Report - fipernox.xyz/dn_01/dn_01

Report Overview

Visited public
2025-04-26 06:48:08
Tags
URL
fipernox.xyz/dn_01/dn_01_sy.php
Finishing URL
fipernox.xyz/dn_01/dn_01_sy.php
IP / ASN
45.141.156.249
#31469 Virtual Systems LLC
Title
Online Monitor

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-23	1.6 kB	89 kB	142.250.74.35
translate.google.com	1156	1997-09-15	2012-05-30	2025-04-23	458 B	80 kB	142.250.178.46
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-04-23	1.1 kB	24 kB	142.250.178.35
translate.googleapis.com	1005	2005-01-25	2012-05-31	2025-04-23	1.7 kB	220 kB	142.250.74.10
fipernox.xyz	unknown	2025-04-02	2025-04-26	2025-04-26	3.2 kB	28 kB	45.141.156.249
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-04-23	521 B	57 kB	142.250.74.10
ajax.googleapis.com	12905	2005-01-25	2012-05-22	2025-04-23	441 B	90 kB	142.250.178.42

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-04-26	medium	fipernox.xyz	Sinkholed
2025-04-26	medium	fipernox.xyz	Sinkholed
2025-04-26	medium	fipernox.xyz	Sinkholed
2025-04-26	medium	fipernox.xyz	Sinkholed
2025-04-26	medium	fipernox.xyz	Sinkholed
2025-04-26	medium	fipernox.xyz	Sinkholed
2025-04-26	medium	fipernox.xyz	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	From	Size	First Seen	Last Seen
	fipernox.xyz/dn_01/1/js/langs.js	ScriptElement	1.2 kB	2023-03-07	2025-05-12
Pretty URL fipernox.xyz/dn_01/1/js/langs.js IP 45.141.156.249 ASN #31469 Virtual Systems LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-12 04:19 Times Seen625 Hash fcd546809170dd574eb37b989529f69a 2e227e144e3b4bd68064354d8a7fbc61125f624c 350baff99bbd3db6cdb8d741bc7f75fa333489ad5dcc641e2cfa0e11130e1920 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	ScriptElement	90 kB	2023-03-07	2025-05-31
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.178.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-31 01:15 Times Seen111172 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	fipernox.xyz/_/translate_http/_/js/k=translate_http.tr.no.fJOnaP0jscc.O/am=AAY/d=1/rs=AN8SPfpiVKTPMgdH9z3-c7KIYYCX192JgQ/m=el_conf	ScriptElement	80 kB	2025-04-26	2025-04-26
Pretty URL fipernox.xyz/_/translate_http/_/js/k=translate_http.tr.no.fJOnaP0jscc.O/am=AAY/d=1/rs=AN8SPfpiVKTPMgdH9z3-c7KIYYCX192JgQ/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-04-26 06:48 Last Seen2025-04-26 06:48 Times Seen1 Hash 28ab959c9c24e89608da59e4038efa3e 430a682d3c05cbe17a8bca1ccc3214156bb9edbe 62142e8d289483c025a9a2328671de2f09b9140373d81edab8681b8c9b6db4e7 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.fJOnaP0jscc.O/am=ACA/d=1/exm=el_conf/ed=1/rs=AN8SPfqv2zXhQAfrcC_9KQWUqEZ9Jks8Ag/m=el_main	ScriptElement	218 kB	2025-03-24	2025-05-31
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.fJOnaP0jscc.O/am=ACA/d=1/exm=el_conf/ed=1/rs=AN8SPfqv2zXhQAfrcC_9KQWUqEZ9Jks8Ag/m=el_main IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-24 19:35 Last Seen2025-05-31 01:27 Times Seen2143 Hash 196563abd567557ce7900f356df9048c 7c140ff50c164d5901faa4c4e74fcb11482b9c32 eadb2140c433b64ca74a8e25665b4f80a54a4183c3cb01da578e7426fbae95c8 Loading...

	about:srcdoc#139	ScriptElement	1.7 kB	2024-09-18	2025-05-31
Pretty URL about:srcdoc#139 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-09-18 13:29 Last Seen2025-05-31 01:27 Times Seen1495 Hash 6652f9414e99edb4f007b116dcb97690 03a1541842942c5832cf08c8f24c59eb9f913220 d77d07e390347beb504ef3bdd421ff18a21f985eecb6c60b1657fda05d0f84ba Loading...

	fipernox.xyz/dn_01/1/js/cookie.js	ScriptElement	2.2 kB	2023-03-07	2025-05-12
Pretty URL fipernox.xyz/dn_01/1/js/cookie.js IP 45.141.156.249 ASN #31469 Virtual Systems LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-12 04:19 Times Seen590 Hash c9e9a54501fc6f6e8918b2c0f2a53981 3d530e6c830ccba6284e79c7245bb45d6f4f2197 491fdee141835401d29318ca584ac3e91a38c92d8694f26d90883bfc324ca454 Loading...

