Report - pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm

Report Overview

Submitted URL
pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
IP
104.18.2.35
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 01:15:24
Access
public
Website Title
pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Final URL
pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Tags
suspicious
urlquery detections
Suspicious - Suspicious Javascript code

Detections

urlquery
3
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-17	442 B	24 kB	151.101.130.137
bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y.ipfs.dweb.link	unknown	2017-02-24	2023-07-02	2024-04-05	530 B	8.0 kB	209.94.90.1
bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee.ipfs.dweb.link	unknown	2017-02-24	2023-07-02	2024-03-19	526 B	12 kB	209.94.90.1
bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu.ipfs.dweb.link	unknown	2017-02-24	2023-06-29	2024-03-25	502 B	87 kB	209.94.90.1
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-17	525 B	7.2 kB	104.17.24.14
dweb.link	unknown	2017-02-24	2017-06-27	2024-03-28	4.5 kB	20 kB	209.94.90.1
bafybeihtdqp4mpo54jpiwxw4kaxtsv2eg7vfbtauaky25f4lelnwd542pm.ipfs.dweb.link	unknown	2017-02-24	2023-07-01	2024-04-12	1.1 kB	14 kB	209.94.90.1
bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a.ipfs.dweb.link	unknown	2017-02-24	2023-07-02	2024-03-19	531 B	33 kB	209.94.90.1
bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona.ipfs.dweb.link	unknown	2017-02-24	2023-07-02	2024-03-25	516 B	146 kB	209.94.90.1
api.ipify.org	3267	2014-01-05	2014-10-06	2024-04-17	528 B	267 B	104.26.13.205
bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi.ipfs.dweb.link	unknown	2017-02-24	2023-07-02	2024-03-17	514 B	21 kB	209.94.90.1
bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq.ipfs.dweb.link	unknown	2017-02-24	2023-07-02	2024-03-17	498 B	88 kB	209.94.90.1
bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy.ipfs.dweb.link	unknown	2017-02-24	2023-07-02	2024-03-17	498 B	20 kB	209.94.90.1
pub-ba8507aed7c44524b1e60764505db63c.r2.dev	unknown	2022-08-23	2024-03-04	2024-04-17	987 B	120 kB	104.18.3.35
i.postimg.cc	23840	2016-06-11	2018-04-11	2024-04-17	1.4 kB	431 kB	162.19.88.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-17	medium	pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm	WeTransfer

PhishTank

Scan Date	Severity	Indicator	Alert
2024-03-05	medium	pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm	WeTransfer

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	unknown	37 B	2023-04-11	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-05-01 03:28:10 Times Seen233108 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	dweb.link/ipfs/QmRbr6GPmMaXViCSY6fErfB14WWdCMBESyRzTPdk6VvjDu?filename=jquery.js	87 kB	2023-03-07	2024-05-01
Pretty URL dweb.link/ipfs/QmRbr6GPmMaXViCSY6fErfB14WWdCMBESyRzTPdk6VvjDu?filename=jquery.js IP 209.94.90.1 ASN #40680 PROTOCOL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-01 03:48:12 Times Seen107321 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm	799 B	2024-02-28	2024-04-18
Pretty URL pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-28 12:49:53 Last Seen2024-04-18 03:15:25 Times Seen2 Hash 0a2254e4d94b14135f54c75ca1f4700a cf04cdc4ef2bcfc5bae5cdc33519f60f8e389626 7b2b1663f865b78ebd479f4ede1daab1672d9c3fec0f9b393df42a67d9c1f3f3 Loading...

	bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu.ipfs.dweb.link/?filename=jquery.min.js	86 kB	2023-03-07	2024-04-27
Pretty URL bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu.ipfs.dweb.link/?filename=jquery.min.js IP 209.94.90.1 ASN #40680 PROTOCOL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:41 Last Seen2024-04-27 04:20:01 Times Seen891 Hash bceabde9d4ba653fd1f4bb171bff0c01 c8cdd4f8e91a77cddbc6d9ce8d5f302c52d74b6f 7496a1a9d658f14a47f7ee8dfa70840e47efa61b55b02cda8b316b0fc8dcc2c5 Loading...

	pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm	131 B	2023-06-15	2024-04-23
Pretty URL pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-15 06:44:28 Last Seen2024-04-23 18:47:16 Times Seen152 Hash 0acbc88ef714509336f1a12c34927b89 27f92a58e72f7b8b7dcc98283a3d84277f753193 3112d0f83f1cb864b160f55536b3c38d2648f142db0f5eeb629e9540d30f4d81 Loading...

	pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm	53 kB	2024-02-28	2024-04-18
Pretty URL pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-28 12:49:53 Last Seen2024-04-18 03:15:25 Times Seen3 Hash 03ae8359162de3db72b8a2cb0f42ca56 ccf380d02b515c4e7c1d812caeb01214ce5088ec 29bddbb1b1251cb225e4e24bd22e1cfa71b01295f29b3cf5db32349323700462 Loading...

	code.jquery.com/jquery-3.2.1.slim.min.js	70 kB	2023-03-07	2024-04-30
Pretty URL code.jquery.com/jquery-3.2.1.slim.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:43 Last Seen2024-04-30 22:35:13 Times Seen107142 Hash 5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398 Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	19 kB	2023-03-07	2024-05-01
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-05-01 01:19:32 Times Seen112833 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	unknown	79 B	2023-04-11	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:38:58 Last Seen2024-05-01 01:40:32 Times Seen125069 Hash aa049e2749b8531cb8f233c2f64fc2b2 b611a5a62c1813ae5b4763378b3a4a565556530a e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2 Loading...

	dweb.link/ipfs/QmRnpMNJrtmXUfNwYvar6xWLQJxUs65hDtHZUHQfowNRCm?filename=sweetalert.js	41 kB	2023-03-07	2024-04-30
Pretty URL dweb.link/ipfs/QmRnpMNJrtmXUfNwYvar6xWLQJxUs65hDtHZUHQfowNRCm?filename=sweetalert.js IP 209.94.90.1 ASN #40680 PROTOCOL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-30 20:18:18 Times Seen7444 Hash f3b8ce97ff6ce324da6232da353adf40 2a3daabc70232c6350ab48d32605dc4a6ac1f1fa 2ac46ebee46d515be86deeba385b4e41f8cff160364b362c9a6e153df327c66b Loading...

	pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm	627 B	2023-03-07	2024-04-29
Pretty URL pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:02:41 Last Seen2024-04-29 19:07:27 Times Seen515 Hash f8ecd4d7fd8da5baf55337d6790e0fac d6e502a27fe637b7f06df2d4ca39670e0a5c4bc0 5ab917714cb496bdba1ad47213a9aabd9147bba19c7eff0ddf7e46b4aa1ec1e7 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 4d12a11d93617efa27441f47869d156d	401 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:02:41 Last Seen2024-04-29 19:07:27 Times Seen634 Hash 4d12a11d93617efa27441f47869d156d 70dd822485874fe16f334468bfffe5dad153abbd 91c16639d04eaf68a0a87c022519be74068014b8ace744930ec7727afa2fa41d Loading...

HTTP Transactions (27)

URL IP Response Size

pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm

104.18.3.35

200 OK

92 kB

URL User Request GET HTTP/1.1
pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (26882), with CRLF line terminators
Size
92 kB (92022 bytes)
Hash
baa369eff970530f7db591ebc90e9c9e
e8f92e9573f73e99bad047691694dbbf86552f68
f5e5f9b89d9b597de88ccfde07e0753ce21de9fc7ebcc65224617d8de7f7d9fd

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious Javascript code
OpenPhish	phishing	WeTransfer
PhishTank	phishing	WeTransfer

