Report - link-danakagetcare.pages.dev/

Report Overview

Visited public
2023-11-16 02:19:08
Tags
suspicious
URL
link-danakagetcare.pages.dev/
Finishing URL
link-danakagetcare.pages.dev/
IP / ASN
172.66.44.134
#13335 CLOUDFLARENET
Title
DANA E-wallet
Suspicious - Suspicious Javascript code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-11-15 18:14:50	2.3 kB	146 kB	104.17.25.14
link-danakagetcare.pages.dev	unknown	2020-09-02	2023-11-14 23:18:25	2023-11-16 01:43:30	929 B	41 kB	172.66.47.122
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-11-15 23:51:48	1.8 kB	130 kB	142.250.74.138
img.freepik.com	42969	2010-08-04	2013-11-27 19:27:47	2023-11-15 15:02:51	498 B	917 B	95.101.10.67
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-11-15 18:12:18	472 B	4.3 kB	151.101.193.229
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-15 22:27:13	480 B	11 kB	142.250.74.106
www-dana-idl.github.io	unknown	2013-03-08	2023-07-12 15:03:46	2023-10-31 21:19:03	978 B	6.4 kB	185.199.109.153
cdn.rawgit.com	8186	2014-03-20	2017-01-30 06:42:07	2023-11-15 18:54:08	467 B	1.2 kB	194.242.11.186
encrypted-tbn0.gstatic.com	unknown	2008-02-11	2013-05-31 04:32:18	2023-11-15 23:16:19	1.0 kB	25 kB	142.250.74.174
blogger.googleusercontent.com	16485	2008-11-17	2012-05-25 19:41:01	2023-11-15 18:16:46	6.1 kB	4.2 MB	142.250.74.33

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-15	medium	link-danakagetcare.pages.dev/	DANA
2023-11-15	medium	link-danakagetcare.pages.dev/	DANA

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js	ScriptElement	8.2 kB	2023-03-07	2025-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 21:05 Times Seen715 Hash acb54232967a36f1df1d0c0623a89d65 6bc0ce0a4a1dd27ddb307b80a1247af996eb23bf bbb318e841b96acb3c2614eec417a4d7caf9606ea996507dccba84e2f6724e7e Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 19:39 Times Seen57575 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	link-danakagetcare.pages.dev/	ScriptElement	224 B	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen31 Hash dc3be218945faac78f9c83518a7c8b50 d9fa524eda23da34953fd4f35ca9377825b6c529 08c91709493692c9dd07fb060f928cea2f0683a9c3b9ef9f39ad3d76af6f65fe Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js	ScriptElement	96 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 18:30 Times Seen25151 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js	ScriptElement	93 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 17:53 Times Seen10315 Hash e0e0559014b222245deb26b6ae8bd940 e2f3603e23711f6446f278a411d905623d65201e 89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e Loading...

	link-danakagetcare.pages.dev/	ScriptElement	885 B	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen30 Hash 5647780a99bdafa7f659b58db3484f3b aaab6f820159cb31d76a69415523d3e4e73568d8 304f2d03016beca26e2d4506570b00ce172f49117941fc3d6d4907790e6ed3d9 Loading...

	link-danakagetcare.pages.dev/	ScriptElement	1.0 kB	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen30 Hash 7afe20f606a624dfd2ceb87dc30663d7 f02d102beaec1647d2d8847771423ce2396f8ad8 5e92da3497acba62e7a4c22977aaa392f034c0a7539d85b15dcb5f7739699c29 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js	ScriptElement	87 kB	2023-03-07	2025-05-11
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 18:30 Times Seen112284 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-11
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js IP 142.250.74.138 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16 Last Seen2025-05-11 10:23 Times Seen1876 Hash ccd0edd113b78697e04fb5c1b519a5cd a6eedf84389e1bc9f757bc2d19538f8c8d1cae9d a57b5242b9a9adc4c1ef846c365147b89c472b9cd770face331efcb965346b25 Loading...

	cdn.rawgit.com/igorescobar/jQuery-Mask-Plugin/1ef022ab/dist/jquery.mask.min.js	ScriptElement	8.0 kB	2023-03-07	2025-04-27
Pretty URL cdn.rawgit.com/igorescobar/jQuery-Mask-Plugin/1ef022ab/dist/jquery.mask.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10 Last Seen2025-04-27 15:06 Times Seen84 Hash 7cf822dfabcf03f507100695b88df84b 3e9ff06e8f52afdb8193584c61d4400938b71d63 0aaed71320dc122a42a59383acc7b8071ba4aa5c7c47d667773218b38c32b443 Loading...

	link-danakagetcare.pages.dev/	ScriptElement	906 B	2023-11-16	2024-10-18
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-16 03:19 Last Seen2024-10-18 12:19 Times Seen7 Hash 3af8965db3e0750454567251e989d986 23794dc0c4615b4ee6bfa20338d85a98e285d9cd 9700d2a97369fac8c4dab7c453c0cd0be9877ca1f3377889fa0e4f3f20f53c0a Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/3.3.4/jquery.inputmask.bundle.min.js	ScriptElement	76 kB	2023-03-07	2025-05-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/3.3.4/jquery.inputmask.bundle.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:07 Last Seen2025-05-05 14:52 Times Seen146 Hash bf0a6f4c595f7b2b530af0ff2a7ad4e0 ae081042899fa3d963fe5de68d28b97cec086156 1d00a43e3b1c901b663bad31799b39eb483cff9bf4e03bce932128d35ce14a9a Loading...

	link-danakagetcare.pages.dev/	ScriptElement	188 B	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen30 Hash 85315faa5b72c4dee01f93f198323468 2cac8a62213b46661d766d3ca190e7b8370b173c 81a71b833389e79d8215ee20a9e8de871ffddb6b0370d7247260b23c15e3a44c Loading...

