| policies-community1873-bf9.pages.dev/citutbesar87/intro.png | 172.66.47.109 | 200 OK | 3.0 kB |
URL GET HTTP/3policies-community1873-bf9.pages.dev/citutbesar87/intro.png IP172.66.47.109:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typePNG image data, 117 x 120, 8-bit/color RGBA, non-interlaced Hash2e00ac35746887d77fada7370b8d5e42 a0d8c20d749b3e63e93282d7ba90b35be9c15458 9fc2fe17fa35dc50cbac42366d82e564d0a6e29a6b18f966ba78641b92850514
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /citutbesar87/intro.png HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:44 GMT
content-type: image/png
content-length: 2987
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "7d04217601f68f4e0b4555b48ced9db3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TuEKuJ7eT3e1NE%2ForZ%2BoDikVI5RMvLeaAKqD9ArDUmCVpyXMEul1Tu5JGcVNcLeZZF%2FBzy2vpoO5BsAdhkzAaswoYsgLlFGVnC6hv7gAWWoNhBPZ2f6zby%2FegV%2FkRK7pvux7y3xDt6cfjTXExiuyOzCCxIoGc%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1aa8c5e56c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| policies-community1873-bf9.pages.dev/citutbesar87/Locked.png | 172.66.47.109 | 200 OK | 20 kB |
URL GET HTTP/3policies-community1873-bf9.pages.dev/citutbesar87/Locked.png IP172.66.47.109:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Hashce97933f4d9d2af68efecceb67ffb645 9ca1f9d8b10afc6af5a76ff14fe76b0da5441230 5b1f89c63b9a87f0a0b2737a0789cf18c8b3786302e2c7dd56fa1d2ebc7bfde2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /citutbesar87/Locked.png HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:44 GMT
content-type: image/png
content-length: 20176
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "374c0f7e59bf6d91c489aaf25aa6ba1d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IJ9FGICUtduDBP7fSsZ03DyE4WClNkcvS2S0P31t2gu2mQV%2B2o0BXw4dyy1WK3whh5UWM1u6pdti7Z%2FHaGRQwP%2FMmw33bccpBcE3zy512Y7T%2FHMUz9cWd4JXMG9BvUVWg8wkqqm0ASsPLGErPBRIgvtBmGp%2FpV0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1aa8c5f56c9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js | 151.101.1.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js IP151.101.1.229:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65293) Hash6dae88aba81e468737c510cc2e4ec1dd 6b4b985a90abd7ab1c2e35ff3b874d07cf8410ee 2515e37eee31f5ef3d659b21dcc84dc6ea732b06872da51078b5b526de34c0c1
GET /npm/bootstrap@5.2.0-beta1/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.2.0-beta1
x-jsd-version-type: version
etag: W/"1377e-a0uYWpCr16scLjX/O4dNB8+EEO4"
content-encoding: br
accept-ranges: bytes
date: Tue, 16 Apr 2024 05:25:44 GMT
age: 3560485
x-served-by: cache-fra-eddf8230137-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24445
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css | 151.101.1.229 | 200 OK | 30 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css IP151.101.1.229:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65300) Hash6d9c6fda1e7087224431cc8068bb998f 6273ac1a23d79a122f022f6a87c5b75c2cfafc3a fb1763b59f9f5764294b5af9fa5250835ae608282fe6f2f2213a5952aacf1fbf
GET /npm/bootstrap@5.2.0-beta1/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
Origin: https://policies-community1873-bf9.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.0-beta1
x-jsd-version-type: version
etag: W/"2f3f9-YnOsGiPXmhIvAi9qh8W3XCz6/Do"
content-encoding: br
accept-ranges: bytes
date: Tue, 16 Apr 2024 05:25:44 GMT
age: 19366588
x-served-by: cache-fra-etou8220113-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30281
X-Firefox-Spdy: h2
|
|
| policies-community1873-bf9.pages.dev/citutbesar87/2.css | 172.66.47.109 | 200 OK | 150 kB |
URL GET HTTP/3policies-community1873-bf9.pages.dev/citutbesar87/2.css IP172.66.47.109:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typeASCII text, with CRLF line terminators Size150 kB (149833 bytes) Hashc8cc673d0aadd94dd7126051fb0a8f89 9e65cb5aac71e70a1641111c01f8693bc3e993f5 70e82b9c91dab7f2b599dc205d0bbcad1dcf51bd656f14ff3165c8a3997fe645
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /citutbesar87/2.css HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:44 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"07652fb11de9ab1c505ae3c17de275aa"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7QGzC%2FFcFVHnwpHVHW2g%2FZbm3dmwNVGbLzAivK4MAOOO5a4tO%2FigHZ7z4kd6ZZ4L4KGTa7tcFM1u3GZsQt%2FdUH4rvKCfatfB%2FUzfcZo1gPbEv%2BySCOAAf%2Fn1AJyAmsdtFjMHcid6%2FtPekd4A8iavJevrTHiREGs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1aa8c5b56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js | 142.250.74.170 | 200 OK | 31 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP142.250.74.170:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 18:59:06 GMT
expires: Tue, 15 Apr 2025 18:59:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 37598
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| policies-community1873-bf9.pages.dev/citutbesar87/popup.js | 172.66.47.109 | 200 OK | 9.4 kB |