HTTP Headers

GET /index3.htm HTTP/1.1
Host: pub-ba8507aed7c44524b1e60764505db63c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 18 Apr 2024 01:14:58 GMT
Content-Type: text/html
Content-Length: 92022
Connection: keep-alive
Accept-Ranges: bytes
ETag: "baa369eff970530f7db591ebc90e9c9e"
Last-Modified: Mon, 04 Mar 2024 06:51:16 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8760cd0efab256a2-OSL

cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

104.17.24.14

200 OK

6.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (19015)
Size
6.2 kB (6157 bytes)
Hash
70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2847782
expires: Tue, 08 Apr 2025 01:14:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wvHcq0xq76KoymihDGGhwXVd7y5toZMTu6HqKmpvAGcCuTvYy9eAFcQF%2FGY8pa3F4UFCPYbnCfxJJZagMV06p0OctBs3UwFc1oXdv7p%2FPVx7bwtCFy0CMRFDpn9flQrrdy34I4Va"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8760cd14ecd87128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dweb.link/ipfs/QmRJEENewudtFXP4Q6GzkWvKcm1WTMDrSca7QbGwSdrtMm?filename=bootstrap.css

209.94.90.1

301 Moved Permanently

141 B

URL GET HTTP/2
dweb.link/ipfs/QmRJEENewudtFXP4Q6GzkWvKcm1WTMDrSca7QbGwSdrtMm?filename=bootstrap.css
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text
Size
141 B (141 bytes)
Hash
5075898dfe559205113c24d2bf45dc18
a59688817b13fbd3a12e65b122051e8d5bccbc57
d99849d50d31c2deb73c88087440e84c8e2e95c0fcd82d615669f6603e2666c4

HTTP Headers

GET /ipfs/QmRJEENewudtFXP4Q6GzkWvKcm1WTMDrSca7QbGwSdrtMm?filename=bootstrap.css HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 141
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
location: https://bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona.ipfs.dweb.link/?filename=bootstrap.css
x-ipfs-pop: ipfs-bank1-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: be8516ed07176ee9dfe073d2d1126f84
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dweb.link/ipfs/QmRnpMNJrtmXUfNwYvar6xWLQJxUs65hDtHZUHQfowNRCm?filename=sweetalert.js

209.94.90.1

301 Moved Permanently

141 B

URL GET HTTP/2
dweb.link/ipfs/QmRnpMNJrtmXUfNwYvar6xWLQJxUs65hDtHZUHQfowNRCm?filename=sweetalert.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text
Size
141 B (141 bytes)
Hash
e328380da6be36d4ee1bb6eecba270f4
40e6e3dc2f6890b3974e930176050b3f412cc4ae
4bcac744b173f98145329cb8f1d7958ff01941e06cf97b1cd9443d94f47f13c1

HTTP Headers

GET /ipfs/QmRnpMNJrtmXUfNwYvar6xWLQJxUs65hDtHZUHQfowNRCm?filename=sweetalert.js HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 141
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
location: https://bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi.ipfs.dweb.link/?filename=sweetalert.js
x-ipfs-pop: ipfs-bank5-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 6f8107024a5b1bba2a00c739c94c72fe
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dweb.link/ipfs/QmSgatZddgpVbC7qiSzcy7TRTe24FKvADHfP4psTqZthyP?filename=logo.jpg

209.94.90.1

301 Moved Permanently

136 B

URL GET HTTP/2
dweb.link/ipfs/QmSgatZddgpVbC7qiSzcy7TRTe24FKvADHfP4psTqZthyP?filename=logo.jpg
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text
Size
136 B (136 bytes)
Hash
f7ed76f13dde1eadd25e1dde15d0380a
41522f8bcbfa2395a055dd1584c74ce0c9c8c54f
72b6c396f56cdd464c726591c1c6a45f3c26b1b8793579481c6f5e885d4ea54f

HTTP Headers

GET /ipfs/QmSgatZddgpVbC7qiSzcy7TRTe24FKvADHfP4psTqZthyP?filename=logo.jpg HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 136
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
location: https://bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y.ipfs.dweb.link/?filename=logo.jpg
x-ipfs-pop: ipfs-bank2-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 2c7772fe43bf75c3a954d0bdb07a4db8
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dweb.link/ipfs/QmTgavUm1wZU5UMoUwb1to6zVgCo7nR7p7ic6H44RRPrX9?filename=font-awesome.css