	link-danakagetcare.pages.dev/	ScriptElement	3.3 kB	2023-11-16	2024-10-18
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-16 03:19 Last Seen2024-10-18 12:19 Times Seen7 Hash 3eb8d76acbb1936d9bd019e0e33b0b7b 5e89c364f2266b75cd32f699ba630998a4e9bc22 6a1178f308a06e8280703c703ce9b1cf833f37bf7f4c03e16b8c8a9189686f9a Loading...

	link-danakagetcare.pages.dev/	ScriptElement	101 B	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen30 Hash 6f2d362bf09a9a8abcd81cc1d3a2f738 cacf0f71357292f740081987e2b495d369a3baf3 203b419f9a4d387f5488d2be933a80b7843afa21815430eb46fe72ea840d9962 Loading...

	link-danakagetcare.pages.dev/	ScriptElement	1.1 kB	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen52 Hash 4c7160a73842eb4acb0d9a2df174234a 1f46b981f303564f4bc5b73b986fe468bc29b0f4 8e287a989ba92a78de855d276d85c263174434ce975defe049337c88894c13a4 Loading...

	link-danakagetcare.pages.dev/	ScriptElement	1.1 kB	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen31 Hash d2d7c925de0c0d05cf2bacf175d14426 7763554d89bb82e71163c3dda9e07ff529fb8e37 6eded4be257e05fc63ec36142439477fbfef91dddb7e5d64b209d5ee04ab09e8 Loading...

	link-danakagetcare.pages.dev/logo_png.js	ScriptElement	3.3 kB	2023-11-16	2024-10-18
Pretty URL link-danakagetcare.pages.dev/logo_png.js IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 03:19 Last Seen2024-10-18 12:19 Times Seen7 Hash 47078f1584d827efbab4e072f11598e0 4c919507bbc24d6eef5a84f53349dd87cf0cf7be e90c57a2048bb86835003f46fb67d4fd526a73eee7b773d5ebbe20c3c6fa14fe Loading...

	link-danakagetcare.pages.dev/	ScriptElement	2.2 kB	2023-11-16	2024-10-18
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-16 03:19 Last Seen2024-10-18 12:19 Times Seen7 Hash dc29e6a255a4979bcde9e260754bd0ba 6af366dda638d23b48492ab010cd46b9c4774bf7 3af66dc34b2f3b7120f20f88816664c1200692bed24d767fcb5288c672a5c62f Loading...

	link-danakagetcare.pages.dev/	ScriptElement	189 B	2023-07-12	2024-12-28
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-12 15:04 Last Seen2024-12-28 14:31 Times Seen31 Hash 33d84dbca9b26a513053091b76eaf272 5b45138e86e92fb1bb323b21526d9d5fa3ac327a d334ff9343e41ceaaaf2a6c0460dd51f0e9a03967e471fa9771428214abddfd0 Loading...

	link-danakagetcare.pages.dev/	ScriptElement	1.6 kB	2023-07-19	2024-10-18
Pretty URL link-danakagetcare.pages.dev/ IP 172.66.47.122 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-19 01:07 Last Seen2024-10-18 12:19 Times Seen12 Hash cd3ebb97fd85239ac761e641bce87cf1 5e5eb6bca9505a35e645c32d195d1fcadcc68070 805d6c8e3c6c74ba925d0c7aef769d7453bca12ce160dd9b51e1c607f380e662 Loading...

HTTP Transactions (28)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/3.3.4/jquery.inputmask.bundle.min.js

104.17.25.14

200 OK

20 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery.inputmask/3.3.4/jquery.inputmask.bundle.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (32116)
Size
20 kB (20268 bytes)
Hash
bf0a6f4c595f7b2b530af0ff2a7ad4e0
ae081042899fa3d963fe5de68d28b97cec086156
1d00a43e3b1c901b663bad31799b39eb483cff9bf4e03bce932128d35ce14a9a

HTTP Headers

GET /ajax/libs/jquery.inputmask/3.3.4/jquery.inputmask.bundle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 16 Nov 2023 02:18:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 20268
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-128e9"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1888846
expires: Tue, 05 Nov 2024 02:18:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vwSL3vuKqLDxhQiGmGcTUEmLpXSzRvAGaRUwW6ssLBtzAVRp%2BlMrt8p9GVQgBKn0jRY1rNf6lFVuGNV3ra860vmc95wMygWxxO32UGgbuDzLX4KhnrBeVkNBbA38s4P0JhzSwnP9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 826c3edd8d54b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js

104.17.25.14

200 OK

3.0 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (537)
Size
3.0 kB (3038 bytes)
Hash
acb54232967a36f1df1d0c0623a89d65
6bc0ce0a4a1dd27ddb307b80a1247af996eb23bf
bbb318e841b96acb3c2614eec417a4d7caf9606ea996507dccba84e2f6724e7e

HTTP Headers

GET /ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 16 Nov 2023 02:18:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 3038
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-1ff9"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1719558
expires: Tue, 05 Nov 2024 02:18:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MrFpWr2JHJzVjWwT%2FnaFsU5WV7XscOBDK65J4t4vBMiAA1PCz7DCKGtqVJKhsmTG6Sthucv5i6d9FNFXAJbZRl6p5IJ8T3qpmZpfpTNSifZuYyQPG%2FweBlhZGDvMh1nFCrhgEg7M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 826c3edd8d59b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

link-danakagetcare.pages.dev/

172.66.47.122

200 OK

38 kB

URL User Request GET HTTP/2
link-danakagetcare.pages.dev/
IP
172.66.47.122:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectlink-danakagetcare.pages.dev
FingerprintB9:DD:EA:FD:82:6F:28:C1:01:FC:B6:DC:B6:6F:7E:24:6D:22:42:D7
ValidityTue, 14 Nov 2023 21:14:09 GMT - Mon, 12 Feb 2024 21:14:08 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (496)
Size
38 kB (38369 bytes)
Hash
b57a0ed77e7e20c2e6129177458192ea
965b0bcc5a810f9525d33ccf2f74e455bf6178e6
911039106d343f909852a5037a7d918b23f2a3229eb2bc48f9dc32e91a0ee6a3

