| allfile.club/sound/connected.mp3 |  0.0.0.0 | | 0 B |
URL GET allfile.club/sound/connected.mp3 IP0.0.0.0:0
Requested byhttps://splendid-alpaca-b8df58.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sound/connected.mp3 HTTP/1.1
Host: allfile.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
|
|
| d1krgg9nh7vzxg.cloudfront.net/public/external/check.php?it=2620461&time=1741904434995 |  54.230.245.104 | 200 OK | 72 B |
URL GET d1krgg9nh7vzxg.cloudfront.net/public/external/check.php?it=2620461&time=1741904434995 IP54.230.245.104:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash0a492f87245353149c1ef00dd7368fda c1a81e939af6052d127f0e95294b3d595593c159 506bfca28c4b09ee4973d82fa91c3b8287919fd71162cf88cac0adabf32ec689
GET /public/external/check.php?it=2620461&time=1741904434995 HTTP/1.1
Host: d1krgg9nh7vzxg.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 72
date: Thu, 13 Mar 2025 22:20:35 GMT
x-powered-by: PHP/7.4.11
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MhBl3sz_aZFeqbTtxCoYBhEdxDbt2SP5XzOc8mxc6k_O8jKdmQjzkw==
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/images/1601679458ca239b294e26b16c00c564d78ac096af.png |  3.75.10.80 | 200 OK | 29 kB |
URL GET splendid-alpaca-b8df58.netlify.app/images/1601679458ca239b294e26b16c00c564d78ac096af.png IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typePNG image data, 864 x 231, 8-bit/color RGBA, non-interlaced Hash078fe6265efb0222157cb833abf38e6d fb8112b45b46a220dcaf2d31acd7d2898560774e 68b94cddb8850030b7d6c939f79126ae0652c496c1e1a4814d4d383fb563c215
GET /images/1601679458ca239b294e26b16c00c564d78ac096af.png HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "99ae57a8f708146f71ce2ab4dee432e0-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGK48G1DBB16FPAD3D11N
content-length: 28584
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/images/1636471537cc9c306f7c389c185189bf3daf7260c1.png | 3.75.10.80 | 200 OK | 70 kB |
URL GET splendid-alpaca-b8df58.netlify.app/images/1636471537cc9c306f7c389c185189bf3daf7260c1.png IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typePNG image data, 980 x 980, 8-bit/color RGBA, non-interlaced Hash466aa0c319116543f85d1538ae6acf29 c949165bb56c8bf5193aa5ee023ebd2c51a02741 e59b05fd8cb982e4eb8b2b6b633dab1c55780ee4767e2f32f7bf0f694e1e8db3
GET /images/1636471537cc9c306f7c389c185189bf3daf7260c1.png HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "de9737e73c225a6e2a342be1ae22268f-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGK4F3AWG2VA8PXW4XYGZ
content-length: 70215
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.14 | 200 OK | 53 kB |
URL GET www.google-analytics.com/analytics.js IP142.250.74.14:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerGoogle Trust Services Subject*.google-analytics.com FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File typeJavaScript source, ASCII text, with very long lines (2343) Hash575b5480531da4d14e7453e2016fe0bc e5c5f3134fe29e60b591c87ea85951f0aea36ee1 de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgac:225:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsgac:225:0
report-to: {"group":"ascnsrsgac:225:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgac:225:0"}],}
server: Golfe2
content-length: 20994
date: Thu, 13 Mar 2025 22:03:58 GMT
expires: Fri, 14 Mar 2025 00:03:58 GMT
cache-control: public, max-age=7200
age: 994
last-modified: Tue, 12 Dec 2023 18:09:08 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/js/865fdc3.js | 3.75.10.80 | 200 OK | 27 kB |
URL GET splendid-alpaca-b8df58.netlify.app/js/865fdc3.js IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1637), with CRLF line terminators Hasha8fa8210a7273d8bea2e79b152c1c07a eff0342417d3ddb17635d3aa9c6aad9295543cec a9d4334c28322a1d22ba952b8f375be6bb57a23ad4ad2c0b850edef4faa86507
GET /js/865fdc3.js HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 21984
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "5dbdea5c2e8a8b8442352f5c2b0385ca-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01JP8SGK4QFQVCS64KXHEBPZBZ
content-length: 7215