209.94.90.1

301 Moved Permanently

144 B

URL GET HTTP/2
dweb.link/ipfs/QmTgavUm1wZU5UMoUwb1to6zVgCo7nR7p7ic6H44RRPrX9?filename=font-awesome.css
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text
Size
144 B (144 bytes)
Hash
0095e01889589a96ec6c2fa64e4e0a7c
ff86ffb4165587acb560367a3acd85507c7e09f7
4beba4ea5c0c7453f153b1ae595887b2ae96aba797094c26f9c8e0f1c24c0500

HTTP Headers

GET /ipfs/QmTgavUm1wZU5UMoUwb1to6zVgCo7nR7p7ic6H44RRPrX9?filename=font-awesome.css HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 144
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
location: https://bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a.ipfs.dweb.link/?filename=font-awesome.css
x-ipfs-pop: ipfs-bank5-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 139b405c89ba986b42bd6041a1ec5d4a
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dweb.link/ipfs/Qmf7y59RuutyHLhsgQXGDBWGohxMZPfeU4M6ZiVDSC7bma?filename=animate.css

209.94.90.1

301 Moved Permanently

139 B

URL GET HTTP/2
dweb.link/ipfs/Qmf7y59RuutyHLhsgQXGDBWGohxMZPfeU4M6ZiVDSC7bma?filename=animate.css
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text
Size
139 B (139 bytes)
Hash
439db0545a713f00e13cf46233762444
d97e378824f29b648e291074e7a90e8d147345c0
775f99362336dab691a84e0726ce0e8e5a5be1b91c36fc650a9cdade9df32689

HTTP Headers

GET /ipfs/Qmf7y59RuutyHLhsgQXGDBWGohxMZPfeU4M6ZiVDSC7bma?filename=animate.css HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 139
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
location: https://bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee.ipfs.dweb.link/?filename=animate.css
x-ipfs-pop: ipfs-bank2-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: b59c8cf10d2c9736ea444487fb91fbae
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dweb.link/ipfs/QmRbr6GPmMaXViCSY6fErfB14WWdCMBESyRzTPdk6VvjDu?filename=jquery.js

209.94.90.1

301 Moved Permanently

137 B

URL GET HTTP/2
dweb.link/ipfs/QmRbr6GPmMaXViCSY6fErfB14WWdCMBESyRzTPdk6VvjDu?filename=jquery.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text
Size
137 B (137 bytes)
Hash
28e735fd4f6ee8d8dc888bcb96d48c3a
60578f4a502f70b8092c34d5483df943c0ac36ea
465b0a55df7521b39e2520c06dc37aac2d6d74ca136453dd5dcde14c2d7dcdc7

HTTP Headers

GET /ipfs/QmRbr6GPmMaXViCSY6fErfB14WWdCMBESyRzTPdk6VvjDu?filename=jquery.js HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 137
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
location: https://bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq.ipfs.dweb.link/?filename=jquery.js
x-ipfs-pop: ipfs-bank2-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 053ce3435608745d7e6178c9f5d24e0a
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dweb.link/ipfs/QmUiVYsNJuaBoCQ1hYeQE8uXVu6LwDSEBUuA3PxKe7zUFX?filename=popper.js

209.94.90.1

301 Moved Permanently

137 B

URL GET HTTP/2
dweb.link/ipfs/QmUiVYsNJuaBoCQ1hYeQE8uXVu6LwDSEBUuA3PxKe7zUFX?filename=popper.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text
Size
137 B (137 bytes)
Hash
aeb6a5bc098c1cdcc596a46f73dc6d58
d009f7e8cbe879389277dba098d302032dc1062e
d27c51aa56e1890f2d29ebaab1f7d83bc05913925b92518d9bc452ec979454dc