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET / HTTP/1.1
Host: link-danakagetcare.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 16 Nov 2023 02:18:49 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"33f7a126784b0683a0ef3e86a07fb795"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GwtpkTvJRwy8HxgKVlCt114ZKJ6CdCHwxqxwnfyVNq9ow4W548JLFy%2BbXftDb6scXjFe3ofcBfRd%2BUE5QObNAn%2FBf41wJaJFXKTjJRtijvorkqoOIgNJhmGo0evaQaJCHWVzKZRILUsTFf3j7DJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 826c3eda6bf9b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js

104.17.25.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32030)
Size
27 kB (27192 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

HTTP Headers

GET /ajax/libs/jquery/3.1.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 16 Nov 2023 02:18:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 27192
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-152b5"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1630683
expires: Tue, 05 Nov 2024 02:18:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T2ujI%2FtlznqFiujAGiREWTxSeV%2FXmUljVJKJfdUkycRTiGlp9AqM0nm2ONUMxlGe4rYboEfeZW3gIMq%2BLj%2BQ64rhuykNtUzohxXTaWrdFO6lr27JQ%2FBiT%2BXfSOvYD20khgzM14XC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 826c3eddcd69b50b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www-dana-idl.github.io/Dana.kaget/dana.css

185.199.109.153

404 Not Found

5.1 kB

URL GET HTTP/2
www-dana-idl.github.io/Dana.kaget/dana.css
IP
185.199.109.153:443
ASN
#54113 FASTLY

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3909)
Size
5.1 kB (5142 bytes)
Hash
1eb970ce5a18bec7165f016df8238566
9efd1514af80fe14db4ed28e9bc53975b9ee089c
70d613e3acfba24fd2876fcbacaf639e1e111ef4d54baf70761c47673f37d6a3

HTTP Headers

GET /Dana.kaget/dana.css HTTP/1.1
Host: www-dana-idl.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
etag: W/"6552848a-239b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
content-encoding: gzip
x-github-request-id: 0DE8:F954:45079AD:460DD6F:65557C09
accept-ranges: bytes
date: Thu, 16 Nov 2023 02:18:50 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1659-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1700101130.890020,VS0,VE110
vary: Accept-Encoding
x-fastly-request-id: 319bc9ae1eaa0d304b20bf774bfbc15bb6c1d6f8
content-length: 5142
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js

142.250.74.138

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (65451)
Size
30 kB (30399 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 11 Nov 2023 02:13:37 GMT
expires: Sun, 10 Nov 2024 02:13:37 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 432313
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js

142.250.74.138

200 OK

33 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (32072)
Size
33 kB (32954 bytes)
Hash
e0e0559014b222245deb26b6ae8bd940
e2f3603e23711f6446f278a411d905623d65201e
89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e

HTTP Headers

GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32954
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Nov 2023 21:51:06 GMT
expires: Thu, 14 Nov 2024 21:51:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 16064
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js

142.250.74.138

200 OK

33 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.11.1/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (32086)
Size
33 kB (33434 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

HTTP Headers

GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 13 Nov 2023 23:42:34 GMT
expires: Tue, 12 Nov 2024 23:42:34 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 182176
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js

142.250.74.138

200 OK

29 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js
IP
142.250.74.138:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
ASCII text, with very long lines (32023)
Size
29 kB (29440 bytes)
Hash
ccd0edd113b78697e04fb5c1b519a5cd
a6eedf84389e1bc9f757bc2d19538f8c8d1cae9d
a57b5242b9a9adc4c1ef846c365147b89c472b9cd770face331efcb965346b25

HTTP Headers

GET /ajax/libs/jquery/2.0.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Nov 2023 21:48:48 GMT
expires: Thu, 14 Nov 2024 21:48:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 16202
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.freepik.com/free-vector/illustration-indonesia-flag_53876-27131.jpg?size=626&ext=jpg

95.101.10.67

200 OK

480 B

URL GET HTTP/2
img.freepik.com/free-vector/illustration-indonesia-flag_53876-27131.jpg?size=626&ext=jpg
IP
95.101.10.67:443
ASN
#20940 Akamai International B.V.

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerLet's Encrypt
Subject*.freepik.com
Fingerprint8F:A3:ED:55:1F:A4:72:3E:1F:15:1F:F2:82:3A:C5:F4:68:58:A1:1D
ValidityWed, 27 Sep 2023 17:52:27 GMT - Tue, 26 Dec 2023 17:52:26 GMT

File type
ISO Media, AVIF Image\012- data
Size
480 B (480 bytes)
Hash
0e602e3bb98f39ec014ad2e6c05be078
61d2bf80be73b35d6f61330912dcb376847168d3
2670570fe9acf38030f386c3b07986d01734115a5d4d4dcb8c1e32a5db051cd5

