Report - zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request

Report Overview

Submitted URL
zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 10:40:48
Access
public
Website Title
Final URL
zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Tags
phishing microsoft outlook
urlquery detections
Phishing - Microsoft Outlook

Detections

urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-16	512 B	1.2 kB	35.244.181.201
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-16	5.6 kB	425 kB	104.17.3.184
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-16	1.7 kB	129 kB	142.250.74.170
zambezi.top	unknown	2024-02-10	2024-02-11	2024-04-16	4.5 kB	141 kB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (48)

	URL	Size	First Seen	Last Seen
	challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87538f1889f21bfa	429 kB	2024-04-16	2024-04-16
Pretty URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=87538f1889f21bfa IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 4bf24c0f64e8e1932814bc31e6874c8a aa7892ee714e1e0bfa20cfb75c44c0e2fd3de851 dcde7020c1837ecff79b08bff62badb839cf7ba47543b34b2a26459befdfd2cb Loading...

	zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session	202 B	2023-05-05	2024-05-17
Pretty URL zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-05 20:07:55 Last Seen2024-05-17 23:56:01 Times Seen512 Hash 8cb487d4459c7a6cd9d6f2d45900c628 d35cc3c00025613a8772575e3daa962b633ea2ec 977d0b37baf294b277f8469a4178563b7b21bd289d9df105b5a37a025bfd4d87 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 856f7bf74263c106afbba0b33b526a31	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 856f7bf74263c106afbba0b33b526a31 b9abe25ad1dd2e4fb8c1ed0e86f71f466ecfb01b 4f4423f9ac9d3a3586c9b98ab91e874184f478f4a2723962a356dac287bc8e42 Loading...

	#2 Eval - ac6d43b49aec2f87daf340337b6a7882	60 B	2024-04-04	2024-04-17
Pretty Observations First Seen2024-04-04 12:28:09 Last Seen2024-04-17 16:04:31 Times Seen3428 Hash ac6d43b49aec2f87daf340337b6a7882 d3874a31a6b7fe11121edc3ed80fdc8b66f6589a 1af55b64e0b39e0f5f760a8050b284a66fe404ddff945697590f8240798311b2 Loading...

	#3 Eval - 0f897508731bfe8293dac2ff61d85071	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 0f897508731bfe8293dac2ff61d85071 ce7fbc1977f0953995fe7804e493ad0a325626cb 3c1d8464ed4ba7eb46c301667ba7b7f2a531a409472dfde5a10110e0cf198e43 Loading...

	#4 Eval - 2620f311fe2429f2ae4e56227ce6f7a8	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 2620f311fe2429f2ae4e56227ce6f7a8 40b58d96c5d44ea8f6958aa2a8ce5dcf34bf6abd 86f63df65b73c07fb58f0376270945399ea5a7bc6cdd7e2f5fc824031dc6e1c9 Loading...

	#5 Eval - 5b30cff7eb6fd458f704fa0440e15689	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 5b30cff7eb6fd458f704fa0440e15689 8cc9412b152fafe7457246d61e22892e0f941782 87a28fb4478881899f06b49c953d044aa06fdaba1f50928f9c3f832f29690f5c Loading...

	#6 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-19
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-19 00:09:44 Times Seen353068 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#7 Eval - 499218b25cbe8778221a5692505d2f13	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 499218b25cbe8778221a5692505d2f13 f364e7f2b9a9baf1fd580a5f1397ba99fab3f9b2 b400ae352d35df04cb863896b2aaa93df45913e0ccd4e776f5d096e7648c74f6 Loading...

	#8 Eval - 2bfb9ee6eb6bf84b73f0a72bb1985ab0	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 2bfb9ee6eb6bf84b73f0a72bb1985ab0 766384617fc8b4b6ce9403d050e34b1962217517 0ea926851266767e38aedcb0366abb534f9ebc6bdcb5034cbf75d113503a9b0d Loading...

	#9 Eval - af010c351b15fa3dc692af2d91a49d9a	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash af010c351b15fa3dc692af2d91a49d9a 8362ab021ef92d529e7cbf3e6c247f0c6f218409 b954f71da711fd8b6b38c8e287e4e30a7f56ff949f36c798a79cad7b74e86f96 Loading...