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j101&a=1701545929&t=pageview&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&ul=en-us&de=UTF-8&dt=Cash%20App%20Generator&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=KEBAAEABEAAAACAAI~&jid=266483993&gjid=1197841422&cid=1400680800.1741904432&tid=UA-168596379-1&_gid=1578918989.1741904432&_r=1&_slc=1&z=584635099 | 142.250.74.14 | 200 OK | 15 B |
URL POST www.google-analytics.com/j/collect?v=1&_v=j101&a=1701545929&t=pageview&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&ul=en-us&de=UTF-8&dt=Cash%20App%20Generator&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=KEBAAEABEAAAACAAI~&jid=266483993&gjid=1197841422&cid=1400680800.1741904432&tid=UA-168596379-1&_gid=1578918989.1741904432&_r=1&_slc=1&z=584635099 IP142.250.74.14:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerGoogle Trust Services Subject*.google-analytics.com FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File typeASCII text, with no line terminators Hash651f9f5e91eb8fa0e1179ded5e4763c4 b8e1d7f0f6d86f77bedd8c1a7eeca20743d179f0 6bc875e6a28138ebd5e6273272783a1ff58067e9bd8b923be32c6f779bc619a0
POST /j/collect?v=1&_v=j101&a=1701545929&t=pageview&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&ul=en-us&de=UTF-8&dt=Cash%20App%20Generator&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=KEBAAEABEAAAACAAI~&jid=266483993&gjid=1197841422&cid=1400680800.1741904432&tid=UA-168596379-1&_gid=1578918989.1741904432&_r=1&_slc=1&z=584635099 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://splendid-alpaca-b8df58.netlify.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://splendid-alpaca-b8df58.netlify.app
date: Thu, 13 Mar 2025 22:20:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgac:175:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsgac:175:0
report-to: {"group":"ascnsrsgac:175:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgac:175:0"}],}
server: Golfe2
content-length: 15
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/j/collect?v=1&_v=j101&a=1701545929&t=pageView&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&ul=en-us&de=UTF-8&dt=Cash%20App%20Generator&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=aEDAAEABEAAAACAAI~&jid=189968909&gjid=796193133&cid=1400680800.1741904432&tid=UA-85922709-2&_gid=1578918989.1741904432&_r=1&_slc=1&cd1=0&z=1682916641 | 142.250.74.14 | 200 OK | 15 B |
URL POST www.google-analytics.com/j/collect?v=1&_v=j101&a=1701545929&t=pageView&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&ul=en-us&de=UTF-8&dt=Cash%20App%20Generator&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=aEDAAEABEAAAACAAI~&jid=189968909&gjid=796193133&cid=1400680800.1741904432&tid=UA-85922709-2&_gid=1578918989.1741904432&_r=1&_slc=1&cd1=0&z=1682916641 IP142.250.74.14:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerGoogle Trust Services Subject*.google-analytics.com FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File typeASCII text, with no line terminators Hasha67f306660b1b28ebd7fd0340f700520 2c494b9e86a32a60c2433424ec5dc7e2dcc03867 2dfd50d663d9053459348c51f92aeb5e35da564a35be518705f81445b93816e1
POST /j/collect?v=1&_v=j101&a=1701545929&t=pageView&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&ul=en-us&de=UTF-8&dt=Cash%20App%20Generator&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=aEDAAEABEAAAACAAI~&jid=189968909&gjid=796193133&cid=1400680800.1741904432&tid=UA-85922709-2&_gid=1578918989.1741904432&_r=1&_slc=1&cd1=0&z=1682916641 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://splendid-alpaca-b8df58.netlify.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://splendid-alpaca-b8df58.netlify.app
date: Thu, 13 Mar 2025 22:20:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgac:175:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsgac:175:0
report-to: {"group":"ascnsrsgac:175:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgac:175:0"}],}
server: Golfe2
content-length: 15
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| d1krgg9nh7vzxg.cloudfront.net/public/clockers/HumanVerification/cssXF.css | 54.230.245.104 | 200 OK | 976 B |
URL GET d1krgg9nh7vzxg.cloudfront.net/public/clockers/HumanVerification/cssXF.css IP54.230.245.104:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typeASCII text, with very long lines (1044), with no line terminators Hash25027b68d066b433d7183a3dbfc5520f 3b219ad9f265d8c87b8ea22a634611fe2c61b5c1 2302d03d0b3caec1516169a53c192db8a48d92763ac0f84ab6ab5d7141e555a5