HTTP Headers

GET /free-vector/illustration-indonesia-flag_53876-27131.jpg?size=626&ext=jpg HTTP/1.1
Host: img.freepik.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
etag: "e35dbd0eb6ce19e2683fb6d8a9231447"
last-modified: Thu, 19 Oct 2023 07:24:58 GMT
content-length: 480
content-type: image/avif
cache-control: private, no-transform, max-age=604800
expires: Thu, 23 Nov 2023 02:18:50 GMT
date: Thu, 16 Nov 2023 02:18:50 GMT
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600,h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
x-robots-tag: noimageai
X-Firefox-Spdy: h2

cdn.rawgit.com/igorescobar/jQuery-Mask-Plugin/1ef022ab/dist/jquery.mask.min.js

194.242.11.186

301 Moved Permanently

125 B

URL GET HTTP/2
cdn.rawgit.com/igorescobar/jQuery-Mask-Plugin/1ef022ab/dist/jquery.mask.min.js
IP
194.242.11.186:443
ASN
#34989 ServeTheWorld AS

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectcdn.rawgit.com
Fingerprint36:AA:22:C7:A2:B1:56:5C:EC:E6:6A:C7:48:F2:D9:E9:83:2A:F9:4B
ValidityFri, 20 Oct 2023 23:15:10 GMT - Thu, 18 Jan 2024 23:15:09 GMT

File type
ASCII text, with no line terminators
Size
125 B (125 bytes)
Hash
a38d9c1632f5786f0b30e251576793ba
ec58755fe439d0c0e522b214ad8514bda241e7d3
02bd928a0f03b36d019e5a35b6b0ca4e4d94b4d6b78c9900135b973f3d156f27

HTTP Headers

GET /igorescobar/jQuery-Mask-Plugin/1ef022ab/dist/jquery.mask.min.js HTTP/1.1
Host: cdn.rawgit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Thu, 16 Nov 2023 02:18:50 GMT
content-type: text/plain; charset=utf-8
content-length: 125
location: https://cdn.jsdelivr.net/gh/igorescobar/jQuery-Mask-Plugin@1ef022ab/dist/jquery.mask.min.js
server: BunnyCDN-NO1-830
cdn-pullzone: 201235
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
age: 69553
alt-svc: h3=":443", h3-29=":443", h3-27=":443"
cache-control: public, max-age=2592000
cdn-cachedat: 11/16/2023 02:18:50
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-served-by: cache-fra-etou8220044-FRA, cache-chi-kigq8000060-CHI
x-cache: MISS, HIT
cdn-proxyver: 1.04
cdn-requestpullcode: 301
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 301
cdn-requestid: 29d503f188bc9052e29e4957a74c98ce
cdn-cache: MISS
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js

104.17.25.14

200 OK

3.0 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (537)
Size
3.0 kB (3038 bytes)
Hash
acb54232967a36f1df1d0c0623a89d65
6bc0ce0a4a1dd27ddb307b80a1247af996eb23bf
bbb318e841b96acb3c2614eec417a4d7caf9606ea996507dccba84e2f6724e7e

HTTP Headers

GET /ajax/libs/jquery.mask/1.14.15/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 16 Nov 2023 02:18:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 3038
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-1ff9"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1719559
expires: Tue, 05 Nov 2024 02:18:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tvQPJf0zAxxKMcuMzExWZeU4Pytrw%2ByxwXFfJoSYhD1xg9Q0srPlWvIagX57EMp7pz59MiOr5YImSAOOSd5Z9abtVB2ihfn0mE3kDXsk3JEuvp27cH7UfflCRnstNo%2FBK7zHtFtl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 826c3ee0cba7b50f-OSL
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/gh/igorescobar/jQuery-Mask-Plugin@1ef022ab/dist/jquery.mask.min.js

151.101.193.229

200 OK

3.5 kB

URL GET HTTP/2
cdn.jsdelivr.net/gh/igorescobar/jQuery-Mask-Plugin@1ef022ab/dist/jquery.mask.min.js
IP
151.101.193.229:443
ASN
#54113 FASTLY

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (551)
Size
3.5 kB (3541 bytes)
Hash
7cf822dfabcf03f507100695b88df84b
3e9ff06e8f52afdb8193584c61d4400938b71d63
0aaed71320dc122a42a59383acc7b8071ba4aa5c7c47d667773218b38c32b443

HTTP Headers

GET /gh/igorescobar/jQuery-Mask-Plugin@1ef022ab/dist/jquery.mask.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1ef022ab
x-jsd-version-type: branch
etag: W/"1f3d-Pp/wbo9Sr9uBk1hMYdRACTi3HWM"
content-encoding: br
accept-ranges: bytes
date: Thu, 16 Nov 2023 02:18:50 GMT
age: 38036
x-served-by: cache-fra-eddf8230084-FRA, cache-bma1626-BMA
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3541
X-Firefox-Spdy: h2

link-danakagetcare.pages.dev/logo_png.js

172.66.47.122

200 OK

1.5 kB

URL GET HTTP/3
link-danakagetcare.pages.dev/logo_png.js
IP
172.66.47.122:443
ASN
#13335 CLOUDFLARENET

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectlink-danakagetcare.pages.dev
FingerprintB9:DD:EA:FD:82:6F:28:C1:01:FC:B6:DC:B6:6F:7E:24:6D:22:42:D7
ValidityTue, 14 Nov 2023 21:14:09 GMT - Mon, 12 Feb 2024 21:14:08 GMT

File type
Unicode text, UTF-8 text
Size
1.5 kB (1496 bytes)
Hash
47078f1584d827efbab4e072f11598e0
4c919507bbc24d6eef5a84f53349dd87cf0cf7be
e90c57a2048bb86835003f46fb67d4fd526a73eee7b773d5ebbe20c3c6fa14fe

