| cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js | 151.101.65.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js IP151.101.65.229:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash2faceb2d3db75ced808545e78fab94ed c663baa051856b64d746629a961e23bbf0fbaf8c c0c09020adb6f602b16d48374166b9e38ca92383a81650b6a9097c43cc43f31f
GET /npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.2.0
x-jsd-version-type: version
etag: W/"137ae-xmO6oFGFa2TXRmKalh4ju/D7r4w"
content-encoding: br
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:55:54 GMT
age: 10994104
x-served-by: cache-fra-eddf8230139-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24474
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css | 151.101.65.229 | 200 OK | 30 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css IP151.101.65.229:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65305) Hashf1a8fe9e98944b9d682ec5c3efac8f17 633e9b216d60d40eab6873175134e935b554f891 ed959b654022f7bae48ab9380dc129e065833e45a944c70d684c971ac3578cb8
GET /npm/bootstrap@5.2.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.0
x-jsd-version-type: version
etag: W/"2f88b-Yz6bIW1g1A6raHMXUTTpNbVU+JE"
content-encoding: br
accept-ranges: bytes
date: Fri, 19 Apr 2024 10:55:54 GMT
age: 18350951
x-served-by: cache-fra-eddf8230090-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30275
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/main2.css | 172.67.201.234 | 200 OK | 1.8 kB |
URL GET HTTP/3nateahstudios.com/main2.css IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeassembler source, ASCII text Hash5586233f503a49f7f89ca961f68bd32d ff72e6b2e9c76c78682637f99bd9c7c8fd3069b2 ee7b43c33bf0a201d9a70934e8dfa025de2ca43e8409a725d5fa2ce49be52688
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /main2.css HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:55:54 GMT
content-type: text/css
cache-control: max-age=31536000
last-modified: Mon, 29 Aug 2022 19:08:10 GMT
etag: W/"09c4addabbd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=31uoKqjUPgJFFfAdf10lmvyqtLe6xZuUgjXzk%2BiOFu8DIwEm9P%2Fncv%2BERucGiBz2dVh0tP659Mj1FNki3BwXtc1ALBoKGDZX%2Bv6EXcp69S%2FGCFXXuvc24d0cMGMjPYFDTx9vIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c5d6e9ca55690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-font-face.min.css?token=5956274f26 | 172.67.139.119 | 200 OK | 8.4 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-font-face.min.css?token=5956274f26 IP172.67.139.119:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (1560) Hash9c9f596493867f0e7ef5f9fe99103fce 12746a89a4f6e62240231ca23c8087e6430188ac 9699b18200a9d40ed7859411c33cfa2194174a4746d466123107f888d93dc878
GET /releases/v6.5.2/css/free-v4-font-face.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:55:55 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"9c9f596493867f0e7ef5f9fe99103fce"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jBGwnAFTSWAEoVlKCBpAlJUIEXaCVSQl2Vm88my8YbOejcOb3898dQ==
age: 56787
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q%2BJ%2BNaxebo489AJ3chZ0JAED%2Bqp%2BzUsTbj1PKhR05dkfg58keNpPtBWk9HoA0uwE%2FJ9rLaLdVTY6odrIcHuBpWiaLx3x%2Fcdzwqdtmr0CCOI4Mfselb3olGllMWokNVhrsvDk2gfJmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c5d726ad7b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/favicon.png | 172.67.201.234 | 200 OK | 18 kB |
URL GET HTTP/3nateahstudios.com/favicon.png IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typePNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced Hashef8817a9c3c8a5de3a566f1f928a05eb 601ad13466371386d29e89c63914aaa969c39f02 ae77cc7f100196cf21058c6a6ab1da6832fbc8a9a3cbbcb6958bbfb2dd8223ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.png HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 10:55:55 GMT
content-type: image/png
content-length: 18425
cache-control: max-age=31536000
