Report - damage.com-damage-deposit.info

Report Overview

Visitedpublic

2025-08-04 05:16:41

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP	Fingerprints
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2025-07-30	6.7 kB	587 kB	104.18.95.41
damage.com-damage-deposit.info	unknown	2025-07-23	2025-08-04	2025-08-04	2.7 kB	38 kB	104.21.80.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Detection System	Indicator	Verdict	Alert
Quad9 DNS	damage.com-damage-deposit.info	malicious	Sinkholed
OpenPhish	damage.com-damage-deposit.info/	phishing	Phishing - Booking.com
OpenPhish	damage.com-damage-deposit.info	phishing	Phishing - Booking.com

JavaScript (1)

	HASH	FROM	Size	First Seen	Last Seen
	086707e4369f60afedcafb16050a7618	DocumentWrite	39 B	2023-03-07	2025-08-11
Introduced by DocumentWrite First Seen 2023-03-07 Last Seen 2025-08-11 Times Seen 138082 Size 39 B (39 bytes) MD5 086707e4369f60afedcafb16050a7618 SHA1 8216b0cc6876cbd44f01c158e7dff3833ceccd41 SHA256 a7fe83ec64bb23eb28090598db3d166ed98e52e39d1afbbfd74c579553f93e4e Format Code Loading...

HTTP Transactions (15)

URL IP Response Size

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

104.18.95.41

200 OK

27 kB

URL GET HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttp://damage.com-damage-deposit.info/

Resource Information

File typeHTML document, ASCII text, with very long lines (27028), with no line terminators

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size27 kB (27028 bytes)

MD5e58583cfc4fee1f9befdfefb8734b31f

SHA1684942fcf34f007eca2674191c3b7f90c0c87783

SHA2565aea9d6e732010a2d90672a78b74168308f5bfb5fc2343f03edd0867521af35d

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:13 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: default-src 'none'; script-src 'nonce-LOz5V4KW0ryCcGUh' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 969b94d8edee56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET damage.com-damage-deposit.info/

104.21.80.1

403 Forbidden

5.0 kB

URL User Request GET HTTPS

damage.com-damage-deposit.info/

IP / ASN

104.21.80.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Information

File typeHTML document, ASCII text, with very long lines (396)

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size5.0 kB (4982 bytes)

MD5e3569e254f175c9ac5e4907bd2e53ef2

SHA139a78f633d07a48abe8215dfc45285df411af3d0

SHA25699f0f4fe187c56d96eb90c47f22180eb905cfd2b3369cf0272a00e5ad3ded1c8

Certificate Information

IssuerCLOUDFLARE, INC.

Subjectcom-damage-deposit.info

FingerprintC9:F4:B6:F5:26:07:44:4D:59:E3:9E:8D:6D:65:90:30:F9:40:AD:0D

ValidityWed, 23 Jul 2025 23:30:14 GMT - Tue, 21 Oct 2025 23:36:38 GMT

Technology Fingerprints

Cloudflare (CDN)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed
OpenPhish	phishing	Phishing - Booking.com

HTTP Headers

GET / HTTP/1.1
Host: damage.com-damage-deposit.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Mon, 04 Aug 2025 05:16:12 GMT
content-type: text/html; charset=utf-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=CN35D0XhKAxCtdiYru8Iz7K%2Fvj%2F03ji7tcH37y%2FnlualJtQoY9%2FIq55b5YrjZUujqL0sWpm%2FcVqHyhixxPT5fOeOLPB4lfDAbjNGEL%2FmOLkRXDHrxRJOj5AFi2o%3D"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
content-encoding: br
server: cloudflare
cf-ray: 969b94d4fad1b51e-OSL
X-Firefox-Spdy: h2

GET damage.com-damage-deposit.info/favicon.ico

104.21.80.1

301 Moved Permanently

0 B

URL GET HTTP

damage.com-damage-deposit.info/favicon.ico

IP / ASN

104.21.80.1

#13335 CLOUDFLARENET

Requested byhttp://damage.com-damage-deposit.info/

Resource Information

File typeN/A

First Seen0001-01-01

Last Seen2025-08-11

Times Seen5764632

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Technology Fingerprints

Cloudflare (CDN)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed
OpenPhish	phishing	Phishing - Booking.com

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: damage.com-damage-deposit.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://damage.com-damage-deposit.info/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Mon, 04 Aug 2025 05:16:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Location: https://damage.com-damage-deposit.info/favicon.ico
Cache-Control: max-age=14400
Cf-Cache-Status: MISS
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=%2FMjmDLKYVRQtV1H%2FLexK%2FqAsGQtCrDAg1hO5UEOhfVWvoE2fqxPr4KzES5hu97kBJnyeZu8h0d5oqLSimkMQWiRfKv0fqTRq0oKNeKi6yWWpeSUqAAw%2B0d7KpT0%3D"}]}
CF-RAY: 969b94d8ba4b56b1-OSL
alt-svc: h3=":443"; ma=86400