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DANA

HTTP Headers

GET /logo_png.js HTTP/1.1
Host: link-danakagetcare.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 16 Nov 2023 02:18:49 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"2e1b3f34348af9371afab74ccce42a0f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uXGzgvszRjJQPLVGEM3JahksAFoyTHVGdOMeSjlU2Zc1G2kU%2ByKSRfiUq9YdmlDJ6uGzq%2BjuKcebHaNnzo1DvfcfoV96JzUOG%2BO6b6uRK0nqmg8Y9eRQpm2gbyRa7VmhrIznvhnnpsNsgMRfBQyw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 826c3edd0eeb568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Inter:100,200,300,regular,500,600,700,800,900

142.250.74.106

200 OK

10 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Inter:100,200,300,regular,500,600,700,800,900
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT

File type
gzip compressed data, max compression\012- data
Size
10 kB (9977 bytes)
Hash
3bbee731d59d47b92080381d7478a8ad
e0d15b53707f02302d2dcd59eba99c564e765653
819ba4bda4853d8b43748013af5496bf36b6ef63ced3cb0c3fbddcb3cf29a9e2

HTTP Headers

GET /css?family=Inter:100,200,300,regular,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 16 Nov 2023 02:18:50 GMT
date: Thu, 16 Nov 2023 02:18:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU

142.250.74.174

200 OK

12 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3\012- data
Size
12 kB (11540 bytes)
Hash
45525a4e10b53535c2f0a134aec2d0fe
8689b23fb445fab7c8f3f92f91eb8606a5a51959
0546f98f9019a3d2afbe9372ba08aba895e2aa716bd0fec8e78ff5879162f134

HTTP Headers

GET /images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 11540
date: Thu, 16 Nov 2023 02:18:50 GMT
expires: Fri, 15 Nov 2024 02:18:50 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 15 Sep 2019 17:10:09 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU

142.250.74.174

200 OK

12 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3\012- data
Size
12 kB (11540 bytes)
Hash
45525a4e10b53535c2f0a134aec2d0fe
8689b23fb445fab7c8f3f92f91eb8606a5a51959
0546f98f9019a3d2afbe9372ba08aba895e2aa716bd0fec8e78ff5879162f134

HTTP Headers

GET /images?q=tbn:ANd9GcQZ9dATs_nkzyO-gSoQWbtIhJV7bG51r3gOKg&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 11540
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 02:18:50 GMT
expires: Fri, 15 Nov 2024 02:18:50 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 15 Sep 2019 17:10:09 GMT
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgrWtY0kKy_PhEmPe1oiSlQMTbwojkQ9xkGIDV7JU1wx7ofj7R2evgWsKdBPJ_3sv1wFAIpmsQYQ8_70jWdrr6KGTXT6ie9IuJWhocY_-FmK01JKwrbFZ6JPYwoaY5qCOX7_XS4bHlFFPS3LcwWUChAmCCQFf9BpSUgCGh7u4G9ubbnVgXJYdIjFOLK/s16000/AddText_05-15-01.34.42.png

142.250.74.33

200 OK

14 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgrWtY0kKy_PhEmPe1oiSlQMTbwojkQ9xkGIDV7JU1wx7ofj7R2evgWsKdBPJ_3sv1wFAIpmsQYQ8_70jWdrr6KGTXT6ie9IuJWhocY_-FmK01JKwrbFZ6JPYwoaY5qCOX7_XS4bHlFFPS3LcwWUChAmCCQFf9BpSUgCGh7u4G9ubbnVgXJYdIjFOLK/s16000/AddText_05-15-01.34.42.png
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
PNG image data, 400 x 116, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14267 bytes)
Hash
c7c7787f73068cf8d6d4e1a6ed63ef76
7bc33a3eec28f6b93cd63a5eda10115cfd06bbdf
43b04bdc0defafe08486135cd3e7c2c5c2140cac8087dc9d03bc1484ce6d58e2

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEgrWtY0kKy_PhEmPe1oiSlQMTbwojkQ9xkGIDV7JU1wx7ofj7R2evgWsKdBPJ_3sv1wFAIpmsQYQ8_70jWdrr6KGTXT6ie9IuJWhocY_-FmK01JKwrbFZ6JPYwoaY5qCOX7_XS4bHlFFPS3LcwWUChAmCCQFf9BpSUgCGh7u4G9ubbnVgXJYdIjFOLK/s16000/AddText_05-15-01.34.42.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v641"
expires: Fri, 17 Nov 2023 02:18:51 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="AddText_05-15-01.34.42.png"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:51 GMT
server: fife
content-length: 14267
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8hbZEfutKvr9pkj0-mkJYWt-1SBtt3gw-HFOEZc0172okrp0SFHLaW3PRGVDm1U0P7WWEMELIw4nlq1_1gCgyZBo3cxf-OJNpguNamdJryCkGU-hTHiW3RyOv5JD9eIjXTFtrJFCVn0ae4RxG4Oi-czAP20tEaJI3OstxFAbtOwtFxp6RvOHc6NZL/s1600/load_bg.png

142.250.74.33

200 OK

7.6 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi8hbZEfutKvr9pkj0-mkJYWt-1SBtt3gw-HFOEZc0172okrp0SFHLaW3PRGVDm1U0P7WWEMELIw4nlq1_1gCgyZBo3cxf-OJNpguNamdJryCkGU-hTHiW3RyOv5JD9eIjXTFtrJFCVn0ae4RxG4Oi-czAP20tEaJI3OstxFAbtOwtFxp6RvOHc6NZL/s1600/load_bg.png
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
PNG image data, 300 x 300, 8-bit gray+alpha, non-interlaced\012- data
Size
7.6 kB (7617 bytes)
Hash
001751494ae109e2f7f8a8a32f96a164
ed7fae6661ba71874ce35bc4528f1a4a94db7163
4f9d3c4e300d721848f9cac1283cb7afcc5d378d72d56bfa1288fd5b506bf648

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEi8hbZEfutKvr9pkj0-mkJYWt-1SBtt3gw-HFOEZc0172okrp0SFHLaW3PRGVDm1U0P7WWEMELIw4nlq1_1gCgyZBo3cxf-OJNpguNamdJryCkGU-hTHiW3RyOv5JD9eIjXTFtrJFCVn0ae4RxG4Oi-czAP20tEaJI3OstxFAbtOwtFxp6RvOHc6NZL/s1600/load_bg.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v60c"
expires: Fri, 17 Nov 2023 02:18:51 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="load_bg.png"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:51 GMT
server: fife
content-length: 7617
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2bBMVwYYKeZgCDrn0p4KsFYmQ1SRc6igX5lRwrNCXdc7YPYS80nlUrCcPnKCpv2M7vlP-OFsMgZtgf_-2vCU_T-1Bx94mSgYLFlgk4hGqEKmdHJZxLJR7e2wIonshknidTarYXNIu11uoWQMvThCh9kzi2h-Q6TPcEV788XeYmf-NU9pLd7tPZwT2/s16000/AddText_05-01-07.00.21.jpg

142.250.74.33

200 OK

117 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2bBMVwYYKeZgCDrn0p4KsFYmQ1SRc6igX5lRwrNCXdc7YPYS80nlUrCcPnKCpv2M7vlP-OFsMgZtgf_-2vCU_T-1Bx94mSgYLFlgk4hGqEKmdHJZxLJR7e2wIonshknidTarYXNIu11uoWQMvThCh9kzi2h-Q6TPcEV788XeYmf-NU9pLd7tPZwT2/s16000/AddText_05-01-07.00.21.jpg
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1080x2133, components 3\012- data
Size
117 kB (116901 bytes)
Hash
3d0198c60f76914bcd2c66fd8469f639
540241f3e8e5bc3444488841448627e608ce6981
fd1b8d6eaa9079247de9bd79a7da8e525a304488ab363ab42466dc80fc200c92

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEj2bBMVwYYKeZgCDrn0p4KsFYmQ1SRc6igX5lRwrNCXdc7YPYS80nlUrCcPnKCpv2M7vlP-OFsMgZtgf_-2vCU_T-1Bx94mSgYLFlgk4hGqEKmdHJZxLJR7e2wIonshknidTarYXNIu11uoWQMvThCh9kzi2h-Q6TPcEV788XeYmf-NU9pLd7tPZwT2/s16000/AddText_05-01-07.00.21.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v571"
expires: Fri, 17 Nov 2023 02:18:51 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="AddText_05-01-07.00.21.jpg"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:51 GMT
server: fife
content-length: 116901
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhNI1Emy7PX0havgWqHmqlT51KSm22vosgN4OekNvqowvUD5b_ftp3dSwYRhaNDEGZKkyXibrQzF2FPZ9tB9jHwqMYmsQv7SZs9yiVTt9TfQUgON1sKVo9ikO9NO82v7U2amQPmLFih0CenbjLkpEdathvIorjl6Pr-nxFULehzY2gAPpIyJsYX0I7O/s16000/AddText_05-15-01.36.51.jpg

142.250.74.33

200 OK

8.4 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhNI1Emy7PX0havgWqHmqlT51KSm22vosgN4OekNvqowvUD5b_ftp3dSwYRhaNDEGZKkyXibrQzF2FPZ9tB9jHwqMYmsQv7SZs9yiVTt9TfQUgON1sKVo9ikO9NO82v7U2amQPmLFih0CenbjLkpEdathvIorjl6Pr-nxFULehzY2gAPpIyJsYX0I7O/s16000/AddText_05-15-01.36.51.jpg
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 150x174, components 3\012- data
Size
8.4 kB (8413 bytes)
Hash
5f8b8e312ce0cb9dbb0a32f53e82598f
3d0f7275c4100f43e559c00afe03a04b5a4007d2
f228be9eb66341d93911ac2dcde34fedc7b303f627685877acdeb4157e99a9fb

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhNI1Emy7PX0havgWqHmqlT51KSm22vosgN4OekNvqowvUD5b_ftp3dSwYRhaNDEGZKkyXibrQzF2FPZ9tB9jHwqMYmsQv7SZs9yiVTt9TfQUgON1sKVo9ikO9NO82v7U2amQPmLFih0CenbjLkpEdathvIorjl6Pr-nxFULehzY2gAPpIyJsYX0I7O/s16000/AddText_05-15-01.36.51.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v643"
expires: Fri, 17 Nov 2023 02:18:51 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="AddText_05-15-01.36.51.jpg"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:51 GMT
server: fife
content-length: 8413
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhl9xJVYWF_a9vAhgW5QQgozvZVADTaJgIX64iO7a5sQuMpSoPBK3zfKjvT6xc9fZPfxZz39mjk1H_oZOOOtYvO1l7DkWNqiD5LJyGYdwDNyHuyqLk_Ix6eFs3aLCG2yUXVwtsnj0BXTA40WZmecyLyCIm_ff0xNkkOvkuKBOl6yfS-QjI_EJrIyGtU/s1600/load_spin.png

