googleads.g.doubleclick.net/pcs/click?adurl=//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t
216.58.207.226 0 B URL googleads.g.doubleclick.net/pcs/click?adurl=//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/click?adurl=//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
location: //dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 28 Nov 2023 12:28:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: IDE=AHWqTUlJonRkC3898nJSCT2Afws0-pSe9sOKmrSPwsTVANpO2UfbHiWG2YUVfKtM; expires=Thu, 27-Nov-2025 12:28:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
104.17.24.14200 OK 28 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP 104.17.24.14:443
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 12:28:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 282197
expires: Sun, 17 Nov 2024 12:28:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ScUOuQRkfq4pvK0weS%2Fp7UNUNAr0bxfNEj0Y5i5OLX6MLNFThif8NNUW1RMs6sREkPzfYg13ASNPp5E29%2FNj62nkbvrhuVk9FdoKdJ9SsVyFat3m55nFjld6y6cDmJ3Lj2bgqHX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82d29c2f6cd00b31-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t
162.241.103.116 2 B URL dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t
IP 162.241.103.116:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t//dnsgrifesemarcas.com.br/info/tech/qwertykskdkjdjdhdhjshshdgdhdhdhjskshsfsfggdgdgdghsgsghsgsjdhdgjjdhjdhj/ghsghshjdhjdhjdgdhjdhjdjhwgwgsshjdjdifioeuiewhndndbdnndbbddhjdhjhjdhdhjhjdhdhhjhd/kugyewmciwrradwbkggonepbkrrkurhxcqgmgevltznphxbwptzkcwvwigkthdmjicuijpqwojxgfiwpwlrhhzdeowemoobvuzoh/YWNjb3VudGluZ0BhcmNlc2UuY29t HTTP/1.1
Host: dnsgrifesemarcas.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
refresh: 0;url=https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 12:28:16 GMT
server: Apache
X-Firefox-Spdy: h2
bc1qm34lsc65zpw79lxes69zkqmk3ewgg2.com/api/v3/auth
194.33.191.140200 OK 16 kB URL POST HTTP/1.1 bc1qm34lsc65zpw79lxes69zkqmk3ewgg2.com/api/v3/auth
IP 194.33.191.140:443
ASN #20668 Internet Resources Management SRL
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerLet's Encrypt
Subjectbc1qm34lsc65zpw79lxes69zkqmk3ewgg2.com
Fingerprint7D:BD:91:52:9D:DC:5F:4D:CD:7C:79:44:C3:A2:D3:4A:7C:43:02:86
ValidityFri, 10 Nov 2023 13:12:47 GMT - Thu, 08 Feb 2024 13:12:46 GMT
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (15600), with no line terminators
Hash a5099714d7d4f011fdfc38eca062646b
2441932c0f35ed70ba6d8655af58d4f4369362df
8a793e17e5ee613606d55c43c8f780fde40dc1d0dfbc738e5ea7a5c00db9425b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /api/v3/auth HTTP/1.1
Host: bc1qm34lsc65zpw79lxes69zkqmk3ewgg2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 180
Origin: https://ipfs.io
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Tue, 28 Nov 2023 12:28:20 GMT
server: uvicorn
content-length: 15600
content-type: application/json
access-control-allow-origin: *
access-control-allow-credentials: true
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
104.17.24.14200 OK 28 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP 104.17.24.14:443
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 12:28:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 282204
expires: Sun, 17 Nov 2024 12:28:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CGd4orSKyE0qCwNMuC9HcB6yUen8ZWhtki7Otz%2BiJ9uyeklWwUsjqSquTBilSL5n4lBFBbRiXiUzFsPQbgzZd97bIUigbDCihLUSeKFool7uGaBLk%2BLVIcS8DTXWPmpYPykfixAY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82d29c57df3c712f-OSL
alt-svc: h3=":443"; ma=86400
aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
152.199.23.37200 OK 1.4 kB URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg
IP 152.199.23.37:443
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators
Hash ee5c8d9fb6248c938fd0dc19370e90bd
d01a22720918b781338b5bbf9202b241a5f99ee4
04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 27446644
cache-control: public, max-age=31536000
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
content-type: image/svg+xml
date: Tue, 28 Nov 2023 12:28:26 GMT
etag: 0x8D79A1B9F5E121A
last-modified: Thu, 16 Jan 2020 00:32:52 GMT
server: ECAcc (ska/F7B5)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: fc3f3f64-801e-006c-6456-2890f5000000
x-ms-version: 2009-09-19
content-length: 1435
X-Firefox-Spdy: h2
aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
152.199.23.37200 OK 20 kB URL GET HTTP/2 aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css
IP 152.199.23.37:443
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (61177)
Hash f0e5964f8bbedf73d2d3001623bb663b
aadf3504d5e5a93e678487eeb4a63398f2699341
9537f00ca371747a97a2acca388f7b2379a7fa7c59bde18c3d2621c0de8de492
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 9915612
cache-control: public, max-age=31536000
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
content-type: text/css
date: Tue, 28 Nov 2023 12:28:26 GMT
etag: 0x8DA7650B375AC9B
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
server: ECAcc (ska/F7A0)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: fa2c5f86-601e-001d-18c7-c75323000000
x-ms-version: 2009-09-19
content-length: 19970
X-Firefox-Spdy: h2
aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css
