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (22734), with no line terminators Hash3e2b63b1b2112bb76a2c26df1b08e872 05277dd7da067a01149639a26fbe54e66ddf7293 6b3cd82288c81ce58c46d576430e69816e1e5bf3c42d39d81a32666468bb7e80
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/_app-a580055d5182a3fdf0a8.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:37 GMT
content-type: application/javascript; charset=utf-8
age: 8827335
cache-control: public, max-age=31536000, immutable
cf-bgj: minify
access-control-allow-origin: *
content-disposition: inline; filename="_app-a580055d5182a3fdf0a8.js"
etag: W/"6b3cd82288c81ce58c46d576430e69816e1e5bf3c42d39d81a32666468bb7e80"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/pages/_app-a580055d5182a3fdf0a8.js
x-vercel-cache: HIT
x-vercel-id: arn1::94q7w-1705261162608-a49a03f2484a
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4fs8FrhgYDFJu3yiKmPDHE64qwdZcv8%2BcfE6wOkEb%2BsIjdGnLCjfJWANh0aKslKloI9oXG12IhBEdxrZIcYCi3kCEnrg6E%2FL3SbhMSQ5qR4pc4HWaATM4eu3QBf6pLeo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e445693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| rsms.me/inter/inter.css | 104.21.234.235 | 200 OK | 7.1 kB |
IP104.21.234.235:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerLet's Encrypt Subjectrsms.me Fingerprint50:5A:A9:41:05:90:1B:67:37:D9:4D:C6:CC:FC:1B:E5:5A:5E:72:88 ValidityThu, 25 Apr 2024 07:54:14 GMT - Wed, 24 Jul 2024 07:54:13 GMT
File typeASCII text, with very long lines (7266), with no line terminators Hash18aa4aed42641fc0e779540d5f11fd32 c1802bc8ce952d33329e07ae8b6df9f36bfbff3e c7830e6d9712bcbd4b812111c9100934f7065a8cc7f41dbfe95c342a02ce95f2
GET /inter/inter.css HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Mon, 25 Mar 2024 16:53:19 GMT
access-control-allow-origin: *
etag: W/"6601abff-1b8d"
expires: Sat, 06 Apr 2024 00:44:13 GMT
cache-control: max-age=14400
x-proxy-cache: MISS
x-github-request-id: 807C:212527:7F7EDE:814CCD:6601ACC9
via: 1.1 varnish
age: 580
x-served-by: cache-lcy-eglc8600071-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1711385989.058468,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 09e62dfab06ceadf9b417c99a79910da5dc59a87
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mwfKG%2BR9menkNOqB6KwIVVOrPaSsUt1pud4C7i%2BMk3Ydve7k6F0JSSGIYTEG8WizU%2BD3X76zJ5QxgBOxn5yZWBAPkOPn0cXMBIdfcqGewJvWD5BOoroOtAgr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a22f597abedce3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nocodeform.io/_next/static/css/529a795814b5ff3305a4.css | 188.114.96.1 | 200 OK | 54 kB |
URL GET HTTP/3nocodeform.io/_next/static/css/529a795814b5ff3305a4.css IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (54131), with no line terminators Hash603dd27a611fb1ca7af23d49737340f5 38515796b5c6e91228c7153bb59997495667858d 672661fd11bb5e546bc7bd815408eb270a658e57adf2a33d50efca825554cacd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/529a795814b5ff3305a4.css HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:37 GMT
content-type: text/css; charset=utf-8
age: 7996984
cache-control: public, max-age=31536000, immutable
cf-bgj: minify
access-control-allow-origin: *
content-disposition: inline; filename="529a795814b5ff3305a4.css"
etag: W/"14e5de32954dd77263f463e87b1efdcd5435fc52bdcd4d555391c160c5a6fe4b"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/css/529a795814b5ff3305a4.css
x-vercel-cache: HIT
x-vercel-id: arn1::gcr94-1706091512994-233aa9520262
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PW4vClALQHEpo4Vh9uyWHB181TEg0HGfGTyeNDGVmSjMJlDzdpzLZiowaJX854lOmIUTEr69adCtHgkTRv2HD%2BVwvyc%2FpBHOIRvv66C3B0%2FlnFZNmMOfSstbbPr2iDvx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e3f5693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/chunks/519-ca2f19382f10defc38a2.js | 188.114.96.1 | 200 OK | 34 kB |