	#10 Eval - 2986041e6ddf8e56a68b4a25c4e555f9	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 2986041e6ddf8e56a68b4a25c4e555f9 4de468d976afafc42bf644c2707136f4fba98482 c275e1a726c0223f024363de344378e4ea297faeb994e92218b1dcf9a8c8ccd9 Loading...

	#11 Eval - 278b745bd7861538eb66c3f9f902e26c	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 278b745bd7861538eb66c3f9f902e26c 31b3f90bf7ae676be4e2dc485228469780608f92 879ddd6aac6519f60ff220dbc95ec098c2a5bdaff9fbf1282362e6f2c9914db0 Loading...

	#12 Eval - 9898cb867d07cdfe49ad3cf76dfb4ce2	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 9898cb867d07cdfe49ad3cf76dfb4ce2 502ca9af5ed5a80374acd5938e150b342fb3a1c5 b7cad5094f6389d3a88df14e4efa4e6281e5c90b5158e10c3db154140cf9d506 Loading...

	#13 Eval - 815c1d5e887ba41343d2201446a61781	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 815c1d5e887ba41343d2201446a61781 658a1b715eb394dd59b16167a8a27a33c5d8dd87 2050a76eddf0ada9e4dd995dcae11f7d4a943b8cf5104cd54873cf86045358c5 Loading...

	#14 Eval - b5b8dedb3bcb243a400f344d7e2188bc	144 B	2024-04-04	2024-04-17
Pretty Observations First Seen2024-04-04 13:15:39 Last Seen2024-04-17 14:03:52 Times Seen765 Hash b5b8dedb3bcb243a400f344d7e2188bc deb6d93bb172dc9fa4a5ac9141b54b7600f5eb1b bd8aa22f6ba3314fb18e581bf8a4cd701096bb8604a9eb5de195869407e4ce43 Loading...

	#15 Eval - 8ea5a12393f63b7817db8667ec4f5826	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:48 Last Seen2024-04-16 12:40:48 Times Seen1 Hash 8ea5a12393f63b7817db8667ec4f5826 8258231bbae81cac753101b349710f1d48950431 228f0c3a85a17b6af3315af8fdacec7b7fb249222a3d9817e1788c084232b04c Loading...

	#16 Eval - 79b69bf212293c15b6e08f9a21c49d70	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 79b69bf212293c15b6e08f9a21c49d70 f44fd45bce3dcdac90d421c2d3a170dba28764b9 6cd792073eb27a45530c45d9735fbcba7ace67020e30151515284404ed0826f3 Loading...

	#17 Eval - 7e6c300c2fdd7f781a6989bb9aaaaa30	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 7e6c300c2fdd7f781a6989bb9aaaaa30 3c9d898832fd3a20f47b00d9f497eebd6cd61117 10fde6a345c4ef0742cd5a897a4df3cd062c00eed0fb19489bb7034402452c40 Loading...

	#18 Eval - 39de610d4af036431fab8c8bfba95442	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 39de610d4af036431fab8c8bfba95442 b64b25c2dfd323a10b0ff61f6d8a0487e180aa62 49ead65073def9df0716bbe1fe409df08a6ade6f401e29c4f3f5b960b91ff87b Loading...

	#19 Eval - 5312dd86f1f51ec9e12e200945d5b01e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 5312dd86f1f51ec9e12e200945d5b01e 8426e444b755f8ab028a5b1595f8dd3c00873a32 bd78d7e3953165393deb913d7a807bc39ea59220a34adc49222941dfc3d0188a Loading...

	#20 Eval - 1bbc4711dc646348605d9bea13000a9f	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 1bbc4711dc646348605d9bea13000a9f afd98f28f4152b39b0a5c0f2926a5ffec7a116dd 7454d518eff03b1736eb4f56c7378b1a9ddbce106ba94e22c08363cc9c77abd2 Loading...

	#21 Eval - 255053b625e9e0c58d1a3471f24a8207	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 255053b625e9e0c58d1a3471f24a8207 7011786f57acda73cba865975d28d76a12324a49 962ce0f2c1db8c55bd6dff9d5dc6999a52128528c4b4a437b4313e881c37f091 Loading...