HTTP Transactions (18)

URL IP Response Size

fipernox.xyz/dn_01/dn_01_sy.php

45.141.156.249

200 OK

1.3 kB

URL User Request GET
fipernox.xyz/dn_01/dn_01_sy.php
IP
45.141.156.249:443
ASN
#31469 Virtual Systems LLC

Certificate
IssuerLet's Encrypt
Subjectfipernox.xyz
FingerprintF3:3D:C2:2D:24:30:1C:41:1D:C3:18:95:11:65:8E:D9:81:69:F9:8C
ValidityWed, 02 Apr 2025 21:07:07 GMT - Tue, 01 Jul 2025 21:07:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
1.3 kB (1304 bytes)
Hash
d5e98cb7ace309c7e1c68aa46e8077c6
4ead1f147665614aaa7903d4895231fceca745a0
29d8d7dcee32d16f7f513be9e8e30411605e5122e852cf70adeb9d72895fb786

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dn_01/dn_01_sy.php HTTP/1.1
Host: fipernox.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 26 Apr 2025 06:47:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500&display=swap

142.250.74.10

200 OK

56 kB

URL GET
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
ASCII text, with very long lines (1572)
Size
56 kB (55954 bytes)
Hash
f37916e4655647fbbfa3f30391afb412
c3e3c18b3af1f4d3660560a4d1d9e82d513c0244
ff80fa40ca04df2b4057d0362ddd54a4567d3182a1c0f509f03657a24fc97668

HTTP Headers

GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Apr 2025 06:47:47 GMT
date: Sat, 26 Apr 2025 06:47:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.178.42

200 OK

90 kB

URL GET
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.178.42:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
90 kB (89476 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Apr 2025 11:49:37 GMT
expires: Thu, 23 Apr 2026 11:49:37 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 241090
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fipernox.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:03:46 GMT
expires: Fri, 24 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 161041
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

142.250.178.46

200 OK

80 kB

URL GET
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
142.250.178.46:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint67:52:2F:AB:93:DE:39:DA:94:50:11:AE:8B:37:CB:88:8F:DC:56:7D
ValidityMon, 31 Mar 2025 08:54:37 GMT - Mon, 23 Jun 2025 08:54:36 GMT

File type
JavaScript source, ASCII text, with very long lines (2148)
Size
80 kB (79679 bytes)
Hash
28ab959c9c24e89608da59e4038efa3e
430a682d3c05cbe17a8bca1ccc3214156bb9edbe
62142e8d289483c025a9a2328671de2f09b9140373d81edab8681b8c9b6db4e7

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Apr 2025 06:47:47 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fipernox.xyz/dn_01/1/js/custom.js

45.141.156.249

200 OK

0 B

URL GET
fipernox.xyz/dn_01/1/js/custom.js
IP
45.141.156.249:443
ASN
#31469 Virtual Systems LLC

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerLet's Encrypt
Subjectfipernox.xyz
FingerprintF3:3D:C2:2D:24:30:1C:41:1D:C3:18:95:11:65:8E:D9:81:69:F9:8C
ValidityWed, 02 Apr 2025 21:07:07 GMT - Tue, 01 Jul 2025 21:07:06 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dn_01/1/js/custom.js HTTP/1.1
Host: fipernox.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/dn_01/dn_01_sy.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 26 Apr 2025 06:47:47 GMT
content-type: application/javascript
content-length: 0
last-modified: Tue, 07 Jan 2025 19:49:29 GMT
etag: "677d8549-0"
accept-ranges: bytes
X-Firefox-Spdy: h2

fipernox.xyz/dn_01/1/img/logo.png

45.141.156.249

200 OK

12 kB

URL GET
fipernox.xyz/dn_01/1/img/logo.png
IP
45.141.156.249:443
ASN
#31469 Virtual Systems LLC

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerLet's Encrypt
Subjectfipernox.xyz
FingerprintF3:3D:C2:2D:24:30:1C:41:1D:C3:18:95:11:65:8E:D9:81:69:F9:8C
ValidityWed, 02 Apr 2025 21:07:07 GMT - Tue, 01 Jul 2025 21:07:06 GMT