HTTP Headers

GET /ipfs/QmUiVYsNJuaBoCQ1hYeQE8uXVu6LwDSEBUuA3PxKe7zUFX?filename=popper.js HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html; charset=utf-8
content-length: 137
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
location: https://bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy.ipfs.dweb.link/?filename=popper.js
x-ipfs-pop: ipfs-bank1-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 24b45e7dfa38516c1c6a633e9c7a5036
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
X-Firefox-Spdy: h2

dweb.link/ipfs/QmeheeqeAGN8QeMMXY2Pusp4gwJH99dKPqUCfsX6vwoRKQ?filename=bootstrap.js

209.94.90.1

410 Gone

6.7 kB

URL GET HTTP/2
dweb.link/ipfs/QmeheeqeAGN8QeMMXY2Pusp4gwJH99dKPqUCfsX6vwoRKQ?filename=bootstrap.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text, with very long lines (1632)
Size
6.7 kB (6664 bytes)
Hash
a625932f4efa89cf3dabcb020f3b18ef
69cfc20bcf10dedd1fc6847dd89e95f65234509c
db6ad367de6ed56b2f962000875de9abc8d90042df48ff2ad59887a126b43600

HTTP Headers

GET /ipfs/QmeheeqeAGN8QeMMXY2Pusp4gwJH99dKPqUCfsX6vwoRKQ?filename=bootstrap.js HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 410 Gone
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html
content-length: 6664
etag: "661fa4fb-1a08"
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 84acd549c4638cccb1ce7d3c54162d45
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

bafybeihtdqp4mpo54jpiwxw4kaxtsv2eg7vfbtauaky25f4lelnwd542pm.ipfs.dweb.link/?filename=bootstrap.min.js

209.94.90.1

410 Gone

6.7 kB

URL GET HTTP/2
bafybeihtdqp4mpo54jpiwxw4kaxtsv2eg7vfbtauaky25f4lelnwd542pm.ipfs.dweb.link/?filename=bootstrap.min.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text, with very long lines (1632)
Size
6.7 kB (6664 bytes)
Hash
a625932f4efa89cf3dabcb020f3b18ef
69cfc20bcf10dedd1fc6847dd89e95f65234509c
db6ad367de6ed56b2f962000875de9abc8d90042df48ff2ad59887a126b43600

HTTP Headers

GET /?filename=bootstrap.min.js HTTP/1.1
Host: bafybeihtdqp4mpo54jpiwxw4kaxtsv2eg7vfbtauaky25f4lelnwd542pm.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 410 Gone
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/html
content-length: 6664
etag: "661fa4fb-1a08"
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: faf94c30b96ec6b06381494502d764e0
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.2.1.slim.min.js

151.101.130.137

200 OK

24 kB

URL GET HTTP/2
code.jquery.com/jquery-3.2.1.slim.min.js
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32012)
Size
24 kB (23856 bytes)
Hash
5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398

HTTP Headers

GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 18 Apr 2024 01:14:58 GMT
age: 873031
x-served-by: cache-lga21963-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 40, 88431
x-timer: S1713402899.784916,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2

pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index_files/webfont.js

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index_files/webfont.js
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

HTTP Headers

GET /index_files/webfont.js HTTP/1.1
Host: pub-ba8507aed7c44524b1e60764505db63c.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Thu, 18 Apr 2024 01:14:58 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8760cd14bbe756a2-OSL

bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y.ipfs.dweb.link/?filename=logo.jpg

209.94.90.1

200 OK

6.9 kB

URL GET HTTP/2
bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y.ipfs.dweb.link/?filename=logo.jpg
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3, height=0, orientation=upper-left, width=0], baseline, precision 8, 289x57, components 3
Size
6.9 kB (6929 bytes)
Hash
d04a0e077be370d23d16c1358749563b
d41f2bc6ee296019eba5798682f0b60cff2084a6
f8caf3207186e803510b7c02c6de2818abda8d0720f2764cb4e720a35a4d991e