URL GET HTTP/3nocodeform.io/_next/static/chunks/519-ca2f19382f10defc38a2.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (34328), with no line terminators Hashf5e5308de3a560e3e933e87843395579 b620d9c3503f55fa62af3d7342cfa58e0677a6af 9d4f48192666a86d3997a3990cef6b02b9f0f3d02051e84ac4dc59d148a929cb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/519-ca2f19382f10defc38a2.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="519-ca2f19382f10defc38a2.js"
etag: W/"9d4f48192666a86d3997a3990cef6b02b9f0f3d02051e84ac4dc59d148a929cb"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/519-ca2f19382f10defc38a2.js
x-vercel-cache: HIT
x-vercel-id: arn1::prkzs-1714088498022-a7efc6f13a32
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PiwplwNEvsyLr6CjscXZhzfHPvqZoIYISfEATpva8FrqiOIPChntLxXCi7FsZXe%2Fi3hTkHbPicLJdSCVkZYXcOTLLI%2FPo3qJO5Uigv4qlfOKb6K8%2F7M8IN%2Bmotk%2FoUEq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e455693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/chunks/pages/forms/%5Bid%5D/submissions-0f2a13589288f16f48d7.js | 188.114.96.1 | 200 OK | 12 kB |
URL GET HTTP/3nocodeform.io/_next/static/chunks/pages/forms/%5Bid%5D/submissions-0f2a13589288f16f48d7.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (11831), with no line terminators Hash924092f7bc21c678f8143d586dc6e63d c23180dde373fc184d2ed496d0105837047a1293 f733331a142117611e3b1412fd0ce4e5c99cccf56c95b3c344e0971de6aa16c0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/forms/%5Bid%5D/submissions-0f2a13589288f16f48d7.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, immutable
content-disposition: inline; filename="submissions-0f2a13589288f16f48d7.js"
etag: W/"f733331a142117611e3b1412fd0ce4e5c99cccf56c95b3c344e0971de6aa16c0"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/pages/forms/%5Bid%5D/submissions-0f2a13589288f16f48d7.js
x-vercel-cache: HIT
x-vercel-id: arn1::gkhpq-1714088498023-ec5bef3a00fa
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3%2B%2BvDVp85n3YbjcuaR2ve%2BRnLCuJ4XuW3593BSy5ON2XM3MKnJ2DVu2rtzZGfDFbY6ICUzSMcES%2BMDtaX3SC5jHjH6uy8mlYWCBHPjqToST7lGBy9%2BbokbjU4HoOJw2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e475693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/jnUPDMhm7YJHC1jhmw-Rq/_buildManifest.js | 188.114.96.1 | 200 OK | 5.3 kB |
URL GET HTTP/3nocodeform.io/_next/static/jnUPDMhm7YJHC1jhmw-Rq/_buildManifest.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (5543), with no line terminators Hashd41cd3bb2743b84e4d510db32ea5f8dc ba354c28bff61230d610940a92b11d8ab413a7b5 863f234268e8451b763b18bd2867776d95d770e2e87ac4807cbff13f346c61ef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/jnUPDMhm7YJHC1jhmw-Rq/_buildManifest.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:37 GMT
content-type: application/javascript; charset=utf-8
age: 652476
cache-control: public, max-age=31536000, immutable
cf-bgj: minify
access-control-allow-origin: *
content-disposition: inline; filename="_buildManifest.js"
etag: W/"2f1c625cd698baeb2293abb1c56083f48a6be4d7bf91c2430841ef62794e0680"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/jnUPDMhm7YJHC1jhmw-Rq/_buildManifest.js
x-vercel-cache: HIT
x-vercel-id: arn1::qhnz7-1713436021705-7231caa7dfb3
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cVfeBeC6wWsk%2BlVuDFSieHkbn5ha9euJTAUmbBFtXidBqYHKPwjRsyq5jCGiArd0kXDbmX3XDeBzhdMtpvlQVK3nYUjrWoO6TownYFq6%2BSpXmq0%2FJQhERc32pWnvTAa5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e485693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/jnUPDMhm7YJHC1jhmw-Rq/_ssgManifest.js | 188.114.96.1 | 200 OK | 244 B |
URL GET HTTP/3nocodeform.io/_next/static/jnUPDMhm7YJHC1jhmw-Rq/_ssgManifest.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash3a3ca0e4cde34a002fc20d4182c46a7e 8cfec99941624285427a1d2b2c4b57b2299571c4 eaf4b06727861688d1fb67e1f397dc4e2d0cace688d54d6c3c556604bbffa031