	#22 Eval - 10bd437a62ddc40e61c827e448418b05	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 10bd437a62ddc40e61c827e448418b05 cb5e4287d6f10c1948d90df696593b2245deb199 cca9bec95e108e197f1b1f0c5bbfeed994fc27d01417a56b80b53c9a8c92b7da Loading...

	#23 Eval - 4ba2fb87e16a67b7d2515b41155c7442	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 4ba2fb87e16a67b7d2515b41155c7442 7a6a67bb5a191f7c4c09a2abf816f6b68f1968e2 7675db5e63a74e2516443f39310555e2c22503f036da542f7207e09324805a55 Loading...

	#24 Eval - 97f5871eb1387b40877442ef4d52aa96	1.1 kB	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 97f5871eb1387b40877442ef4d52aa96 f9c044ba7b319cc5f827b9c74ef810866742da99 f622edbf4d7304f4538e0f863e9b28d2a4fe90d5f35a20a7792bc460211ecf57 Loading...

	#25 Eval - 1bfdc246c1c748121419a52506b86bff	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 1bfdc246c1c748121419a52506b86bff b1e87dcf26291be551099b119b3a48b193e2cba8 59a5988fe3afc64399eaf78dc5fa310eee3c6fd07e30c75b0640a637fbde7b10 Loading...

	#26 Eval - de903b15627353eff075155285857bc0	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash de903b15627353eff075155285857bc0 98ea757e98f9b5ef654d6894eec001d961a1365f 5f0f15c7640f0354a629ae33744df441f67e682c15033e81b5b44c312722aed4 Loading...

	#27 Eval - 4adb114f01f3dccb5c0925318da791d7	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 4adb114f01f3dccb5c0925318da791d7 2be36f913c0d07c438342cff1fde7e1409ac4c0d 2881a1be18afec59130a4c82b2a3f439c473a3d130711687211c673b828b51f1 Loading...

	#28 Eval - e5c765b82471ab41d8824af560fa65b2	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash e5c765b82471ab41d8824af560fa65b2 164a54421661aa9a2d10fc1059053301a1ba71b0 967cee7776e97a96cbe2760805a7b9842fc9096ae4c5c3f499b0cf9242cab9a0 Loading...

	#29 Eval - 087c61951a258c6e4847819ff6d5441b	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 087c61951a258c6e4847819ff6d5441b 43e180739ada45e1593d3fd14b190ff7e8026e1c 8c240e41e0813cabff1ea074ee66857bfd0e6cdab10bc63c65969cec5248f938 Loading...

	#30 Eval - 8017666bb4146568c284b0c3dbadef86	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 8017666bb4146568c284b0c3dbadef86 1a2c4b15abd4a0388623a7c0e8301637e95c356f c4b8f3dab621bc71eb0b60d28a95f10d772286e07c29e756fca390ee8178890f Loading...

	#31 Eval - e405a2ca8ce7a1dc85de11868683856b	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash e405a2ca8ce7a1dc85de11868683856b 7adc37e150f4080a711c186d487b93998a5165f0 ee80ad9b7da709497e344d2304d213ddca51cdc1b620a6f75f14926755286933 Loading...

	#32 Eval - 6f6f62ae697aceee897ad48b987f8882	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 6f6f62ae697aceee897ad48b987f8882 13b7be6af7e3c4eda5a7fdad064b0cfb99f8bd36 74b4346e767c95fd612d8779dab407f013623a5fa723dce8f95ab4961227b086 Loading...

	#33 Eval - ad3e5ee237d7847a52d7df61f4d53154	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash ad3e5ee237d7847a52d7df61f4d53154 35a28e4d3dcb81b3f36488e434916a70982047a5 371372fb4edb56bb5ea56a90a259e7c80dd77bb1e5f446988875f665eed42909 Loading...