GET /public/clockers/HumanVerification/cssXF.css HTTP/1.1
Host: d1krgg9nh7vzxg.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 976
date: Thu, 13 Mar 2025 22:20:33 GMT
accept-ranges: bytes
server: Apache/2.4.48 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Thu, 17 Aug 2023 03:34:36 GMT
etag: "3d0-603161766241d"
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BPCnbyYpLBrVBq7Vr-hsxoWKL51glkvbEb3xu59pdZ3DhVdNZ9e8TA==
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-EGJDHVTBEL>m=45je53d0v9123052002za200&_p=1741904432699&gcd=13l3l3l2l2l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102813109~102814060~102825837&ul=en-us&sr=1280x1024&cid=1400680800.1741904432&frm=0&pscdl=noapi&_eu=ABAI&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&dt=Cash%20App%20Generator&sid=1741904433&sct=1&seg=0&_tu=wAQ&en=page_view&_fv=1&_ss=1&_ee=1&tfd=1646 | 216.239.34.36 | 204 No Content | 0 B |
URL POST region1.google-analytics.com/g/collect?v=2&tid=G-EGJDHVTBEL>m=45je53d0v9123052002za200&_p=1741904432699&gcd=13l3l3l2l2l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102813109~102814060~102825837&ul=en-us&sr=1280x1024&cid=1400680800.1741904432&frm=0&pscdl=noapi&_eu=ABAI&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&dt=Cash%20App%20Generator&sid=1741904433&sct=1&seg=0&_tu=wAQ&en=page_view&_fv=1&_ss=1&_ee=1&tfd=1646 IP216.239.34.36:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerGoogle Trust Services Subject*.google-analytics.com FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-EGJDHVTBEL>m=45je53d0v9123052002za200&_p=1741904432699&gcd=13l3l3l2l2l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102640600~102717422~102788824~102791784~102813109~102814060~102825837&ul=en-us&sr=1280x1024&cid=1400680800.1741904432&frm=0&pscdl=noapi&_eu=ABAI&_s=1&dl=https%3A%2F%2Fsplendid-alpaca-b8df58.netlify.app%2F&dt=Cash%20App%20Generator&sid=1741904433&sct=1&seg=0&_tu=wAQ&en=page_view&_fv=1&_ss=1&_ee=1&tfd=1646 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Thu, 13 Mar 2025 22:20:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:87:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:87:0
report-to: {"group":"ascnsrsggc:87:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:87:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/images/16348770448f7dcdea1b51ec4ab1d97b5a8abd5dc0.png | 3.75.10.80 | 200 OK | 9.8 kB |
URL GET splendid-alpaca-b8df58.netlify.app/images/16348770448f7dcdea1b51ec4ab1d97b5a8abd5dc0.png IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typePNG image data, 350 x 350, 8-bit/color RGBA, non-interlaced Hash2a5b56c8e7fde1a5d70bf266e78d1d5c 3995cddb5787f63909d71e303ce2bed4f1c05612 ad4787c0dd83b3f880083c5404f748eceb1dda91fe53bdcf0afe290ea5e9b346
GET /images/16348770448f7dcdea1b51ec4ab1d97b5a8abd5dc0.png HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "3e606527478a4013640e89ad8d8231c4-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGK4CKBN4JDA41VJJAAK0
content-length: 9809
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/images/1636472786ee1905a53e0b903bb72600a288d20d03.png | 3.75.10.80 | 200 OK | 49 kB |
URL GET splendid-alpaca-b8df58.netlify.app/images/1636472786ee1905a53e0b903bb72600a288d20d03.png IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typePNG image data, 794 x 794, 8-bit/color RGBA, non-interlaced Hash8b64575dddf267f9a0549adf587cf046 0106aee4c667c2abcd98ca33eec8fb248350134a 17c75e2e71a9b6ca2bd024f7cb0d5c13ebb53f1a1c319d3fdbbfaf79ab24c1a3
GET /images/1636472786ee1905a53e0b903bb72600a288d20d03.png HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "ddbffd50e41451d34be88decf14d374d-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGK4HN65EQXHW6GRH3NPF
content-length: 49131
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/js/jquery.min.js | 3.75.10.80 | 200 OK | 86 kB |
URL GET splendid-alpaca-b8df58.netlify.app/js/jquery.min.js IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32534) Hashe31f2d0947efc412a45953a105a16fd5 005ba58bdaada736b661a4c0eed9e8fef57448f1 504f27ee35a64f9ec6e2a683ac31cb1d81986602dce40e111ef62c89ce83ef9c