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/jnUPDMhm7YJHC1jhmw-Rq/_ssgManifest.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:37 GMT
content-type: application/javascript; charset=utf-8
age: 377723
cache-control: public, max-age=31536000, immutable
cf-bgj: minify
access-control-allow-origin: *
content-disposition: inline; filename="_ssgManifest.js"
etag: W/"ffad5b69b4dd1021d82fa9f55baefb311d7e55594a6d25cf447e5663cc31af33"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/jnUPDMhm7YJHC1jhmw-Rq/_ssgManifest.js
x-vercel-cache: HIT
x-vercel-id: arn1::zhslm-1713710774621-254a348c17b8
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zW8dHuQ6UpMBxIFnSfLM2PEoorcdrdoLbaZj%2F1gvMkcGABSdfvNlC1UPtGOWSEMeP6hKBaabdfoG6zasUAqRRfzdg5tDE0s9Qx8nxTLnA2JnAAjjBe4ME5KI7YGktJXM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e495693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/chunks/framework-4d9b6b782f6ed2974932.js | 188.114.96.1 | 200 OK | 150 kB |
URL GET HTTP/3nocodeform.io/_next/static/chunks/framework-4d9b6b782f6ed2974932.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size150 kB (150468 bytes) Hashe1f92a0b806769078e853826a06cfe31 800f616d4f2cc1b40e5e78bff131e1f8e4b116cf ceb2f8cad22e179db68a6a35ed9230c5b943bd0daffea31ccff7e7769c3312f2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/framework-4d9b6b782f6ed2974932.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:37 GMT
content-type: application/javascript; charset=utf-8
age: 7996984
cache-control: public, max-age=31536000, immutable
cf-bgj: minify
access-control-allow-origin: *
content-disposition: inline; filename="framework-4d9b6b782f6ed2974932.js"
etag: W/"ceb2f8cad22e179db68a6a35ed9230c5b943bd0daffea31ccff7e7769c3312f2"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/framework-4d9b6b782f6ed2974932.js
x-vercel-cache: HIT
x-vercel-id: arn1::2z9hj-1706091512996-f39ac8a18680
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tSvfyFjMtsWIo3V4VbeIZ1H1CWzuzm6NiT1FJLffD7g1bLt38Z1jgeNG2Wp8WZAxpnmnYapHHqwMQbQ3Bh50gnHQ%2FI5lkG1iVT0zYSZ5DZB7cY2LbkWXZcJwsI3EskO5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e425693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nocodeform.io/_next/static/chunks/main-f7f8bb0ee4c6c4bf995b.js | 188.114.96.1 | 200 OK | 93 kB |
URL GET HTTP/3nocodeform.io/_next/static/chunks/main-f7f8bb0ee4c6c4bf995b.js IP188.114.96.1:443
Requested byhttps://nocodeform.io/f/660e8d937d98489332b29c6e CertificateIssuerCloudflare, Inc. Subjectnocodeform.io FingerprintC4:D1:4A:DE:AC:14:A1:4A:75:D7:25:0D:05:D2:56:27:1C:64:86:17 ValidityWed, 21 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashb38fb31b8e087e24d22d70761f2596d7 b3b4c519c5124651bf4510d483d16e0a24010a0f 718ca910142ba51a5be509a5e66606e423fed768e81270f5603bbdf5c75646a8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/main-f7f8bb0ee4c6c4bf995b.js HTTP/1.1
Host: nocodeform.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nocodeform.io/f/660e8d937d98489332b29c6e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 23:41:38 GMT
content-type: application/javascript; charset=utf-8
age: 652476
cache-control: public, max-age=31536000, immutable
cf-bgj: minify
access-control-allow-origin: *
content-disposition: inline; filename="main-f7f8bb0ee4c6c4bf995b.js"
etag: W/"718ca910142ba51a5be509a5e66606e423fed768e81270f5603bbdf5c75646a8"
strict-transport-security: max-age=63072000
x-matched-path: /_next/static/chunks/main-f7f8bb0ee4c6c4bf995b.js
x-vercel-cache: HIT
x-vercel-id: arn1::5zk7b-1713436021708-e1f4b162946a
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bNM0WNgZScJAbfGrkgtWGg8Dab3ezoo8vnUcfFfBBp2ER63TA5ewtYnzPlSrKzzT7S%2BvIR3F23572cUzJnY3AM80F0L0ncFP9ngzL9i1QcYTGahsU7tjRjZ0xVhNbFoh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a22f586e435693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|