	#34 Eval - d66c2a3ec9471ac41eb636dd35e68740	162 B	2024-04-04	2024-04-17
Pretty Observations First Seen2024-04-04 13:51:49 Last Seen2024-04-17 16:04:30 Times Seen745 Hash d66c2a3ec9471ac41eb636dd35e68740 0a0df48399a54f5e9e1cc314afb47809429fabe0 06da1a9d19030d0ef1321621c16fd90ef543821b71b017219501fe046a536973 Loading...

	#35 Eval - d94fa5a12e4c466bb8aed05f723a8a9c	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash d94fa5a12e4c466bb8aed05f723a8a9c ca8d7d41d01cc62116c8fbd75ce4c18874d08173 f57790fcfaccfeb8497c91cd4c7fba5759c9bae57d263205c5489bd99afea809 Loading...

	#36 Eval - 7ac202d746803406fb7fb192874ffd4e	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 7ac202d746803406fb7fb192874ffd4e f4e17f0cc7d770c8ab5151f1a8a0fcadf254d9fc 6c0704564a4952895659e9b9a1cc8f5b1e3442540042365c2430cf9c27b2c7b4 Loading...

	#37 Eval - c7c3d43bac72736ddab898e2520e8d79	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash c7c3d43bac72736ddab898e2520e8d79 71d94914a4baafac2c2658bb28471b2d4d340322 475770e4910a676c1761ae6e00c8b623add7534a77524beba10eb455c0b1c306 Loading...

	#38 Eval - 4dbfd4901feda744195595761a29378f	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 4dbfd4901feda744195595761a29378f fce8cf5d9d2293f83f22754effdb91f1343ade2a 25f672fe0d6193aa6b18e1c36dcf4a542ebde2ee1c35187c07d6fe1f79cba419 Loading...

	#39 Eval - c27c88b257b494d504e4fa28d63586f2	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash c27c88b257b494d504e4fa28d63586f2 c489730465ff00a6c951175174259499a71c3893 fcd39400b743cbbfa644f57a3d4a05fd1a182e6315fef2cc669794131bf3a6a8 Loading...

	#40 Eval - b583bf7133c74883b3edcfd8fe38e74c	568 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash b583bf7133c74883b3edcfd8fe38e74c 840fec3853a6fb8ab409e3667e177ae3079403e7 4c88fb76d9825c43adc205b09af337267ec77365783d14a097bd7cba9cdb4980 Loading...

	#41 Eval - c9df6654afe638f07ad3ffbb3221b16d	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash c9df6654afe638f07ad3ffbb3221b16d d045cef568a431595ff4c119ada5961e16d45ca5 d90e00881e20b369090e6a956a87c8f0f957ae9a730a2e8a6d0ca1e8773548ba Loading...

	#42 Eval - 9df122082c7abc8f88d66fcb7b35538d	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 9df122082c7abc8f88d66fcb7b35538d 8a8b9c703d3fb287fda32f07c031c5198e37ccc7 be466303f5c51846993f73155fef2a1def0893d4f815cc69def7bbe3778837fe Loading...

	#43 Eval - 4dd2b7528477c226c5fc3ace3745ec4b	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 4dd2b7528477c226c5fc3ace3745ec4b a616e6cb01c9c6f70e6e65c7cf2fddebff49550d 37da7cedfcf6771915e55b7ffdfb70bb6d2400074d25bd98089846d30bb14deb Loading...

	#44 Eval - db3beb0c3930ec10591d90aa63048db5	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash db3beb0c3930ec10591d90aa63048db5 cf07d4564031e8fe7b33a42046e5637f64e5ac69 c338d7234d5b4b490117c6c94f800a60fafc344f4e290ba4433b5fbf19d921b9 Loading...

	#45 Eval - 5335e4df0dd5e7de7c5fbf383c035a83	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 5335e4df0dd5e7de7c5fbf383c035a83 0a981b58b3cab9e5ae2f795a91c4a08ac8a0d81e 1c2c371159c5b00f389cee3c44c45b3b1f47abbcc198abec67e1e0602978c2e5 Loading...