GET /js/jquery.min.js HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 21984
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "8ce3a6596e07cd3db9c0386c09f36ed6-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01JP8SGK4NQKKZDDTDZZS049D9
content-length: 29480
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/ | 3.75.10.80 | 200 OK | 45 kB |
URL User Request GET splendid-alpaca-b8df58.netlify.app/ IP3.75.10.80:443
CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 21984
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: text/html; charset=UTF-8
date: Thu, 13 Mar 2025 22:20:31 GMT
etag: "8e7fee3381d2d9d9db5cf0544cbcabaa-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01JP8SGJQ3SZZY26DHP4R07R98
content-length: 8130
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/images/1635653021ac61a7aa31f58b94c30339f142fa4242.png | 3.75.10.80 | 200 OK | 16 kB |
URL GET splendid-alpaca-b8df58.netlify.app/images/1635653021ac61a7aa31f58b94c30339f142fa4242.png IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Hash6ffe3b076d6484a5ecc44f0b30d3cbda a750bdb28bb1e1090d154ce659c5fe5d44e2f412 33339f3bc6836ed71dfd3e10d149b673d1f3fdc4f8bbc46226e04d43b4702ee7
GET /images/1635653021ac61a7aa31f58b94c30339f142fa4242.png HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/png
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "51488a35894d75b6f0d21094ba0435f6-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGK4KXZNBFZ4M1DMFV88E
content-length: 16335
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/js/analytics.js | 3.75.10.80 | 200 OK | 53 kB |
URL GET splendid-alpaca-b8df58.netlify.app/js/analytics.js IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2343) Hash575b5480531da4d14e7453e2016fe0bc e5c5f3134fe29e60b591c87ea85951f0aea36ee1 de36e50194320a7d3ef1ace9bd34a875a8bd458b253c061979dd628e9bf49afd
GET /js/analytics.js HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 21984
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "d6c36cca0d80caf82bcc5dc124bfdd8d-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01JP8SGK45BV41324ZWPVPEPBJ
content-length: 20541
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/fonts/Hgo13k-tfSpn0qi1SFdUfVtXRa8TVwTICgirnJhmVJw.woff2 | 3.75.10.80 | 200 OK | 14 kB |
URL GET splendid-alpaca-b8df58.netlify.app/fonts/Hgo13k-tfSpn0qi1SFdUfVtXRa8TVwTICgirnJhmVJw.woff2 IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14524, version 2.0 Hash16ddb1541046ada9b90cacf4adec839a 7346f70d00c734b1c4536a0c72ff8aa4ed49f667 d4911437335fe7ef206a68aa9ec2722381752db60a451c8223d141f79d3f3785
GET /fonts/Hgo13k-tfSpn0qi1SFdUfVtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Cookie: _ga=GA1.3.1400680800.1741904432; _gid=GA1.3.1578918989.1741904432; _gat=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 21981
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-type: font/woff2
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "1a12948db8606b34f60fa5dc30f4a752-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGKAGCXHXNKCQ3GSCMX2X
content-length: 14524
X-Firefox-Spdy: h2
|
|
| allfile.club/sound/click.mp3 | 0.0.0.0 | | 0 B |
URL GET allfile.club/sound/click.mp3 IP0.0.0.0:0
Requested byhttps://splendid-alpaca-b8df58.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /sound/click.mp3 HTTP/1.1
Host: allfile.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
|
|
| www.googletagmanager.com/gtag/js?id=G-EGJDHVTBEL&cx=c&_slc=1 | 142.250.74.168 | 200 OK | 317 kB |
URL GET www.googletagmanager.com/gtag/js?id=G-EGJDHVTBEL&cx=c&_slc=1 IP142.250.74.168:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerGoogle Trust Services Subject*.google-analytics.com FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File typeJavaScript source, ASCII text, with very long lines (5960) Size317 kB (317243 bytes) Hash105d4a454ae7996557eeeda10c6e4c7e 7332f18957001517496fb48629ceb1ad34faa68c abfbfd316e91e0fb58c7a2a2df23b69ca75f96bd7667bdcf1fec7862f17a72fe
GET /gtag/js?id=G-EGJDHVTBEL&cx=c&_slc=1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 13 Mar 2025 22:20:32 GMT
expires: Thu, 13 Mar 2025 22:20:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 111337