13.107.213.53200 OK 20 kB URL GET HTTP/2 aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css
IP 13.107.213.53:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msauth.net
Fingerprint88:95:0C:FA:9D:33:AA:BF:A4:FD:9D:84:A6:E8:02:06:58:50:AD:8C
ValiditySun, 29 Oct 2023 00:00:00 GMT - Tue, 29 Oct 2024 23:59:59 GMT
File type ASCII text, with very long lines (61177)
Hash ce26137fc0d9b7d7a0d52ebe3a186512
b9d7fb3fe7d08f46c2d1153bb47b13809375c663
1304c5090f063c677a5b3720fe7b97ef4d9ea102e2bdd837ce399df6057fe385
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ipfs.io
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 19953
content-type: text/css
content-encoding: gzip
content-md5: xg2DER+s52egaL6bUXi4hw==
last-modified: Mon, 18 Apr 2022 21:18:26 GMT
etag: 0x8DA2180FA29F5AF
x-cache: TCP_HIT
x-ms-request-id: afb3f6b4-c01e-005b-42f9-207157000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0UPtkZQAAAACj77pr2uOuRaMWZfUTcK7vQU1TMDRFREdFMTgxMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 06txlZQAAAACv22tSJ0RLRayDJi4EKY9PU1ZHMjBFREdFMDUxOQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Tue, 28 Nov 2023 12:28:25 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg
13.107.213.53200 OK 276 B URL GET HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg
IP 13.107.213.53:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msauth.net
Fingerprint88:95:0C:FA:9D:33:AA:BF:A4:FD:9D:84:A6:E8:02:06:58:50:AD:8C
ValiditySun, 29 Oct 2023 00:00:00 GMT - Tue, 29 Oct 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (513), with no line terminators
Hash a9cc2824ef3517b6c4160dcf8ff7d410
8db9aebad84ca6e4225bfdd2458ff3821cc4f064
34f9db946e89f031a80dfca7b16b2b686469c9886441261ae70a44da1dfa2d58
GET /shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 276
content-type: image/svg+xml
content-encoding: gzip
content-md5: TjUQkZ0p0Y7rbj6LJofS9Q==
last-modified: Fri, 17 Jan 2020 19:28:34 GMT
etag: 0x8D79B8371B97A82
x-cache: TCP_HIT
x-ms-request-id: 4d8ee911-101e-0036-6042-0fec6e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0SpZJZQAAAAAmBLZXYFfTSIPxFEjCT7FDQU1TMDRFREdFMTkxNQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 06txlZQAAAABMu3EsO82fR6W3NaC9D3oHU1ZHMjBFREdFMDUxOAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Tue, 28 Nov 2023 12:28:26 GMT
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
152.199.23.37200 OK 17 kB URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP 152.199.23.37:443
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 15673998
cache-control: public, max-age=31536000
content-md5: EuPayFgGHQiAI7K9SOL6lg==
content-type: image/x-icon
date: Tue, 28 Nov 2023 12:28:26 GMT
etag: 0x8D8731240E548EB
last-modified: Sun, 18 Oct 2020 03:02:30 GMT
server: ECAcc (ska/F738)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 003b7cc6-501e-0067-4768-9344ba000000
x-ms-version: 2009-09-19
content-length: 17174
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
152.199.23.37200 OK 673 B URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
IP 152.199.23.37:443
Requested by https://ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Hash bc3d32a696895f78c19df6c717586a5d
9191cb156a30a3ed79c44c0a16c95159e8ff689d
0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68
GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ipfs.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 14398465
cache-control: public, max-age=31536000
content-md5: DhdidjYrlCeaRJJRG/y9mA==
content-type: image/svg+xml
date: Tue, 28 Nov 2023 12:28:26 GMT
etag: 0x8D7B007297AE131
last-modified: Wed, 12 Feb 2020 22:01:50 GMT
server: ECAcc (ska/F732)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 68d21ab8-f01e-0076-6702-9f059f000000
x-ms-version: 2009-09-19
content-length: 673
X-Firefox-Spdy: h2
ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
209.94.90.1200 OK 24 kB URL User Request GET HTTP/2 ipfs.io/ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com
IP 209.94.90.1:443
Certificate IssuerLet's Encrypt
Subjectdweb.link
Fingerprint8B:0B:A0:28:A6:81:DF:E9:49:F0:E9:A3:20:69:C6:07:BE:D6:16:2C
ValidityMon, 20 Nov 2023 14:59:23 GMT - Sun, 18 Feb 2024 14:59:22 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8866), with CRLF line terminators
Hash b92d12a6c48c268a1d8900bf46787429
705e8eed265d3a1f041604c0fb84b858b7610fca
15ee9a1a0c44dfb3b27079b41080feac32da13a6fc95a875264445e328e71f9f
Analyzer Verdict Alert urlquery phishing Phishing - Microsoft Outlook
GET /ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi?filename=index.html&cfg=accounting@arcese.com HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Tue, 28 Nov 2023 12:28:19 GMT
content-type: text/html
vary: Accept-Encoding
access-control-allow-methods: GET, HEAD, OPTIONS, GET, POST, OPTIONS
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="index.html"; filename*=UTF-8''index.html
etag: W/"QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi"
x-ipfs-gateway-host: ipfs-bank3-fr2
x-ipfs-path: /ipfs/QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi
x-ipfs-roots: QmNwV4ciPNeDxJjTCfPtoQL6d5x95eaVDdzogsHJFpYnhi
x-ipfs-pop: ipfs-bank3-fr2
timing-allow-origin: *
x-ipfs-datasize: 24269
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank3-fr2
x-bfid: c1c5d85f326dbd5992a2dde3c8a5b634
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2