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1

104.18.95.41

200 OK

86 B

URL GET HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

Resource Information

File typePNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced

First Seen2025-05-13

Last Seen2025-08-11

Times Seen79754

Size86 B (86 bytes)

MD570c202196187ab3c11b4e094c20c6de1

SHA19c52b959e74aee9d79cbc9f35d1f9f65a3b8c863

SHA2566255b9231d09ebe6aa1ac19ba46bdd81f3df58989c9ef2e11d6cd6e2e7b21643

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:13 GMT
content-type: image/png
content-length: 86
priority: u=4,i=?0
server: cloudflare
cf-ray: 969b94d97e6c56a4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=969b94d8edee56a4&lang=auto

104.18.95.41

200 OK

139 kB

URL GET HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=969b94d8edee56a4&lang=auto

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

Resource Information

File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size139 kB (138906 bytes)

MD5b39bdac4591a20294d1bf5ce60d8582c

SHA1d31eb33a3f9a61a71b153987bdcb69b65b31dc8a

SHA2567fbed8ae29ae7b55df2ff156574b7486092153242600d5ed9e205dc29bfcda9e

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=969b94d8edee56a4&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
server: cloudflare
cf-ray: 969b94d9de9856a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1778667972:1754280951:uKyISTjsHrNBkiHKPbqa-XqJaD3lXISNI4A5-Hy4yt4/969b94d8edee56a4/7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c

104.18.95.41

200 OK

1.0 kB

URL POST HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1778667972:1754280951:uKyISTjsHrNBkiHKPbqa-XqJaD3lXISNI4A5-Hy4yt4/969b94d8edee56a4/7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

Resource Information

File typeASCII text, with very long lines (1008), with no line terminators

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size1.0 kB (1008 bytes)

MD5157802e78147167a12fdab34857c070b

SHA128d9a2efaeff6d220364ceeb5916bd1a431b33b3

SHA2568cd065e2dc625e979905261b24dff858193bf4d060ae10ebba5c0284131d6736

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1778667972:1754280951:uKyISTjsHrNBkiHKPbqa-XqJaD3lXISNI4A5-Hy4yt4/969b94d8edee56a4/7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
cf-chl: 7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 44194
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:29 GMT
content-type: text/html; charset=UTF-8
cf-chl-out: kFJWS2B/PXw87CkI7ONkTkxhvX6ij+tzaWUP6H5eMHSnDKjJX1/X7vx2ch7LysU5Kds+UzT5wpryU8TqXjm+OA==$DL5G48nWjzVgOMjWsW/E0Q==
cf-chl-out-s: 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$KWa8cqNtZdsul6fHP0CdxA==
priority: u=3,i=?0
server: cloudflare
cf-ray: 969b9539999856a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET challenges.cloudflare.com/turnstile/v0/api.js

104.18.95.41

302 Found

49 kB

URL GET HTTPS

challenges.cloudflare.com/turnstile/v0/api.js

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttp://damage.com-damage-deposit.info/

Resource Information

File typeN/A

First Seen0001-01-01

Last Seen2025-08-11

Times Seen5764632

Size49 kB (48995 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Mon, 04 Aug 2025 05:16:13 GMT
content-length: 0
access-control-allow-origin: *
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=300, public
cross-origin-resource-policy: cross-origin
location: /turnstile/v0/b/8359bcf47b68/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 969b94d7a9f056a5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET challenges.cloudflare.com/turnstile/v0/b/8359bcf47b68/api.js

104.18.95.41

200 OK

49 kB

URL GET HTTPS

challenges.cloudflare.com/turnstile/v0/b/8359bcf47b68/api.js

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttp://damage.com-damage-deposit.info/

Resource Information

File typeJavaScript source, ASCII text, with very long lines (48994)

First Seen2025-07-22

Last Seen2025-08-11

Times Seen36463

Size49 kB (48995 bytes)

MD539577a9d3cb7023280e0668e9959b87a

SHA1479979b3f4aa41586123fa9f077ee0383f99462f

SHA25641530221326a68dc1f45c285ba6b63b3a56d478d567b0a1da6756361c71b1f0a

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /turnstile/v0/b/8359bcf47b68/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:13 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 21 Jul 2025 14:54:13 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
priority: u=3,i=?0
vary: Accept-Encoding
server: cloudflare
cf-ray: 969b94d82d4756a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/969b94d8edee56a4/1754284574238/0hMV3L1ibMERLUw