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/favicon.ico | 3.75.10.80 | 404 Not Found | 3.4 kB |
URL GET splendid-alpaca-b8df58.netlify.app/favicon.ico IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3585), with no line terminators Hash328deb485e9affe08064a8a1daa6f5cb 4983cb1671bcfe2855dd8ccf5d5026e0781a506a 99fe6b0a525d0a1688782167f4e37d02604235af52e4affc694cfec5b601e6f4
GET /favicon.ico HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga=GA1.3.1400680800.1741904432; _gid=GA1.3.1578918989.1741904432; _gat=1; PHPREFS=full; _gat_customTemplateGlobal=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: text/html; charset=utf-8
date: Thu, 13 Mar 2025 22:20:33 GMT
etag: 1726845091-ssl-df
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01JP8SGM1P90R6J2W82HEHQ44N
X-Firefox-Spdy: h2
|
|
| d1krgg9nh7vzxg.cloudfront.net/public/external/check.php?it=2620461&time=1741904450359 | 54.230.245.104 | 200 OK | 72 B |
URL GET d1krgg9nh7vzxg.cloudfront.net/public/external/check.php?it=2620461&time=1741904450359 IP54.230.245.104:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with no line terminators Hash0a492f87245353149c1ef00dd7368fda c1a81e939af6052d127f0e95294b3d595593c159 506bfca28c4b09ee4973d82fa91c3b8287919fd71162cf88cac0adabf32ec689
GET /public/external/check.php?it=2620461&time=1741904450359 HTTP/1.1
Host: d1krgg9nh7vzxg.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 72
date: Thu, 13 Mar 2025 22:20:50 GMT
x-powered-by: PHP/7.4.11
server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: av3fV0G_3gVfwfVprhFtXj789aGxVdEKuxfxxBgXw7k7oC4_eW0AJQ==
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/fonts/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2 | 3.75.10.80 | 200 OK | 15 kB |
URL GET splendid-alpaca-b8df58.netlify.app/fonts/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2 IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14596, version 2.0 Hashbb474f16c9f76f522d656d66aa4a220e 55161308d29d91ec21aadf6f63da390a902c053b 01a44f86a9b361ef0d3ad5e4f9f0f01d394ab53fc5b0e3dff92466fa411e706b
GET /fonts/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Cookie: _ga=GA1.3.1400680800.1741904432; _gid=GA1.3.1578918989.1741904432; _gat=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 21981
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-type: font/woff2
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "f2e1fb0c5c93f9c714c00767fa6f165e-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGKA26EKT0X9WPKFQFGAA
content-length: 14596
X-Firefox-Spdy: h2
|
|
| d1krgg9nh7vzxg.cloudfront.net/public/external/css_frontXF.css | 54.230.245.104 | 200 OK | 6.1 kB |
URL GET d1krgg9nh7vzxg.cloudfront.net/public/external/css_frontXF.css IP54.230.245.104:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typeASCII text, with very long lines (6540), with no line terminators Hashc1801db5f380073be5f2b95a315f147c 5f7aa5f52f6a21580c29809d13f2f71baf9b1e4b 33234f8b457d3bf112bc9dcbeb6fdd4ec18f6f6e1f38d6ad71f56f8b00c25b73
GET /public/external/css_frontXF.css HTTP/1.1
Host: d1krgg9nh7vzxg.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 6134
date: Thu, 13 Mar 2025 22:20:32 GMT
accept-ranges: bytes
server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Thu, 17 Aug 2023 03:24:09 GMT
etag: "17f6-60315f2001356"
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sRQU24d-DXVUGPPczY98hEFJkgDfmFaCs0yeEumfdF-dLz9ga0_fSg==
X-Firefox-Spdy: h2
|
|
| d1krgg9nh7vzxg.cloudfront.net/public/external/v2/htmlxf.2620461.a6b72.0.js | 54.230.245.104 | 200 OK | 6.6 kB |
URL GET d1krgg9nh7vzxg.cloudfront.net/public/external/v2/htmlxf.2620461.a6b72.0.js IP54.230.245.104:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerAmazon Subject*.cloudfront.net Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62 ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7420), with no line terminators Hashb35706538cbe47c460318c47f3779bd4 fd09c2a0a6018af7967fd7c923b2a405e8ee9221 57889cf51014f9fa98c8f333d1207591ab0721075ace86fc02648584d530ab6c
GET /public/external/v2/htmlxf.2620461.a6b72.0.js HTTP/1.1
Host: d1krgg9nh7vzxg.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 6623
date: Thu, 13 Mar 2025 22:20:32 GMT