HTTP Headers

GET /?filename=logo.jpg HTTP/1.1
Host: bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: image/jpeg
content-length: 6929
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="logo.jpg"; filename*=UTF-8''logo.jpg
etag: "bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y"
x-ipfs-path: /ipfs/bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y/
x-ipfs-roots: bafybeicarifyatgz3sd2cfgucp3bo5bddjyou7vevbvy3bd5epwtmbyu3y
x-ipfs-pop: ipfs-bank1-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 474b27c1dad03deea3ef3cec6afd2e26
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

dweb.link/ipfs/QmeheeqeAGN8QeMMXY2Pusp4gwJH99dKPqUCfsX6vwoRKQ?filename=bootstrap.js

209.94.90.1

410 Gone

6.7 kB

URL GET HTTP/2
dweb.link/ipfs/QmeheeqeAGN8QeMMXY2Pusp4gwJH99dKPqUCfsX6vwoRKQ?filename=bootstrap.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text, with very long lines (1632)
Size
6.7 kB (6664 bytes)
Hash
a625932f4efa89cf3dabcb020f3b18ef
69cfc20bcf10dedd1fc6847dd89e95f65234509c
db6ad367de6ed56b2f962000875de9abc8d90042df48ff2ad59887a126b43600

HTTP Headers

GET /ipfs/QmeheeqeAGN8QeMMXY2Pusp4gwJH99dKPqUCfsX6vwoRKQ?filename=bootstrap.js HTTP/1.1
Host: dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 410 Gone
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/html
content-length: 6664
etag: "661fa4fb-1a08"
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: d9def9f607e4c4ca5c85d122640e46cb
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee.ipfs.dweb.link/?filename=animate.css

209.94.90.1

200 OK

11 kB

URL GET HTTP/2
bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee.ipfs.dweb.link/?filename=animate.css
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
gzip compressed data, from Unix
Size
11 kB (10767 bytes)
Hash
368ad13b7e291aadfddebcb968aa52bb
6e3a59d7bc7e16010d615230526189743bac5c5a
69eaee61765eabe06f68b5dc6770097b1eff3310de282090f334a3a31380c81b

HTTP Headers

GET /?filename=animate.css HTTP/1.1
Host: bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="animate.css"; filename*=UTF-8''animate.css
etag: W/"bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee"
x-ipfs-path: /ipfs/bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee/
x-ipfs-roots: bafybeihzk3r5vvkorkyw6yhdrq6ybyddsqbstgcv563nc4kooxaup7lqee
x-ipfs-pop: ipfs-bank2-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 472bb31901641a422f2ea857e425402b
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

bafybeihtdqp4mpo54jpiwxw4kaxtsv2eg7vfbtauaky25f4lelnwd542pm.ipfs.dweb.link/?filename=bootstrap.min.js

209.94.90.1

410 Gone

6.7 kB

URL GET HTTP/2
bafybeihtdqp4mpo54jpiwxw4kaxtsv2eg7vfbtauaky25f4lelnwd542pm.ipfs.dweb.link/?filename=bootstrap.min.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
HTML document, ASCII text, with very long lines (1632)
Size
6.7 kB (6664 bytes)
Hash
a625932f4efa89cf3dabcb020f3b18ef
69cfc20bcf10dedd1fc6847dd89e95f65234509c
db6ad367de6ed56b2f962000875de9abc8d90042df48ff2ad59887a126b43600

HTTP Headers

GET /?filename=bootstrap.min.js HTTP/1.1
Host: bafybeihtdqp4mpo54jpiwxw4kaxtsv2eg7vfbtauaky25f4lelnwd542pm.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 410 Gone
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/html
content-length: 6664
etag: "661fa4fb-1a08"
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 8f630c9e0c6f319121552372be67c19b
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a.ipfs.dweb.link/?filename=font-awesome.css

209.94.90.1

200 OK

32 kB

URL GET HTTP/2
bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a.ipfs.dweb.link/?filename=font-awesome.css
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
gzip compressed data, from Unix
Size
32 kB (32324 bytes)
Hash
d49e8519e2f2c67610ae003564af137e
cff85fddf447dbc19ae852aa13f78474315dd36b
0a970f6c86ab3f892181701bd7fb89907fa5310a4f2b8631fd273118bb78357a