URL GET HTTP/3policies-community1873-bf9.pages.dev/citutbesar87/popup.js IP172.66.47.109:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (920), with CRLF line terminators Hasha47986beaf005f3547b715ed902ec79d 5fb3273f3da64b75bfe16c1e6e0eb9b56f344599 5acf4c051e3b5b1e2eaa950a9ed9e0c149afdb292f3db577179e448fc2e24c03
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /citutbesar87/popup.js HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:45 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0adf02985557a21304bc0bba07991734"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vqV7eExtR5%2BHjgJEueC4ieeKljfrB84xBtuujGiBs1jQP9QLAgoxtCqLNxdq7VWdIIo9%2B0z5tIO7YMqCK95snP6SzJ7ugJWu%2FJkA2ftHkD8WnMi4YtOndauwKQMLGxf5gZmJGYv2gGXVWL8FnnukIueoBKhy86Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1ac3d8c56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| policies-community1873-bf9.pages.dev/ | 172.66.47.109 | 200 OK | 8.4 kB |
URL User Request GET HTTP/2policies-community1873-bf9.pages.dev/ IP172.66.47.109:443
CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (8888), with no line terminators Hashc2e992b90be3f0904a709e3e4f4300d8 33b602b3eb6837e36f841fdcee1b35f85b9dcc14 e00204a7bd0d29b1f11e674f57b512460d9cf5ba3a1718500b130653f4434781
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 05:25:44 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0adf02985557a21304bc0bba07991734"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WPP0piq%2FocRlB6Uts1RY10g%2FvPEoHEzswK6P5rOhbL9XxQg8wqSKZ8OXhsb3QAzFDmfcwfBqdfct6IjvzpCHCo%2F3ck1lRwD%2Fz0YrCc%2F9vYJ5kPueLTswN5hzgOf1Jv%2FCr4uNu3MQs2BOaPvo6QzgoTdu9Haq8dk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1a929a6b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| policies-community1873-bf9.pages.dev/citutbesar87/1.css | 172.66.47.109 | 200 OK | 963 B |
URL GET HTTP/3policies-community1873-bf9.pages.dev/citutbesar87/1.css IP172.66.47.109:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typeHTML document, ASCII text, with very long lines (1067), with no line terminators Hash6fe85880dc942336995755174c110bd1 bed3e1819cbf4cc39a6421a32052457792181890 e6dbd196ea21f27f857bbaab98cf1c41550082b67191c75d509e75a97c6ee062
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /citutbesar87/1.css HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:44 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"2d0acec188512125ec3c91bc5e22339f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gyXAgdyQB9V4zfEvllyFJ0iiSwmfOoqJnGq9sVWMvE%2Fc3h1qF%2BQww7puHdvgMcqz81Jd9aET3fDBwqf%2FZ%2FqJx1efiUzslS0tRObSXp3Y4UCRN3qGh5BcWboU7NFwU1ulVRnV9yHeus1BHf7HW3KPz2b0myeP6v8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1aa8c5d56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| policies-community1873-bf9.pages.dev/citutbesar87/XXXX-removebg-preview.png | 172.66.47.109 | 200 OK | 8.4 kB |
URL GET HTTP/3policies-community1873-bf9.pages.dev/citutbesar87/XXXX-removebg-preview.png IP172.66.47.109:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (8888), with no line terminators Hashc2e992b90be3f0904a709e3e4f4300d8 33b602b3eb6837e36f841fdcee1b35f85b9dcc14 e00204a7bd0d29b1f11e674f57b512460d9cf5ba3a1718500b130653f4434781
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /citutbesar87/XXXX-removebg-preview.png HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:45 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0adf02985557a21304bc0bba07991734"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DLBEThOf9jv1x3jXI5whEeiNjQZm8X6D%2F15O7NxmMa%2FSEmPlTX5p9CakoHRL6wy7T5TuL4lCuMNjlGVLzKSkJIBj1rjB%2BjD43sKl0dgzA4f3OTNR6eTmCQcLWQZqxAWRXzVRyFfc67%2Fw8nmX9N%2BLMof%2BLUFuw3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1ac6db456c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| policies-community1873-bf9.pages.dev/citutbesar87/3.css | 172.66.47.109 | 200 OK | 54 kB |
URL GET HTTP/3policies-community1873-bf9.pages.dev/citutbesar87/3.css IP172.66.47.109:443
Requested byhttps://policies-community1873-bf9.pages.dev/ CertificateIssuerLet's Encrypt Subjectpolicies-community1873-bf9.pages.dev Fingerprint60:3B:2E:5C:6D:E9:26:9A:47:1D:85:09:7E:30:30:45:62:50:98:34 ValidityTue, 19 Mar 2024 05:44:19 GMT - Mon, 17 Jun 2024 05:44:18 GMT
File typeASCII text, with CRLF line terminators Hash1e8adfd0cedee04d1a1a30d82a2c2978 6d0ec04f59c0ed2cfcd4864c730a2639610a2d7d d79aaf3f68954b2ff64615055ddd7d35bc415fb8f36c1e3702316de1cf90c512
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /citutbesar87/3.css HTTP/1.1
Host: policies-community1873-bf9.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://policies-community1873-bf9.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 05:25:44 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1f3f4a99a9e1db2e6dede173e8b8cc6f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4YnBI0SG%2F5pEsIB9%2FeRYbGNAHiMn14Fq2z5KqI6aOe7r%2B2%2B48uehPSbpnR%2BeUelkAKamCG0bVyRHL8e3JGIfJ62FPUQKS1BAsOArRjmbmoEnXas2CYrdCr7fI4BgqtwmYvX%2B2lgsFU3xrXk0Y5gv37s1O0R66iY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751c1aa8c5a56c9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|