x-powered-by: PHP/7.4.11
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3dRwH6EkDKgcbZyUALbi6ugLvAsPQLo8O-Gf9em26eRfInhdXwcT3A==
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-EL9WPX8S0Z&cx=c&_slc=1 | 142.250.74.168 | 200 OK | 329 kB |
URL GET www.googletagmanager.com/gtag/js?id=G-EL9WPX8S0Z&cx=c&_slc=1 IP142.250.74.168:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerGoogle Trust Services Subject*.google-analytics.com FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File typeJavaScript source, ASCII text, with very long lines (7924) Size329 kB (328797 bytes) Hash7e63a4ab6d90afc7c3401819b7f90177 44285ee7df08ef687663698b5cbde0011455cd7b b006dd6dafb051e2d1c95f0126229313afd36eee1e6cf4c0665d93b3a4348cc7
GET /gtag/js?id=G-EL9WPX8S0Z&cx=c&_slc=1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 13 Mar 2025 22:20:32 GMT
expires: Thu, 13 Mar 2025 22:20:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 113907
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| userstat.net/get/script.js?referrer=https://splendid-alpaca-b8df58.netlify.app/ | 0.0.0.0 | | 0 B |
URL GET userstat.net/get/script.js?referrer=https://splendid-alpaca-b8df58.netlify.app/ IP0.0.0.0:0
Requested byhttps://splendid-alpaca-b8df58.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /get/script.js?referrer=https://splendid-alpaca-b8df58.netlify.app/ HTTP/1.1
Host: userstat.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| splendid-alpaca-b8df58.netlify.app/js/bundle.min.js | 3.75.10.80 | 200 OK | 68 kB |
URL GET splendid-alpaca-b8df58.netlify.app/js/bundle.min.js IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65448) Hashc2bcb2b153e152ba850057a843064c5f cdb5e35cf2c53fec13a111579eea73b08bb86bb3 22ece4ddd583540c08ccadf82d18658e2ed0eba5dd7fdca806aa259667edba56
GET /js/bundle.min.js HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 21984
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; hit
content-encoding: br
content-type: application/javascript; charset=UTF-8
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "b645f52148aef35834e004421291083b-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01JP8SGK4719ZTT3A5T208VPFX
content-length: 20002
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/images/163542468278c021e06cc778d4aef36f80e47413a2.gif | 3.75.10.80 | 200 OK | 51 kB |
URL GET splendid-alpaca-b8df58.netlify.app/images/163542468278c021e06cc778d4aef36f80e47413a2.gif IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeGIF image data, version 89a, 480 x 480 Hash31cdfb1e7dda6fc83c12a2ee24119d30 783554682759a67d7b6f6e76aafc9c4f9175cd42 c932bbb1439415184a6a2fa36b2a251d4eecaee2eef0bf954f78fe4e5f768780
GET /images/163542468278c021e06cc778d4aef36f80e47413a2.gif HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/gif
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "e9686496027663dbdee5d10a39edc95c-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGK4M1MZHBVWDH9W494B3
content-length: 50587
X-Firefox-Spdy: h2
|
|
| splendid-alpaca-b8df58.netlify.app/images/16382044130ec0d536f37ae4cee6f0c9341dd21311.jpg | 3.75.10.80 | 200 OK | 107 kB |
URL GET splendid-alpaca-b8df58.netlify.app/images/16382044130ec0d536f37ae4cee6f0c9341dd21311.jpg IP3.75.10.80:443
Requested byhttps://splendid-alpaca-b8df58.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app Fingerprint04:28:C9:A3:BC:06:50:9C:6B:0B:67:72:82:27:C6:3D:99:1B:5B:71 ValidityFri, 31 Jan 2025 00:00:00 GMT - Tue, 03 Mar 2026 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x1200, components 3 Size107 kB (106833 bytes) Hash9d78342211aa849008dee08ca1ade5fb bba337990fc0ac05b6426ab8f7cf83e23bb380c2 6eda03220e8f8433fc613bdd211556293e16e198c0fdd998f04280e005c79996
GET /images/16382044130ec0d536f37ae4cee6f0c9341dd21311.jpg HTTP/1.1
Host: splendid-alpaca-b8df58.netlify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga=GA1.3.1400680800.1741904432; _gid=GA1.3.1578918989.1741904432; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-type: image/jpeg
date: Thu, 13 Mar 2025 22:20:32 GMT
etag: "8330c8188d348fcf1397116934cc022d-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01JP8SGK9JV6K7Q512S89NPGE4
content-length: 106833
X-Firefox-Spdy: h2
|
|