	#46 Eval - 64f59b3aa16d4265c76a95b13eaaeca9	28 B	2024-04-16	2024-04-16
Pretty Observations First Seen2024-04-16 12:40:49 Last Seen2024-04-16 12:40:49 Times Seen1 Hash 64f59b3aa16d4265c76a95b13eaaeca9 4dac885f757dd4a44cc7e49891a598b70280be4c f70c798a1b52af10056a527a3517849d99f95b21459ad037ec9a572e2a49a3a2 Loading...

HTTP Transactions (20)

URL IP Response Size

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 16 Apr 2024 10:40:22 GMT
content-length: 0
location: /turnstile/v0/b/bcc5fb0a8815/api.js
cache-control: max-age=300, public
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
vary: Accept-Encoding
server: cloudflare
cf-ray: 87538e8e7b7f7130-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 17169
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zambezi.top/cdn-cgi/challenge-platform/scripts/jsd/main.js

188.114.97.1

0 B

URL
zambezi.top/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Tue, 16 Apr 2024 10:40:23 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bk%2FBoR1VS5gYUztatsqS3YO%2BJC7d16wby7K6gtnGkDmlfrwcCNAphPO%2FHUyMeRm%2FVRLBvlnDt8bmDrvGoMuoUzRzmMgKI%2FX6jmsd%2Bk7DTo9TC92jxQkhlp5IPyWqFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87538e902af50b55-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1411061654:1713259984:wFhuMu5VAIIIO-wgx6nizTcm1Zv4XSfLMxANQwRBP6I/87538e9038391bfa/a2f54f01dcf43eb

104.17.3.184

74 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1411061654:1713259984:wFhuMu5VAIIIO-wgx6nizTcm1Zv4XSfLMxANQwRBP6I/87538e9038391bfa/a2f54f01dcf43eb
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
74 kB (74090 bytes)
Hash
e898808269eb7c5ec15865e8670b6047
fca52aa2ee8acf97589518bae38ea6ad9b074d94
2719fc1af2c779902349fd5b071b98b15c23022865c906fd802229a8c2076d07

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1411061654:1713259984:wFhuMu5VAIIIO-wgx6nizTcm1Zv4XSfLMxANQwRBP6I/87538e9038391bfa/a2f54f01dcf43eb HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/gblnc/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: a2f54f01dcf43eb
Content-Length: 2775
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:23 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: MNSAtlCstW8FeFO5R7JshutHeaaupI19CuPuKqVVFXP92AeaEDS/LAFcp8EWF882pukAUasjBQkUSSl5Rx75pdYH2AZKzD32PQMLXlE9CGKw2inv8ocsTVm2jfCMlDUm/Fg/seqB0i31elynOdtgjq4Kl9kogmFdhJJkaJcbXcikb3JTEQ8jLyz4AtnoBNzwBGcHrQJ07suupnmCL1bI0JVfjotK7GCY4I5T2eegHqHTi4zG3PVaNSIhwXEIWfTpbYUvnhImRb89sCsYvWtGqIp6FmpLZXe4th5zYT1sF4soKC2SWQJjFFK2PPfj2vwHAQiGzzOg/obuHUMQZC7O9JbuIOrxktaQ472mKdeqOmuvcVH0zGaHXSLIi/JYXv/i$K67XMaapTRTsHNA5jvEJUg==
server: cloudflare
cf-ray: 87538e92fbfd1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Tue, 16 Apr 2024 10:40:25 GMT
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
location: /turnstile/v0/b/bcc5fb0a8815/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 87538e9d3fd31bfa-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 17172
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session

188.114.97.1

200 OK

420 B

URL User Request GET HTTP/3
zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectzambezi.top
FingerprintB1:91:9F:E2:BD:2F:4B:DC:A2:06:93:8E:BA:84:01:E4:B0:D4:55:9C
ValidityMon, 11 Mar 2024 10:01:02 GMT - Sun, 09 Jun 2024 10:01:01 GMT

File type
HTML document, ASCII text, with very long lines (935), with no line terminators
Size
420 B (420 bytes)
Hash
e1d62b013311a477a8b3598395bb8db1
da3d0efe5f0b948acdbab803b7fa42eb647c5620
eaec84b478037bb06044216081391939d3ec3f1c0e39c69e141310947c29cec6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Microsoft Outlook