104.18.95.41

200 OK

256 B

URL GET HTTPS

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/969b94d8edee56a4/1754284574238/0hMV3L1ibMERLUw

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

Resource Information

File typePNG image data, 92 x 31, 8-bit/color RGBA, non-interlaced

First Seen2025-06-02

Last Seen2025-08-11

Times Seen24

Size256 B (256 bytes)

MD5f42ed6fa1b711d7aeb53d2340527794f

SHA1e7cd552f58c2826738410434a50926be637e57ad

SHA256b5e3df62ba0673d498642f0d5300fb85a3670560c89a1bdc6dfc24ad6bd944bc

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/d/969b94d8edee56a4/1754284574238/0hMV3L1ibMERLUw HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:15 GMT
content-type: image/png
content-length: 256
priority: u=4,i=?0
server: cloudflare
cf-ray: 969b94e789a056a4-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

104.18.95.41

200 OK

30 kB

URL POST HTTPS

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

Resource Information

File typeASCII text, with very long lines (29664), with no line terminators

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size30 kB (29664 bytes)

MD53011a45b3b9300f0c8d3c162fe7473d1

SHA174b4084a9bff40b6d6d2bb6520d709527f3f47b7

SHA25648159feaa9664da040909c62e072e5f7db71bf3d8c4780a582303e61b6b75d50

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1778667972:1754280951:uKyISTjsHrNBkiHKPbqa-XqJaD3lXISNI4A5-Hy4yt4/969b94d8edee56a4/7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
cf-chl: 7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 34380
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:20 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: YYxE2VMITyYecI7ntYpoPxSfPCDQa3jvbObfBvsvJ/uTQd3IHLKIt3tf66Pqjmwt$1f8vo9ZfvAtkXiPgLfy9sQ==
priority: u=3,i=?0
server: cloudflare
cf-ray: 969b950608fb56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

GET damage.com-damage-deposit.info/

104.21.80.1

403 Forbidden

5.0 kB

URL User Request GET HTTP

damage.com-damage-deposit.info/

IP / ASN

104.21.80.1

#13335 CLOUDFLARENET

Requested byN/A

Resource Information

File typeHTML document, ASCII text, with very long lines (396)

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size5.0 kB (4982 bytes)

MD51f40e45d6922ca2cd4a4ebfc19b68827

SHA163c645cb2a9dea7c92c0216a3c0d791083f8caba

SHA256ce010e9c73911fb76d795cb38a9dc7acaef9f783cd8aaa1af6577aa11fbca986

Technology Fingerprints

Cloudflare (CDN)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed
OpenPhish	phishing	Phishing - Booking.com

HTTP Headers

GET / HTTP/1.1
Host: damage.com-damage-deposit.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Mon, 04 Aug 2025 05:16:13 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=X2drPNzUZpkEhejzKgnmtJ807tAz0s0ZkqjXwV5poJRJe0sL3lz9cTkI0Cv9rOUR0CNd6i6fLu2IUkpEqLkuLIrRXtCfNVwG%2FdD9qN8GQ6OLHkCw2U6EGAveMo8%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Content-Encoding: gzip
Server: cloudflare
CF-RAY: 969b94d5bfc256b1-OSL

GET damage.com-damage-deposit.info/cdn-cgi/styles/cf.errors.css

104.21.80.1

200 OK

24 kB

URL GET HTTP

damage.com-damage-deposit.info/cdn-cgi/styles/cf.errors.css

IP / ASN

104.21.80.1

#13335 CLOUDFLARENET

Requested byhttp://damage.com-damage-deposit.info/

Resource Information

File typeASCII text, with very long lines (24050)

First Seen0001-01-01

Last Seen2025-08-11

Times Seen243472

Size24 kB (24051 bytes)

MD55e8c69a459a691b5d1b9be442332c87d

SHA1f24dd1ad7c9080575d92a9a9a2c42620725ef836

SHA25684e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091

Technology Fingerprints

Cloudflare (CDN)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed
OpenPhish	phishing	Phishing - Booking.com

HTTP Headers

GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: damage.com-damage-deposit.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://damage.com-damage-deposit.info/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 04 Aug 2025 05:16:13 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=EKyucqm82ym9IG%2BTF6wXMU0wV1CD70J3herypURl7Q9XehCsIDRdwPcPOlCg0BAuCzEu87sNj3kD2ZZi0K0JbAwf2IwPO6svZtydI%2BSiuniUGs4MuSTZugcNJK4%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Content-Encoding: gzip
Server: cloudflare
CF-RAY: 969b94d7593056b1-OSL