last-modified: Sat, 20 Aug 2022 10:59:04 GMT
etag: "0c78dc83b4d81:0"
x-powered-by: ASP.NET
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QOndG18Fzy6dYZNCyYUQ78gxivaWdbTyANQ%2F1s%2FvxSF171euJJ9pULnJwTRGJV%2BNISEhbAXwRDvrfrhCy680f8y4mt7li%2FUg1RW6kYNV1IYG49TK2Hx38CJDAIH1A5NT%2BLB5pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c5d7359915690-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-shims.min.css?token=5956274f26 | 172.67.139.119 | 200 OK | 16 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-shims.min.css?token=5956274f26 IP172.67.139.119:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (27377) Hash940b066040a876fa1dc7b2ee2d222a58 64b2aea0b4d60d879d4ff7540192a906ffc0fd92 f4e953827930889e844103c3a6771bd2e9de17d091b36378c40362271858e075
GET /releases/v6.5.2/css/free-v4-shims.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:55:55 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"940b066040a876fa1dc7b2ee2d222a58"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SEmxT1waYplKzlki3tQWfsBXwblkF8KnCCIWHy1lgXM7QKIlqmmFvw==
age: 56787
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RVLHwvwACUq6isomBJzOZ%2BUUukwufrN8rJLZzf3K2NdMxHmqW7EwVqihV%2BfXh8y%2BNw11HPwDDErffakKnYCDIisouC%2BUvs4H6Xx9FYxguqqtGfN8JwiOIR4saN8R70nL0fmtjo15wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c5d726ad2b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/js/app.js | 172.67.201.234 | 404 Not Found | 1.2 kB |
URL GET HTTP/3nateahstudios.com/js/app.js IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeHTML document, ASCII text, with very long lines (1323), with no line terminators Hashf5064cd10293c25f15ab1c0a2aeade6b b54330652c047a485de5304d6418ea3d5d552d85 e38cefce8d4330e6ee50a34f59229388ea75af218645c21cbffbe9a027ab3f22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/app.js HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 10:55:55 GMT
content-type: text/html
cache-control: max-age=14400
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HxqJOkJsUzBL9INYlNhSQ68dnPEHlizhRDsKgrAtN5itOfeuePsTZ%2B2kDfLkpckRKb9uu9STo6z8zaBcM06N0TTLIK%2BEu8w%2BVdgWoTASLp6t0AFrIeeUpSJUN7d%2BAa%2BDqvuCmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c5d72487d5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nateahstudios.com/login.php | 172.67.201.234 | 200 OK | 3.1 kB |
URL User Request GET HTTP/2nateahstudios.com/login.php IP172.67.201.234:443
CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3306), with no line terminators Hash2f51990394d2b20c23f03287c57e4267 de7c5c717d81bc499b942820b9880b27766b58f8 603635ce35d9e6f3b9ff887f63cbccf4f8daa6541602bdcd625433b223c7d0fd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login.php HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:55:54 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache
vary: Accept-Encoding
x-powered-by: PHP/7.4.30, ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kRdFy3Ds6BMR1KYLhwIyfsx3YbtxdY2O3Q6N%2BzNnumKiJlA7Q8a4zm1q6ibQ5zCSnvGBCIsUYVYI%2BzJsrxo97kFjj%2BYW44jsLcWN1HLqvbkGLRiRiCwNUrdw2g3K4EVhcVb4dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c5d6b9803569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kit.fontawesome.com/5956274f26.js | 104.18.40.68 | 200 OK | 12 kB |
URL GET HTTP/2kit.fontawesome.com/5956274f26.js IP104.18.40.68:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (11461) Hash65015d72203a686cfd37fcb1fa64c47d de9ddeddee723f4407ae33a532d0dd82e9012adc 686de43abc60c34bc518feb33c800b8e99c6b510b665bd295b62cd71e85996a2
GET /5956274f26.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:55:55 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F8epI_RysLlJEJw-ikVC
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 876c5d6eadd2568e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v5-font-face.min.css?token=5956274f26 | 172.67.139.119 | 200 OK | 823 B |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v5-font-face.min.css?token=5956274f26 IP172.67.139.119:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (845), with no line terminators Hashd8a0274a5097af25642c9310d6d4bb3e 61512d739400e60d9360863446eaf008395859fb 84f5ae05668bcfe4bd7447d5035e909686423e998d8dfc2c96789875ef78cdd3
GET /releases/v6.5.2/css/free-v5-font-face.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:55:55 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"a3d53e21a02e37af6cbc00ac63b3cc1e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bPLykxUBvu67DR86fGktWtseITFcqUukg5gnN-tkl215r8m3YHjSGg==
age: 56787
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GSC%2FplRiqYeAjfhTJ7BYuUG3vFfdUxfVqDNxUnsNfnQgeh5%2FCVWYI6UrFAzZ7bADl6xOFzFTaxAdM2crzFvVNPk6ef3q5NzuXkhzL55zfF2YisYlgmMsc7yJWmTJr8SGyf6yElF2Ew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c5d726aceb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.pinimg.com/originals/0d/44/56/0d4456dd552694a7d6479b2c1201ee98.png | 151.101.236.84 | 200 OK | 7.7 kB |
URL GET HTTP/2i.pinimg.com/originals/0d/44/56/0d4456dd552694a7d6479b2c1201ee98.png IP151.101.236.84:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerDigiCert Inc Subject*.pinterest.com Fingerprint4D:02:6D:A8:DF:FA:2E:1C:D3:43:46:EF:CF:92:F1:7A:41:8F:BA:0B ValidityMon, 31 Jul 2023 00:00:00 GMT - Wed, 07 Aug 2024 23:59:59 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Hashd3974a8af095095b02204c77253512aa d2dce6dc742ce3ffc094242082d628da17291256 7a2143d837bf7541a75d91e5599833f4b20e9a3bd9bce619caf5dc9187f1803d
GET /originals/0d/44/56/0d4456dd552694a7d6479b2c1201ee98.png HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-replication-status: COMPLETED
etag: "d3974a8af095095b02204c77253512aa"
x-amz-server-side-encryption: AES256
content-type: image/png
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600
date: Fri, 19 Apr 2024 10:55:55 GMT
content-length: 7745
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/js/app.js | 172.67.201.234 | 404 Not Found | 1.2 kB |
URL GET HTTP/3nateahstudios.com/js/app.js IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeHTML document, ASCII text, with very long lines (1323), with no line terminators Hashf5064cd10293c25f15ab1c0a2aeade6b b54330652c047a485de5304d6418ea3d5d552d85 e38cefce8d4330e6ee50a34f59229388ea75af218645c21cbffbe9a027ab3f22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/app.js HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 10:55:54 GMT
content-type: text/html
cache-control: max-age=14400
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FC5WsgcWLP9C%2FJCtjD3zUlNXHKZPHAykR1uPmEc%2F2V%2Fyunx%2B%2BO6KS7iNuL%2FMZ2Fj6%2FIpu55UDYEzANkaYf%2B6RD1i%2BSn6Wvvum7OPO6srhIXBjVDLwxM8vFCZPT5m5MItH9Yjdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876c5d6e9cac5690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free.min.css?token=5956274f26 | 172.67.139.119 | 200 OK | 104 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free.min.css?token=5956274f26 IP172.67.139.119:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (65321) Size104 kB (103541 bytes) Hash7f29cd8c97789aa298af8c61623ca28b af8109e0e5c8bb2c1c3ab44ba7b5d25900ca454a 3e9c73fa687cd4110688668977a7caa87f5a1dee0d11f03687bd4871deedf1c1
GET /releases/v6.5.2/css/free.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 10:55:55 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"7f29cd8c97789aa298af8c61623ca28b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t4mRXPdpXgK5TijlfFH-BGcW_hL9n7tN-YHlPJrfOVi35ZPM7eK1VQ==
age: 56787
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BhdTT1w3Z2Mx20SLvjniqfsOR8prj0euyyUy8hZ1dNfUew%2FmWOiPOnjnULknDsfjplo33KWWV9IeFlaxwal0296D42MLiiwhIcBVl48l7uTE2MWg7EjWqw7XXeNHvqfeIUHaz3ReJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876c5d725abfb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|