HTTP Headers

GET /_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=Jya470PpXaK6soVNjoSYU2EtPVwJSdxrGsHAqpemIeM-1713264023-1.0.1.1-hKEyAkxX6muCrQSM3PxnyKmGSMD8eTGivOaoWWmq.e64nRi.nGT_xUIIemaFQwjwjkLb0Njx4CX6lOl_3Lwqsg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i3YuRXwnm88zCntSLwgQZ76SkAI07brvm0LnwwrH15OMJsyzUWfGAV728IQJyG%2B05Twzpm6zmQG7PrYUycGJaD9is2X7jYQY2IIrqy3XZV0P8tuOUf%2FOoWNJ4KhLNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87538e9c39820b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zambezi.top/_newsos_oxy/functions/validate.php

188.114.97.1

31 kB

URL
zambezi.top/_newsos_oxy/functions/validate.php
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
31 kB (31192 bytes)
Hash
cd7bc652307ad520366f441f280c3841
6793c65d772047d2f94cae30b74e5e99266731a4
76fac969d2b0e07d21bf7f1c395d0a855abbf6559edb1cc13415db1811ec6187

HTTP Headers

POST /_newsos_oxy/functions/validate.php HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://zambezi.top
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Cookie: cf_clearance=Jya470PpXaK6soVNjoSYU2EtPVwJSdxrGsHAqpemIeM-1713264023-1.0.1.1-hKEyAkxX6muCrQSM3PxnyKmGSMD8eTGivOaoWWmq.e64nRi.nGT_xUIIemaFQwjwjkLb0Njx4CX6lOl_3Lwqsg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:27 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x9Lq4UEp6PMzk%2F6VBUib3BWjipm%2B12kvgwZcBC8XxHHdOz2gOPU9J%2FiIlILbqDG%2BA7KqsmHjK8%2B%2F8rjT%2BPegix118TPhWUyF7Gdy82btZbb6lVSvzfmf0LY9yO1EAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87538ea9193f0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/turnstile/v0/api.js

104.17.3.184

302 Found

0 B

URL GET HTTP/3
challenges.cloudflare.com/turnstile/v0/api.js
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /turnstile/v0/api.js HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Tue, 16 Apr 2024 10:40:29 GMT
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
location: /turnstile/v0/b/bcc5fb0a8815/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 87538eb87a411bfa-OSL
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 17176
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

zambezi.top/cdn-cgi/challenge-platform/h/b/jsd/r/87538e8a4d7556c4

188.114.97.1

6.5 kB

URL
zambezi.top/cdn-cgi/challenge-platform/h/b/jsd/r/87538e8a4d7556c4
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
6.5 kB (6456 bytes)
Hash
4a48935fc7c366bb884a79cb750e15d8
9c8ad9fd513160534895c799e9f753a16ee0c02d
b345a979d52ebea977eaed28d926dba383561f1af6c6b31098990a54673720dd

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/87538e8a4d7556c4 HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12377
Origin: https://zambezi.top
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:23 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=Jya470PpXaK6soVNjoSYU2EtPVwJSdxrGsHAqpemIeM-1713264023-1.0.1.1-hKEyAkxX6muCrQSM3PxnyKmGSMD8eTGivOaoWWmq.e64nRi.nGT_xUIIemaFQwjwjkLb0Njx4CX6lOl_3Lwqsg; path=/; expires=Wed, 16-Apr-25 10:40:23 GMT; domain=.zambezi.top; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2FwELOPmxipZwGtL8Mv7PtK97vx3TGHKlvu2WzYaM6FupNsEBmVLet%2F%2FYXdbjacdJG%2BppJ7r9AO8ZYLXuQomAHPRBM%2FerOMRYkYIUsmllUX7aRQsAoEtPu05%2BTm3%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87538e91ed410b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zambezi.top/favicon.ico

188.114.97.1

99 kB

URL
zambezi.top/favicon.ico
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
99 kB (98903 bytes)
Hash
2efefe0fd14045402a105f5c2b87d31c
3d62a7fb6f6138bd797f4701325606927faa763d
4770997cfecb31cb68623b2a8270cecb96dbce0d2f3a49fc350c6d6911e4cc7c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 10:40:23 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s5O1PFYjQqVdRBUHp2TnTPEIu4MoTOIt18TDDNW0MYPda0rVNq2J3T75TW2qWPg%2BigZkelqj5wzT%2F3J3s9NymqgN60Dq0sUdIr1Z6lAA3bWtI5ynkKTh1aZN%2BV3USg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87538e901ae30b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D

104.17.3.184

61 B

URL GET
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/0iqg2/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 2 x 2, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
9246cca8fc3c00f50035f28e9f6b7f7d
3aa538440f70873b574f40cd793060f53ec17a5d
c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/rv76a/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:27 GMT
content-type: image/png
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 87538eac6ba91bfa-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/454802362:1713259857:vxMYTSA2ttDUsEzuhEfF3stme80vQou10oKCUeDUCUg/87538e9da85a1bfa/201f68a05a6f546

104.17.3.184

257 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/454802362:1713259857:vxMYTSA2ttDUsEzuhEfF3stme80vQou10oKCUeDUCUg/87538e9da85a1bfa/201f68a05a6f546
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
257 kB (257270 bytes)
Hash
16ac09d86c5c7562b0fb3a255319017e
ba98b0156f5b0f5e9c7f5d3ad4d55680d93d668b
a3d644d54e4707ae427bbfc845c5b71b789e53eeb1b4e4169083a66f24b2c795

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/454802362:1713259857:vxMYTSA2ttDUsEzuhEfF3stme80vQou10oKCUeDUCUg/87538e9da85a1bfa/201f68a05a6f546 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/fqemo/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 201f68a05a6f546
Content-Length: 2795
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:25 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 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$NdL5D2lAEO3soL+lYsNCiA==
server: cloudflare
cf-ray: 87538e9fdb261bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87538eb90aef1bfa/1713264029960/Jb3O6lxvE1HFSsi

104.17.3.184

532 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87538eb90aef1bfa/1713264029960/Jb3O6lxvE1HFSsi
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 14 x 13, 8-bit/color RGB, non-interlaced
Size
532 B (532 bytes)
Hash
374f534790984703397ebb4220cf098b
5f837af1b33da48561cf7b8181f4d98a5fdf6cbd
f317ec64a7cfb759af436369175d53b6ee74db247fedd1d0d5609581290bd850

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/87538eb90aef1bfa/1713264029960/Jb3O6lxvE1HFSsi HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/i8dr5/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:30 GMT
content-type: image/png
server: cloudflare
cf-ray: 87538ebe9a0a1bfa-OSL
alt-svc: h3=":443"; ma=86400

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=gd3kjyOl-nr_KZx_hirTGxiF1-D2eLgQtMf8K6mb00mJG2tdCknGYhtYZQUuAS03X9wE_E7p5o4FdUdGUFDw2mJXVUF4Rv3L4Q40oLsy4venV4rTNBt_7kPQMqzDMwTc
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Tue, 16 Apr 2024 10:40:08 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 33
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

zambezi.top/_newsos_oxy/functions/validate.php

188.114.97.1

1 B

URL
zambezi.top/_newsos_oxy/functions/validate.php
IP
188.114.97.1:0
ASN
#13335 CLOUDFLARENET

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce

HTTP Headers

POST /_newsos_oxy/functions/validate.php HTTP/1.1
Host: zambezi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 560
Origin: https://zambezi.top
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Cookie: cf_clearance=Jya470PpXaK6soVNjoSYU2EtPVwJSdxrGsHAqpemIeM-1713264023-1.0.1.1-hKEyAkxX6muCrQSM3PxnyKmGSMD8eTGivOaoWWmq.e64nRi.nGT_xUIIemaFQwjwjkLb0Njx4CX6lOl_3Lwqsg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.30
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bki2IkEhLpYdgL9%2B2IcL55zvLDgrJEahCKYtneqgvjjQG54zRt9%2FzXosSZzquAco9SoCzxHotkcYx2OGZX1B1PljZn0KYA7k11KTEMUbUTVSDzbVCTTgMojK5J9L%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87538f14ed050b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js

142.250.74.170

200 OK

31 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/3.6.3/jquery.min.js
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://zambezi.top/_newsos_oxy/zure/6715021183ca53222caac6391f07a586/login.php?_x_tr_hl=null&_x_tr_pto=wapp&_x_tr_sl=auto&_x_tr_tl=null&no_psplash=null&no_redrct=no_redrct&pcnt=3&pmax=null&request_type=session
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (31191 bytes)
Hash
cf2fbbf84281d9ecbffb4993203d543b
832a6a4e86daf38b1975d705c5de5d9e5f5844bc
a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575

HTTP Headers

GET /ajax/libs/jquery/3.6.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zambezi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:13 GMT
expires: Wed, 16 Apr 2025 05:54:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 17191
last-modified: Wed, 11 Jan 2023 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87538ec8f97a1bfa/1713264032525/uiqGTFVtwrI6gYL

104.17.3.184

200 OK

61 B

URL GET HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87538ec8f97a1bfa/1713264032525/uiqGTFVtwrI6gYL
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/g54dq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
PNG image data, 58 x 93, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
5661bc185e3ac70d617130fe2e5faa95
3b2731d73de7a7f1d4243c9121a7dba727640836
ef74503959aff12ed2c4c959641d232d441d8ff5910d3f31472b130288c4d7f8

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/87538ec8f97a1bfa/1713264032525/uiqGTFVtwrI6gYL HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/g54dq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:32 GMT
content-type: image/png
server: cloudflare
cf-ray: 87538ecdbfc51bfa-OSL
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2054643791:1713259994:1Mg4D-HC7RLi_hFbpu--0KEt03JOPEf9kDtbzqUKGaU/87538ec8f97a1bfa/425c64bf1d49b7a

104.17.3.184

200 OK

89 kB

URL POST HTTP/3
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/2054643791:1713259994:1Mg4D-HC7RLi_hFbpu--0KEt03JOPEf9kDtbzqUKGaU/87538ec8f97a1bfa/425c64bf1d49b7a
IP
104.17.3.184:443
ASN
#13335 CLOUDFLARENET

Requested by
https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/g54dq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Certificate
IssuerCloudflare, Inc.
Subjectchallenges.cloudflare.com
Fingerprint5F:E4:AA:8C:2E:24:D2:B1:69:9D:13:28:31:5C:65:FA:97:2A:E9:6E
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 17 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
89 kB (89072 bytes)
Hash
699b05ef66c048647cf5fa1b26d444c7
3eaaa00f2c9fe8d8a6aa66aea00c25e648a611c7
9e282fd03b44de2b604aa3d7ca5f8c90d79ed7e4277b4eb036241607158c833a

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/flow/ov1/2054643791:1713259994:1Mg4D-HC7RLi_hFbpu--0KEt03JOPEf9kDtbzqUKGaU/87538ec8f97a1bfa/425c64bf1d49b7a HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/g54dq/0x4AAAAAAADzWzgyzZH-kqvo/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 425c64bf1d49b7a
Content-Length: 2791
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 16 Apr 2024 10:40:32 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: 3Fl1kSMjtM8CDBUrrI7oEDCM9CjSk8sEgjOaaS9PyvJjymgwg5jEXOm/RDtoE5A6L4oRlk1XfPMMRSLy5NhkbdRXTgEkQhlJRBGsmANd0i4iHHFJhJJ3AjEyvFgs4aPvpMyFyniv08AydtlW8ZwVx1UTmWCBLLqQUj6ZsanVKveVk9YSDkVP8QOgYbMCvLnk49KqN4O+aH0RmsPklZoZeiXZ1sHa7A5gdVz7RvI7HKSj4TWZEc4thhQ18taUrLjZD6YXhhkWb4tTsm7H4lwlXoiMx4HMoJs/SRBoQdYI0Utv/gseHy0/Yto/ltaB8z2VREiOh6yUCkAonaz+0ynCHGyUqtA+Dd8Dya86J49qvIoGKPQC35AfQcFt7J432xxF$Y1tqRl8ueUxmp2btmUqeDA==
server: cloudflare
cf-ray: 87538ecb2cc51bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (48)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash

Observations

Hash