File type
PNG image data, 464 x 108, 8-bit/color RGBA, non-interlaced
Size
12 kB (11582 bytes)
Hash
b4f918f9f4c932f3b62f67df34c9ceee
ec3fbeb14bb0c2d02fb0e3e727ca7f03b055dc4a
ea2e1652e048ec807ccc51497fc25a3661c6919e2320249b048c67f7b0e5d48d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dn_01/1/img/logo.png HTTP/1.1
Host: fipernox.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/dn_01/dn_01_sy.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 26 Apr 2025 06:47:47 GMT
content-type: image/png
content-length: 11582
last-modified: Tue, 07 Jan 2025 19:49:29 GMT
etag: "677d8549-2d3e"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.178.35

200 OK

1.8 kB

URL GET
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.178.35:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.420aGcKD8sw.L.F4.O/am=AAY/d=0/rs=AN8SPfpDPomKLlRjz0jYgLjosyLSbUir8w/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Apr 2025 21:30:00 GMT
expires: Thu, 23 Apr 2026 21:30:00 GMT
cache-control: public, max-age=31536000
age: 206268
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.10

200 OK

0 B

URL OPTIONS
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://fipernox.xyz/
Origin: https://fipernox.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
access-control-allow-origin: https://fipernox.xyz
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 26 Apr 2025 06:47:58 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.10

200 OK

131 B

URL POST
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
JSON text data
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fipernox.xyz/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 1170
Origin: https://fipernox.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
access-control-allow-origin: https://fipernox.xyz
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 26 Apr 2025 06:47:58 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fipernox.xyz/dn_01/1/css/custom.css

45.141.156.249

200 OK

1.3 kB

URL GET
fipernox.xyz/dn_01/1/css/custom.css
IP
45.141.156.249:443
ASN
#31469 Virtual Systems LLC

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerLet's Encrypt
Subjectfipernox.xyz
FingerprintF3:3D:C2:2D:24:30:1C:41:1D:C3:18:95:11:65:8E:D9:81:69:F9:8C
ValidityWed, 02 Apr 2025 21:07:07 GMT - Tue, 01 Jul 2025 21:07:06 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1272 bytes)
Hash
fa5e9f143665a4c815ac41b3b9bf4009
3e0e76177234640b06a09d4d3cefd4ac410a081e
da7d410a449842261aa44d537ead198c7072a7c9ce936813fc2405e2830a3a98

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dn_01/1/css/custom.css HTTP/1.1
Host: fipernox.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/dn_01/dn_01_sy.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 26 Apr 2025 06:47:47 GMT
content-type: text/css
last-modified: Tue, 07 Jan 2025 19:49:29 GMT
vary: Accept-Encoding
etag: W/"677d8549-4f8"
content-encoding: gzip
X-Firefox-Spdy: h2

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.fJOnaP0jscc.O/am=ACA/d=1/exm=el_conf/ed=1/rs=AN8SPfqv2zXhQAfrcC_9KQWUqEZ9Jks8Ag/m=el_main

142.250.74.10

200 OK

218 kB

URL GET
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.fJOnaP0jscc.O/am=ACA/d=1/exm=el_conf/ed=1/rs=AN8SPfqv2zXhQAfrcC_9KQWUqEZ9Jks8Ag/m=el_main
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint7E:14:87:08:DF:BA:04:65:17:BA:3B:4F:BA:EA:BC:8C:3F:0A:A4:00
ValidityMon, 31 Mar 2025 08:55:43 GMT - Mon, 23 Jun 2025 08:55:42 GMT

File type
JavaScript source, ASCII text, with very long lines (2403)
Size
218 kB (218335 bytes)
Hash
196563abd567557ce7900f356df9048c
7c140ff50c164d5901faa4c4e74fcb11482b9c32
eadb2140c433b64ca74a8e25665b4f80a54a4183c3cb01da578e7426fbae95c8

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.fJOnaP0jscc.O/am=ACA/d=1/exm=el_conf/ed=1/rs=AN8SPfqv2zXhQAfrcC_9KQWUqEZ9Jks8Ag/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 15:06:26 GMT
expires: Fri, 24 Apr 2026 15:06:26 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 21 Mar 2025 23:10:30 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 142882
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

142.250.74.35

200 OK

6.2 kB

URL GET
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
SVG Scalable Vector Graphics image
Size
6.2 kB (6225 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Apr 2025 08:46:10 GMT
expires: Sat, 25 Apr 2026 08:46:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 79298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fipernox.xyz/dn_01/1/js/cookie.js

45.141.156.249

200 OK

2.2 kB

URL GET
fipernox.xyz/dn_01/1/js/cookie.js
IP
45.141.156.249:443
ASN
#31469 Virtual Systems LLC

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerLet's Encrypt
Subjectfipernox.xyz
FingerprintF3:3D:C2:2D:24:30:1C:41:1D:C3:18:95:11:65:8E:D9:81:69:F9:8C
ValidityWed, 02 Apr 2025 21:07:07 GMT - Tue, 01 Jul 2025 21:07:06 GMT