GET damage.com-damage-deposit.info/cdn-cgi/images/icon-exclamation.png?1376755637

104.21.80.1

200 OK

452 B

URL GET HTTP

damage.com-damage-deposit.info/cdn-cgi/images/icon-exclamation.png?1376755637

IP / ASN

104.21.80.1

#13335 CLOUDFLARENET

Requested byhttp://damage.com-damage-deposit.info/

Resource Information

File typePNG image data, 54 x 54, 8-bit colormap, non-interlaced

First Seen2023-04-12

Last Seen2025-08-11

Times Seen211487

Size452 B (452 bytes)

MD5c33de66281e933259772399d10a6afe8

SHA1b9f9d500f8814381451011d4dcf59cd2d90ad94f

SHA256f1591a5221136c49438642155691ae6c68e25b7241f3d7ebe975b09a77662016

Technology Fingerprints

Cloudflare (CDN)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed
OpenPhish	phishing	Phishing - Booking.com

HTTP Headers

GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1
Host: damage.com-damage-deposit.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://damage.com-damage-deposit.info/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 04 Aug 2025 05:16:13 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=7Zll0FmnX6MYcIzKN20JF5I9T8DYWsKqDq1wS6SPvN3P7vl8%2FfaqRcQrC%2Bct1Y1W0uAsLxlhNtyhGHG15hevk5I%2FKQTGp9rXj4%2FaQJbEiBAqCc9qXZPSR6JnK2I%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 969b94d7d99856b1-OSL

GET damage.com-damage-deposit.info/favicon.ico

104.21.80.1

404 Not Found

0 B

URL GET HTTPS

damage.com-damage-deposit.info/favicon.ico

IP / ASN

104.21.80.1

#13335 CLOUDFLARENET

Requested byhttp://damage.com-damage-deposit.info/

Resource Information

File typeN/A

First Seen0001-01-01

Last Seen2025-08-11

Times Seen5764632

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Information

IssuerCLOUDFLARE, INC.

Subjectcom-damage-deposit.info

FingerprintC9:F4:B6:F5:26:07:44:4D:59:E3:9E:8D:6D:65:90:30:F9:40:AD:0D

ValidityWed, 23 Jul 2025 23:30:14 GMT - Tue, 21 Oct 2025 23:36:38 GMT

Technology Fingerprints

Cloudflare (CDN)

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed
OpenPhish	phishing	Phishing - Booking.com

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: damage.com-damage-deposit.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Mon, 04 Aug 2025 05:16:13 GMT
content-type: text/html
server: cloudflare
last-modified: Thu, 24 Jul 2025 07:44:45 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=eO6iVTCxRqtAEpWcroyOIReCjovOGKhuXTFykwDIA%2FOPEQEeHANeTddsmueGCBcB8bBeuVlhhGxsABWpS0gu0%2Bh4nzcIfLD%2BBIry0agyl%2BUMf8sdsQ0nLWTg3q4%3D"}]}
cache-control: max-age=14400
cf-cache-status: MISS
vary: accept-encoding
content-encoding: br
cf-ray: 969b94d98be756b4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

104.18.95.41

200 OK

284 kB

URL POST HTTPS

IP / ASN

104.18.95.41

#13335 CLOUDFLARENET

Requested byhttps://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/

Resource Information

File typeASCII text, with very long lines (65536), with no line terminators

First Seen2025-08-04

Last Seen2025-08-04

Times Seen1

Size284 kB (284408 bytes)

MD524c1597d3771978c28f7acad7f40141b

SHA141a2f43932aa498c630238efbfb4162ab70eadb5

SHA2565b226c0d9e16dbdf0c99861fcf5cc1bd6089b130ef844b9e72b8eb8d9dafcf47

Certificate Information

IssuerGoogle Trust Services

Subjectchallenges.cloudflare.com

FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71

ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT

Technology Fingerprints

Cloudflare (CDN)

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1778667972:1754280951:uKyISTjsHrNBkiHKPbqa-XqJaD3lXISNI4A5-Hy4yt4/969b94d8edee56a4/7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/xgc3x/0x4AAAAAABDaGKKSGLylJZFA/auto/fbE/new/normal/auto/
cf-chl: 7z..mdYZ782GIu4UcpUNt_bFiAmSgFhGQq83e6WMesk-1754284573-1.2.1.1-eEQv_k1va.fs7H1cT261690MvLhLIwByWHtVOJtQ82cjjZAGHwd8h1tO.1SbVq6c
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 3404
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 04 Aug 2025 05:16:14 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$TimZmL07gR9iAA68HAMf2Q==
priority: u=3,i=?0
server: cloudflare
cf-ray: 969b94dce8d356a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri