Report - gdenwui.pages.dev/?564-4c0d=support

Report Overview

Visitedpublic

2025-07-20 15:12:22

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
gdenwui.pages.dev	unknown	2020-09-02	2025-07-13	2025-07-20	2.0 kB	207 kB	172.66.47.153
img.logo.dev	unknown	2022-10-21	2025-03-23	2025-07-16	940 B	11 kB	0.0.0.0
api.geoapify.com	407362	2018-10-26	2021-05-28	2025-07-20	487 B	2.4 kB	104.20.44.30

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-07-20 15:11:59	low	Client IP	172.66.47.153	ET INFO Observed Cloudflare Page Developer Domain (pages .dev in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	From	Size	First Seen	Last Seen
	gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/	ScriptElement	673 B	2025-07-13	2025-07-21
URL gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ IP / ASN 172.66.47.153 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2025-07-13 Last Seen 2025-07-21 Times Seen 5 Size 673 B (673 bytes) MD5 3d9900228b9bcb172fd496d8594e7a6f SHA1 005e2788405e0c4fadf95dcc8f5f6826f09e5390 SHA256 c407e9a1e5954b349191da803f6da9f8e90763d54eedcfd8645d6567257d0dab Format Code Loading...

	gdenwui.pages.dev/assets/index-DW6vegej.js	ScriptElement	198 kB	2025-07-13	2025-07-21
URL gdenwui.pages.dev/assets/index-DW6vegej.js IP / ASN 172.66.47.153 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2025-07-13 Last Seen 2025-07-21 Times Seen 5 Size 198 kB (198079 bytes) MD5 7f421780b3eca60cf82c2482e1d31d20 SHA1 cf2084b756a00442a4e7fca8bb13f61782a33b38 SHA256 bc8f76303c387b6a171b7cb75dd6cbbebadd9756ca459e195eef0ac3d26a865e Format Code Loading...

HTTP Transactions (7)

	URL	IP	Response	Size
	GET img.logo.dev/supermicro.com?token=pk_blFY9drnQGGi9BslxsW5pQ	0.0.0.0		0 B
URL img.logo.dev/supermicro.com?token=pk_blFY9drnQGGi9BslxsW5pQ IP / ASN 0.0.0.0 #0 Requested byhttps://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ Resource Info File typeN/A First Seen0001-01-01 Last Seen2025-08-02 Times Seen5609205 Size0 B (0 bytes) MD5d41d8cd98f00b204e9800998ecf8427e SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /supermicro.com?token=pk_blFY9drnQGGi9BslxsW5pQ HTTP/1.1 Host: img.logo.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gdenwui.pages.dev/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache`

	GET img.logo.dev/supermicro.com?token=pk_blFY9drnQGGi9BslxsW5pQ	54.240.174.40	200 OK	11 kB
URL img.logo.dev/supermicro.com?token=pk_blFY9drnQGGi9BslxsW5pQ IP / ASN 54.240.174.40 #16509 AMAZON-02 Requested byhttps://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ Resource Info File typeJPEG image data, baseline, precision 8, 128x128, components 3 First Seen2025-07-20 Last Seen2025-07-20 Times Seen2 Size11 kB (11059 bytes) MD5ac46bfdb2bfcd2cbf2783eec5faa26ba SHA1f63d81978e17b83a7d67057b59afb14c76816ed1 SHA256ec2620fbc000e7a6d9391f70590739616b66c1b034d505b70d5915a1ff3afcea Certificate Info IssuerAmazon Subjectimg.logo.dev Fingerprint48:59:02:88:83:04:FF:A6:01:1B:6C:C6:86:60:2E:5C:F7:7C:69:97 ValidityFri, 27 Dec 2024 00:00:00 GMT - Sun, 25 Jan 2026 23:59:59 GMT HTTP Headers `GET /supermicro.com?token=pk_blFY9drnQGGi9BslxsW5pQ HTTP/1.1 Host: img.logo.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gdenwui.pages.dev/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: image/jpeg date: Sun, 20 Jul 2025 11:08:19 GMT cache-control: max-age=86400, stale-while-revalidate=600 x-cache: Hit from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: GT0xDiJSARQanKTWBvG26aRNFbMxIQWH14mMVZHLtcTOQIbpOKlNXQ== age: 14621 vary: Origin X-Firefox-Spdy: h2`

	GET api.geoapify.com/v1/ipinfo?apiKey=139d2378a5554f48bf290b61999b4e8a	104.20.44.30	200 OK	1.2 kB
URL api.geoapify.com/v1/ipinfo?apiKey=139d2378a5554f48bf290b61999b4e8a IP / ASN 104.20.44.30 #13335 CLOUDFLARENET Requested byhttps://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ Resource Info File typeJSON text data First Seen2025-06-03 Last Seen2025-08-02 Times Seen105 Size1.2 kB (1194 bytes) MD5dd571b23351557352fc50abe2fb1a2a4 SHA14112a6eb252c3d0507dfc57c8c0b801ad6e117e1 SHA2561669c81c6c4d7d87e89d494d40cccd064a1125b05d345e72a1701ae0acb99507 Certificate Info IssuerGoogle Trust Services Subjectgeoapify.com Fingerprint66:0F:21:7F:91:99:E3:1F:06:36:D6:C1:84:67:D2:6B:5D:7F:47:E3 ValidityWed, 25 Jun 2025 06:25:23 GMT - Tue, 23 Sep 2025 07:25:21 GMT HTTP Headers `GET /v1/ipinfo?apiKey=139d2378a5554f48bf290b61999b4e8a HTTP/1.1 Host: api.geoapify.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gdenwui.pages.dev/ Origin: https://gdenwui.pages.dev DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 20 Jul 2025 15:12:01 GMT content-type: application/json; charset=utf-8 cf-ray: 962364f599800b45-OSL api-version: 1.0 access-control-allow-origin: * access-control-allow-headers: accept, accept-language, content-language, access-control-max-age, access-control-allow-headers, access-control-allow-methods, access-control-allow-origin, allow, api-version, cf-ray, content-encoding, content-type, date, expect-ct, server, status, vary, cache-control, etag, last-modified, expires, host, x-forwarded-for, cf-timezone, accept-encoding, cf-iplongitude, x-forwarded-proto, cf-iplatitude, cf-ipcountry, cf-visitor, cf-ipcontinent, cf-ipcity, cf-region, cdn-loop, cf-connecting-ip, cf-postal-code, cf-region-code, user-agent, referer, origin, dnt, sec-fetch-dest, sec-fetch-mode, sec-fetch-site, pragma, x-forwarded-port, x-lb-request-metrics, x-lb-request-chain access-control-allow-methods: GET, POST, DELETE, OPTIONS, PUT access-control-allow-credentials: true vary: Accept-Encoding cache-control: private, max-age=0, no-cache content-encoding: gzip cf-cache-status: DYNAMIC server: cloudflare alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	GET gdenwui.pages.dev/favicon.ico	172.66.47.153	200 OK	1.6 kB
URL gdenwui.pages.dev/favicon.ico IP / ASN 172.66.47.153 #13335 CLOUDFLARENET Requested byhttps://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ Resource Info File typeHTML document, ASCII text, with very long lines (338) First Seen2025-07-13 Last Seen2025-07-21 Times Seen5 Size1.6 kB (1579 bytes) MD538d31ac7c0d96bd278fb3bd795992a5f SHA1c6e9e139d568d845b0c6310d1b8331551da322eb SHA25675d2b0a6ddc6fb775cfb623a9dd99a7fa87aba50985c627eb1927c03e0ba1cd0 Certificate Info IssuerGoogle Trust Services Subjectgdenwui.pages.dev Fingerprint85:CA:4A:4E:08:CB:A1:6A:9C:37:BB:0E:D8:77:E3:30:52:F4:77:52 ValidityMon, 07 Jul 2025 17:42:20 GMT - Sun, 05 Oct 2025 18:39:40 GMT HTTP Headers `GET /favicon.ico HTTP/1.1 Host: gdenwui.pages.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Sun, 20 Jul 2025 15:12:01 GMT content-type: text/html; charset=utf-8 content-encoding: br access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff priority: u=6,i=?0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jZRfDWswSHU9N3kw7ZuA3I01O2CITnX034Osx6JjemCrDSh1pGDUhR41nriZBlLBK35dOVRGFXo2SucfJ6WSybpg7coktEt0eX7pe1cZVvwife159kttigtxzPGrkwi5GahTmw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 962364f5eec356c3-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=4209&min_rtt=1440&rtt_var=3432&sent=76&recv=19&lost=0&retrans=0&sent_bytes=71888&recv_bytes=2265&delivery_rate=17781732&cwnd=43200&unsent_bytes=0&cid=4066b854f86c1289&ts=968&x=1", cfExtPri, cfHdrFlush;dur=0

	GET gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/	172.66.47.153	200 OK	1.6 kB
URL gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ IP / ASN 172.66.47.153 #13335 CLOUDFLARENET Requested byN/A Resource Info File typeHTML document, ASCII text, with very long lines (338) First Seen2025-07-13 Last Seen2025-07-21 Times Seen5 Size1.6 kB (1579 bytes) MD538d31ac7c0d96bd278fb3bd795992a5f SHA1c6e9e139d568d845b0c6310d1b8331551da322eb SHA25675d2b0a6ddc6fb775cfb623a9dd99a7fa87aba50985c627eb1927c03e0ba1cd0 Certificate Info IssuerGoogle Trust Services Subjectgdenwui.pages.dev Fingerprint85:CA:4A:4E:08:CB:A1:6A:9C:37:BB:0E:D8:77:E3:30:52:F4:77:52 ValidityMon, 07 Jul 2025 17:42:20 GMT - Sun, 05 Oct 2025 18:39:40 GMT HTTP Headers GET /?564-4c0d=support_japan@supermicro.com(&)ergu/ HTTP/1.1 Host: gdenwui.pages.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sun, 20 Jul 2025 15:12:00 GMT content-type: text/html; charset=utf-8 content-encoding: br access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BqoSVnYIbFwLYSjl0WSySw7f3tlCiFUi6%2Fixc18G4V%2FUNkbfxO0jHCcprBg0xMZ9PixkNnm7ZxadoIZdRE8hFRa9P%2BZUdvz9CWtLUNgWHcLcaHZhxjweVLTOA%2Fxb9OrKQBnMPw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 962364efcf2c0b31-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=6720&min_rtt=518&rtt_var=10606&sent=8&recv=11&lost=0&retrans=0&sent_bytes=3288&recv_bytes=1293&delivery_rate=3145546&cwnd=254&unsent_bytes=0&cid=a131bd9ff598c180&ts=86&x=0" X-Firefox-Spdy: h2

	GET gdenwui.pages.dev/assets/index-DC9OmaNt.css	172.66.47.153	200 OK	1.4 kB
URL gdenwui.pages.dev/assets/index-DC9OmaNt.css IP / ASN 172.66.47.153 #13335 CLOUDFLARENET Requested byhttps://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ Resource Info File typeASCII text, with very long lines (1441) First Seen2025-07-10 Last Seen2025-07-23 Times Seen16 Size1.4 kB (1442 bytes) MD57a48df87d5fe1ab6cf77c08352e25955 SHA18c4c5c5602b3517e76fceff0e0cb8d2e60b3e52c SHA256d3611d15b52ee0ffbc2c994e1b5f58470b6043cf10ea07cbccdda0078b1cea25 Certificate Info IssuerGoogle Trust Services Subjectgdenwui.pages.dev Fingerprint85:CA:4A:4E:08:CB:A1:6A:9C:37:BB:0E:D8:77:E3:30:52:F4:77:52 ValidityMon, 07 Jul 2025 17:42:20 GMT - Sun, 05 Oct 2025 18:39:40 GMT HTTP Headers `GET /assets/index-DC9OmaNt.css HTTP/1.1 Host: gdenwui.pages.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Sun, 20 Jul 2025 15:12:00 GMT content-type: text/css; charset=utf-8 content-encoding: br access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"0bf02e83beb057101b4360b23c2b3d25" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff priority: u=2,i=?0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aB%2BJxvaBLrr%2FoEwtWlkdnctbCjvBtoSGDfs5K08d2GpkBflD%2FQp6sFn%2FS06JdrN4LcAOSNV8eQwjDFFCLj6YE%2FFDG3J3LoIhCaRRjzfgE4sMwF010hHZWGaZIoSoNaWBN7DqoQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 962364f30b2b56c3-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=8883&min_rtt=3256&rtt_var=5239&sent=12&recv=9&lost=0&retrans=0&sent_bytes=4108&recv_bytes=1543&delivery_rate=321166&cwnd=12000&unsent_bytes=0&cid=4066b854f86c1289&ts=482&x=1", cfExtPri, cfHdrFlush;dur=0

	GET gdenwui.pages.dev/assets/index-DW6vegej.js	172.66.47.153	200 OK	198 kB
URL gdenwui.pages.dev/assets/index-DW6vegej.js IP / ASN 172.66.47.153 #13335 CLOUDFLARENET Requested byhttps://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ Resource Info File typeJavaScript source, ASCII text, with very long lines (35639) First Seen2025-07-13 Last Seen2025-07-21 Times Seen5 Size198 kB (198079 bytes) MD57f421780b3eca60cf82c2482e1d31d20 SHA1cf2084b756a00442a4e7fca8bb13f61782a33b38 SHA256bc8f76303c387b6a171b7cb75dd6cbbebadd9756ca459e195eef0ac3d26a865e Certificate Info IssuerGoogle Trust Services Subjectgdenwui.pages.dev Fingerprint85:CA:4A:4E:08:CB:A1:6A:9C:37:BB:0E:D8:77:E3:30:52:F4:77:52 ValidityMon, 07 Jul 2025 17:42:20 GMT - Sun, 05 Oct 2025 18:39:40 GMT HTTP Headers `GET /assets/index-DW6vegej.js HTTP/1.1 Host: gdenwui.pages.dev User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://gdenwui.pages.dev/?564-4c0d=support_japan@supermicro.com(&)ergu/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Sun, 20 Jul 2025 15:12:00 GMT content-type: text/javascript; charset=utf-8 content-encoding: br access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate etag: W/"f225795f6f578c57fc18c48ace1b53cd" referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff priority: u=3,i=?0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PXxrN69GZwxvMuP2phPUPKMrRO4ijeRoOG55vl6tVfgBbvHp7LkCACtcZJ%2BVHV3SXupATJC%2BjAq8g9PB8NjQfNtXD5HB4aBoEZPstTkobS4BxAlFlwLA%2B2pB2OFu2xrmgFDyLQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 962364f30b2856c3-OSL alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=QUIC&rtt=8883&min_rtt=3256&rtt_var=5239&sent=15&recv=9&lost=0&retrans=0&sent_bytes=5498&recv_bytes=1543&delivery_rate=321166&cwnd=12000&unsent_bytes=0&cid=4066b854f86c1289&ts=483&x=1", cfExtPri, cfHdrFlush;dur=0

Detections

Host Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (2)

HTTP Transactions (7)

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers

HTTP Headers