URL User Request GET HTTP/2IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectsepytifix.za.com FingerprintFE:7A:BD:E0:DE:38:F6:54:0D:8F:BE:B2:CF:E5:7C:D7:4B:61:68:CB ValiditySun, 07 Apr 2024 07:47:09 GMT - Sat, 06 Jul 2024 07:47:08 GMT
File typeHTML document, ASCII text, with very long lines (510), with CRLF line terminators Hashf811061295a0cfd42fb797add0a5e792 00a67e3af38bbdfb7db1e5cedf1ea632f284a020 ff8df9ff40c408be3b1eae33ee6612a36f16d43d62f8d35dc1720b77f9ca7002
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: sepytifix.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 13:01:29 GMT
content-type: text/html
x-powered-by: PHP/5.3.4
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mc9USMOv1fEsmvgo7nj5c46UFZWnrgIwCInb3GZ%2B8Qf67B%2F%2FHfmnVtAx%2B%2F7cw7dw4zyabx9FpDwWSGB%2FHbW0OZrKVA2ORPwQonLMurz%2Fdnj0k8w1L0WiG54nj5A57OTmxHHj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875c9aa46aca9298-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| sepytifix.za.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 188.114.97.1 | 200 OK | 1.2 kB |
URL GET HTTP/3sepytifix.za.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP188.114.97.1:443
Requested byhttps://sepytifix.za.com/ CertificateIssuerGoogle Trust Services LLC Subjectsepytifix.za.com FingerprintFE:7A:BD:E0:DE:38:F6:54:0D:8F:BE:B2:CF:E5:7C:D7:4B:61:68:CB ValiditySun, 07 Apr 2024 07:47:09 GMT - Sat, 06 Jul 2024 07:47:08 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: sepytifix.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sepytifix.za.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 13:01:30 GMT
content-type: application/javascript
last-modified: Mon, 15 Apr 2024 08:31:34 GMT
etag: W/"661ce5e6-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FvwID4L%2B281dIrqbdr0oK5yoWAZpVl6M1y46qKg59ncx5bcCL8ndGboujanF05567395BK24wA%2BzopoT9GIezO%2FXrsgq7V%2FyotmAZIp%2BpCuoSSNTUn6dLQuP4qY8bQZv%2FV00"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875c9aa78ce892df-CPH
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 19 Apr 2024 13:01:30 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
| sepytifix.za.com/favicon.ico | 188.114.97.1 | 404 Not Found | 275 B |
URL GET HTTP/3sepytifix.za.com/favicon.ico IP188.114.97.1:443
Requested byhttps://sepytifix.za.com/ CertificateIssuerGoogle Trust Services LLC Subjectsepytifix.za.com FingerprintFE:7A:BD:E0:DE:38:F6:54:0D:8F:BE:B2:CF:E5:7C:D7:4B:61:68:CB ValiditySun, 07 Apr 2024 07:47:09 GMT - Sat, 06 Jul 2024 07:47:08 GMT
File typeHTML document, ASCII text, with no line terminators Hash708d86481d53d51105d8035d04026be5 7770f9a9b855cf1b36a52528b7ad2cea34923036 12d6a7b5ffed782f6e0b92fe5f81d7cee1d9e5fcac26ee29c644969d5efdff18
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: sepytifix.za.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sepytifix.za.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 17 Apr 2024 13:01:30 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=suiA1T9f3QCBhlCka1D9%2FnyPrD6fxCRsmUTsIlAAFGFxAbYDSvTVMfzulg7HbK5bQN1M4nWSJLx3QhbSta5MIdS6ghnHQrqlgC%2BPjvOEGhbNJG5txwVemYmMqnWX148jpU%2F5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875c9aa7cd6092df-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|