File type
JavaScript source, ASCII text
Size
2.2 kB (2198 bytes)
Hash
c9e9a54501fc6f6e8918b2c0f2a53981
3d530e6c830ccba6284e79c7245bb45d6f4f2197
491fdee141835401d29318ca584ac3e91a38c92d8694f26d90883bfc324ca454

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dn_01/1/js/cookie.js HTTP/1.1
Host: fipernox.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/dn_01/dn_01_sy.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 26 Apr 2025 06:47:47 GMT
content-type: application/javascript
last-modified: Tue, 07 Jan 2025 19:49:29 GMT
vary: Accept-Encoding
etag: W/"677d8549-896"
content-encoding: gzip
X-Firefox-Spdy: h2

fipernox.xyz/dn_01/1/js/langs.js

45.141.156.249

200 OK

1.2 kB

URL GET
fipernox.xyz/dn_01/1/js/langs.js
IP
45.141.156.249:443
ASN
#31469 Virtual Systems LLC

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerLet's Encrypt
Subjectfipernox.xyz
FingerprintF3:3D:C2:2D:24:30:1C:41:1D:C3:18:95:11:65:8E:D9:81:69:F9:8C
ValidityWed, 02 Apr 2025 21:07:07 GMT - Tue, 01 Jul 2025 21:07:06 GMT

File type
JavaScript source, ASCII text
Size
1.2 kB (1157 bytes)
Hash
fcd546809170dd574eb37b989529f69a
2e227e144e3b4bd68064354d8a7fbc61125f624c
350baff99bbd3db6cdb8d741bc7f75fa333489ad5dcc641e2cfa0e11130e1920

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dn_01/1/js/langs.js HTTP/1.1
Host: fipernox.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/dn_01/dn_01_sy.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 26 Apr 2025 06:47:47 GMT
content-type: application/javascript
last-modified: Tue, 07 Jan 2025 19:49:29 GMT
vary: Accept-Encoding
etag: W/"677d8549-485"
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.74.35

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fipernox.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Apr 2025 10:03:46 GMT
expires: Fri, 24 Apr 2026 10:03:46 GMT
cache-control: public, max-age=31536000
age: 161041
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fipernox.xyz/dn_01/1/img/favicon.png

45.141.156.249

200 OK

8.6 kB

URL GET
fipernox.xyz/dn_01/1/img/favicon.png
IP
45.141.156.249:443
ASN
#31469 Virtual Systems LLC

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerLet's Encrypt
Subjectfipernox.xyz
FingerprintF3:3D:C2:2D:24:30:1C:41:1D:C3:18:95:11:65:8E:D9:81:69:F9:8C
ValidityWed, 02 Apr 2025 21:07:07 GMT - Tue, 01 Jul 2025 21:07:06 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
8.6 kB (8551 bytes)
Hash
d224696da22601bffab56621360c3e3d
a0e83c20e15f3dd7e42f217bebdb7401c68a9a3b
4dc77d4cdecc4da3e233a66084151e54f301bc494dc37113e3e1b45e6ed06e7d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /dn_01/1/img/favicon.png HTTP/1.1
Host: fipernox.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/dn_01/dn_01_sy.php
Cookie: GoogleAccountsLocale_session=en; googtrans=/en/en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 26 Apr 2025 06:47:47 GMT
content-type: image/png
content-length: 8551
last-modified: Tue, 07 Jan 2025 19:49:29 GMT
etag: "677d8549-2167"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.420aGcKD8sw.L.F4.O/am=AAY/d=0/rs=AN8SPfpDPomKLlRjz0jYgLjosyLSbUir8w/m=el_main_css

142.250.178.35

200 OK

20 kB

URL GET
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.420aGcKD8sw.L.F4.O/am=AAY/d=0/rs=AN8SPfpDPomKLlRjz0jYgLjosyLSbUir8w/m=el_main_css
IP
142.250.178.35:443
ASN
#15169 GOOGLE

Requested by
https://fipernox.xyz/dn_01/dn_01_sy.php
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint62:27:9C:C9:95:FF:8F:83:34:D0:B1:42:CB:B7:63:C0:8E:6F:3E:F1
ValidityMon, 31 Mar 2025 08:55:41 GMT - Mon, 23 Jun 2025 08:55:40 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
20 kB (20367 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.420aGcKD8sw.L.F4.O/am=AAY/d=0/rs=AN8SPfpDPomKLlRjz0jYgLjosyLSbUir8w/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fipernox.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Apr 2025 19:35:02 GMT
expires: Tue, 21 Apr 2026 19:35:02 GMT
cache-control: public, max-age=31536000
age: 385966
last-modified: Tue, 25 Feb 2025 22:10:27 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (18)

URL User Request GET

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size