142.250.74.33

200 OK

4.7 kB

URL GET HTTP/2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhl9xJVYWF_a9vAhgW5QQgozvZVADTaJgIX64iO7a5sQuMpSoPBK3zfKjvT6xc9fZPfxZz39mjk1H_oZOOOtYvO1l7DkWNqiD5LJyGYdwDNyHuyqLk_Ix6eFs3aLCG2yUXVwtsnj0BXTA40WZmecyLyCIm_ff0xNkkOvkuKBOl6yfS-QjI_EJrIyGtU/s1600/load_spin.png
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
PNG image data, 200 x 200, 8-bit gray+alpha, non-interlaced\012- data
Size
4.7 kB (4696 bytes)
Hash
955f1e3415ef3b8a9014cd9494766361
c2b79837de62700a431c51e627e545c8ad8fc604
0224a076d967053559dc1e17752b57bc121782add2ed23279bda160fb9ef88f8

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEhl9xJVYWF_a9vAhgW5QQgozvZVADTaJgIX64iO7a5sQuMpSoPBK3zfKjvT6xc9fZPfxZz39mjk1H_oZOOOtYvO1l7DkWNqiD5LJyGYdwDNyHuyqLk_Ix6eFs3aLCG2yUXVwtsnj0BXTA40WZmecyLyCIm_ff0xNkkOvkuKBOl6yfS-QjI_EJrIyGtU/s1600/load_spin.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v60d"
expires: Fri, 17 Nov 2023 02:18:51 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="load_spin.png"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:51 GMT
server: fife
content-length: 4696
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEid9dARAQbMu1UTEgpOfyH6pn4eI3_XArbELp_8lfZtysRgex-gqs0Czc9ch_O7U2lrucgBVSqGQEL33BwV3Ri4D3evjzJHJ6LBFa_K-pIPbdO6QQ3iHlTkLiqo_w2z2NbXTw83lNcWHG7T9q2n6m7N3SZ-qfZpTdsioS3dm-YIfJh4zU16QEODOLKn/s16000/AddText_06-06-08.17.04.jpg

142.250.74.33

200 OK

56 kB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEid9dARAQbMu1UTEgpOfyH6pn4eI3_XArbELp_8lfZtysRgex-gqs0Czc9ch_O7U2lrucgBVSqGQEL33BwV3Ri4D3evjzJHJ6LBFa_K-pIPbdO6QQ3iHlTkLiqo_w2z2NbXTw83lNcWHG7T9q2n6m7N3SZ-qfZpTdsioS3dm-YIfJh4zU16QEODOLKn/s16000/AddText_06-06-08.17.04.jpg
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 599x237, components 3\012- data
Size
56 kB (56391 bytes)
Hash
5ecb3bcb8068110c5c44a096ba43cb77
e4e215baacbb74b21a31914cb82aea083c56685b
ed8e7414b2e1883d3d618f6b6ab5d2b100734edac00cd5a1ed3a278c745053a1

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEid9dARAQbMu1UTEgpOfyH6pn4eI3_XArbELp_8lfZtysRgex-gqs0Czc9ch_O7U2lrucgBVSqGQEL33BwV3Ri4D3evjzJHJ6LBFa_K-pIPbdO6QQ3iHlTkLiqo_w2z2NbXTw83lNcWHG7T9q2n6m7N3SZ-qfZpTdsioS3dm-YIfJh4zU16QEODOLKn/s16000/AddText_06-06-08.17.04.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73b"
expires: Fri, 17 Nov 2023 02:18:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="AddText_06-06-08.17.04.jpg"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:53 GMT
server: fife
content-length: 56391
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEilUMIG_IMFVixTFpWb4xA5f1HJt25lbv-cc1baknB_YJeWO9FYU4SJOzdeMNkA1msFpUU-0MiI3B-llmFX122-XhqCq7-1HW4YUfaWX52rlNtfspDDvlFNj_A--xZIRknP3ycDkzm51noxYaFx_gfOck3U745QZSBwpCSesqOq1oEycuQamqaZlqoz/s16000/ezgif.com-crop%20(3).gif

142.250.74.33

200 OK

1.4 MB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEilUMIG_IMFVixTFpWb4xA5f1HJt25lbv-cc1baknB_YJeWO9FYU4SJOzdeMNkA1msFpUU-0MiI3B-llmFX122-XhqCq7-1HW4YUfaWX52rlNtfspDDvlFNj_A--xZIRknP3ycDkzm51noxYaFx_gfOck3U745QZSBwpCSesqOq1oEycuQamqaZlqoz/s16000/ezgif.com-crop%20(3).gif
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
GIF image data, version 89a, 599 x 944\012- data
Size
1.4 MB (1386608 bytes)
Hash
3c0cbf27635610cc0872eb182c737b41
e9496fd5b16ed12289d07bb4e4efcdd0f4ac6450
90b285f5ad416e5ffa9a0f86c73653641c4b69e12a108011b362e8d1158d7594

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEilUMIG_IMFVixTFpWb4xA5f1HJt25lbv-cc1baknB_YJeWO9FYU4SJOzdeMNkA1msFpUU-0MiI3B-llmFX122-XhqCq7-1HW4YUfaWX52rlNtfspDDvlFNj_A--xZIRknP3ycDkzm51noxYaFx_gfOck3U745QZSBwpCSesqOq1oEycuQamqaZlqoz/s16000/ezgif.com-crop%20(3).gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73d"
expires: Fri, 17 Nov 2023 02:18:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ezgif.com-crop (3).gif"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:53 GMT
server: fife
content-length: 1386608
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjj8Fs3JMUwF85O07XgsV-e1rmQjTwS91jcu-zh3Lr_fEgVfhY823rmnMewtU59iGvsFjcBm-12OLSj81f57ZEksJeU2GaG7UU3zuwDsOsfTO4dAJ693JJyILcXjdHEzirw-pPBCeV1CfTqSroNgoMTGIfy-Y-HC8GAJDmo68GYd1-x2gGu0UsincrU/s16000/ezgif.com-crop%20(5).gif

142.250.74.33

200 OK

1.2 MB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjj8Fs3JMUwF85O07XgsV-e1rmQjTwS91jcu-zh3Lr_fEgVfhY823rmnMewtU59iGvsFjcBm-12OLSj81f57ZEksJeU2GaG7UU3zuwDsOsfTO4dAJ693JJyILcXjdHEzirw-pPBCeV1CfTqSroNgoMTGIfy-Y-HC8GAJDmo68GYd1-x2gGu0UsincrU/s16000/ezgif.com-crop%20(5).gif
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
GIF image data, version 89a, 599 x 944\012- data
Size
1.2 MB (1188349 bytes)
Hash
785a25d36d14a2c575547966151f81a1
76b935386863f57b8b829b0d778f0a9257ac4b9d
f630b7d3b73881e20cb5cde9fefb66e917f66ce96264f0a381ed39a6a399265a

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEjj8Fs3JMUwF85O07XgsV-e1rmQjTwS91jcu-zh3Lr_fEgVfhY823rmnMewtU59iGvsFjcBm-12OLSj81f57ZEksJeU2GaG7UU3zuwDsOsfTO4dAJ693JJyILcXjdHEzirw-pPBCeV1CfTqSroNgoMTGIfy-Y-HC8GAJDmo68GYd1-x2gGu0UsincrU/s16000/ezgif.com-crop%20(5).gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73d"
expires: Fri, 17 Nov 2023 02:18:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ezgif.com-crop (5).gif"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:53 GMT
server: fife
content-length: 1188349
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEixR-U2gHP_VriGKaaVcf-_BbZmvWWoaRI8Wd26DYewNJayil_To6kgdWxmdq3TDJKQJ7lAAbD1de1uuuWTLQzCGdR8qT1S2mTehsdR02AFN573iPkN-0IrliCuRAy0xJfSH9AlfJWV7odqpRC_bxJLM2EkLf-84_ePEjEfE8SOtiKfEjcLQ7nDBjDc/s16000/ezgif.com-crop%20(4).gif

142.250.74.33

200 OK

1.4 MB

URL GET HTTP/3
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEixR-U2gHP_VriGKaaVcf-_BbZmvWWoaRI8Wd26DYewNJayil_To6kgdWxmdq3TDJKQJ7lAAbD1de1uuuWTLQzCGdR8qT1S2mTehsdR02AFN573iPkN-0IrliCuRAy0xJfSH9AlfJWV7odqpRC_bxJLM2EkLf-84_ePEjEfE8SOtiKfEjcLQ7nDBjDc/s16000/ezgif.com-crop%20(4).gif
IP
142.250.74.33:443
ASN
#15169 GOOGLE

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT

File type
GIF image data, version 89a, 600 x 947\012- data
Size
1.4 MB (1382333 bytes)
Hash
4a67a67a0d4666b0da5807c65c3f09c3
b6dc767bca35bf211d8d2298e6c8664eebdd5f84
2e3a81133f893dfb5fc3f7d52e02fb7c193f68bfb61696dc5076c947bd4ea8f0

HTTP Headers

GET /img/b/R29vZ2xl/AVvXsEixR-U2gHP_VriGKaaVcf-_BbZmvWWoaRI8Wd26DYewNJayil_To6kgdWxmdq3TDJKQJ7lAAbD1de1uuuWTLQzCGdR8qT1S2mTehsdR02AFN573iPkN-0IrliCuRAy0xJfSH9AlfJWV7odqpRC_bxJLM2EkLf-84_ePEjEfE8SOtiKfEjcLQ7nDBjDc/s16000/ezgif.com-crop%20(4).gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://link-danakagetcare.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "v73c"
expires: Fri, 17 Nov 2023 02:18:53 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ezgif.com-crop (4).gif"
x-content-type-options: nosniff
date: Thu, 16 Nov 2023 02:18:53 GMT
server: fife
content-length: 1382333
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www-dana-idl.github.io/Dana.kaget/diana-dana.mp3

185.199.109.153

404 Not Found

0 B

URL GET HTTP/2
www-dana-idl.github.io/Dana.kaget/diana-dana.mp3
IP
185.199.109.153:443
ASN
#54113 FASTLY

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerDigiCert Inc
Subject*.github.io
FingerprintA1:46:14:C7:2A:1D:52:79:F6:AA:2B:B2:C5:0A:3B:D3:F5:02:06:75
ValidityTue, 21 Feb 2023 00:00:00 GMT - Wed, 20 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Dana.kaget/diana-dana.mp3 HTTP/1.1
Host: www-dana-idl.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://link-danakagetcare.pages.dev/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
permissions-policy: interest-cohort=()
etag: "6552848a-239b"
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; img-src data:; connect-src 'self'
x-github-request-id: 5A2C:D51D:157033C:15C218A:65557C08
accept-ranges: bytes
age: 0
date: Thu, 16 Nov 2023 02:18:50 GMT
via: 1.1 varnish
x-served-by: cache-bma1659-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1700101131.611515,VS0,VE111
vary: Accept-Encoding
x-fastly-request-id: 17b07447a89ebe6e87602e98516ef27608985b81
content-length: 9115
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js

104.17.25.14

200 OK

87 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://link-danakagetcare.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://link-danakagetcare.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 16 Nov 2023 02:18:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1231316
expires: Tue, 05 Nov 2024 02:18:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5N8yJjg8dAszvmvV2LcLtOnwhEKm40FNvBV9LlajI1Lb7tV%2F4Hiuo03sppv05T1waU%2FYzx3V%2BYVzzM%2FN3igjczdeT4T%2FzHVglMheW4gAD0XHxB0CSu6TAibXEiSHpZdJOWdCxl5f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 826c3edda946568a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by