HTTP Headers

GET /?filename=font-awesome.css HTTP/1.1
Host: bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="font-awesome.css"; filename*=UTF-8''font-awesome.css
etag: W/"bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a"
x-ipfs-path: /ipfs/bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a/
x-ipfs-roots: bafybeicpmxcovgwlyxv4eqnea4eikta2zqxrymbkggdyjaredhcaatcc5a
x-ipfs-pop: ipfs-bank4-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: e34431a56670240d37da8156d738776f
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

i.postimg.cc/v8q2YKDS/bg1.png

162.19.88.68

200 OK

420 kB

URL GET HTTP/2
i.postimg.cc/v8q2YKDS/bg1.png
IP
162.19.88.68:443
ASN
#16276 OVH SAS

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13
ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT

File type
PNG image data, 1280 x 599, 8-bit/color RGB, non-interlaced
Size
420 kB (420039 bytes)
Hash
5b86af2b2d7202989b3061cb05933ed6
0df644cfb506a4c004eec9f962737421bfd66d91
3194d315e706c0723bf5469637ef9dda08784aa0c5e61319efbfea1bbc03cdc6

HTTP Headers

GET /v8q2YKDS/bg1.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: image/png
content-length: 420039
last-modified: Sun, 15 Oct 2023 12:50:46 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

api.ipify.org/?format=json

104.26.13.205

200 OK

21 B

URL GET HTTP/2
api.ipify.org/?format=json
IP
104.26.13.205:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerGoogle Trust Services LLC
Subjectipify.org
FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7
ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT

File type
JSON text data
Size
21 B (21 bytes)
Hash
7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65

HTTP Headers

GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8760cd1a4969b50f-OSL
X-Firefox-Spdy: h2

i.postimg.cc/3JWwH6wN/apple-touch-icon.png

162.19.88.68

200 OK

9.2 kB

URL GET HTTP/2
i.postimg.cc/3JWwH6wN/apple-touch-icon.png
IP
162.19.88.68:443
ASN
#16276 OVH SAS

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13
ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
9.2 kB (9187 bytes)
Hash
3c231b07623cd54d8404d053145b43b8
fd1c20f77dc6603bec0dc459de6a39a50273ead9
1a7f1cc031190e273ff7d38dd6d7677444eb018f42dbd77a1a78a411a9ca8f74

HTTP Headers

GET /3JWwH6wN/apple-touch-icon.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: image/png
content-length: 9187
last-modified: Fri, 23 Jun 2023 07:40:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.postimg.cc/wxnBg2Rk/favicon-16x16.png

162.19.88.68

200 OK

352 B

URL GET HTTP/2
i.postimg.cc/wxnBg2Rk/favicon-16x16.png
IP
162.19.88.68:443
ASN
#16276 OVH SAS

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectpostimg.cc
FingerprintF9:1B:A9:B2:AB:2D:30:75:4E:44:3F:7A:6F:40:77:77:39:CE:1B:13
ValidityWed, 21 Feb 2024 07:13:33 GMT - Tue, 21 May 2024 07:13:32 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Size
352 B (352 bytes)
Hash
29a7971ab512fe1c421fa65a785d3970
ba837103dd3877c780a0916c061fd2af38eff741
03aa5551ce60e0e703f7239cb2de4c6f26b9ca7802736dbd30c36af16440d3a1

HTTP Headers

GET /wxnBg2Rk/favicon-16x16.png HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: image/png
content-length: 352
last-modified: Fri, 23 Jun 2023 07:42:10 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi.ipfs.dweb.link/?filename=sweetalert.js

209.94.90.1

200 OK

20 kB

URL GET HTTP/2
bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi.ipfs.dweb.link/?filename=sweetalert.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
gzip compressed data, from Unix
Size
20 kB (19732 bytes)
Hash
b56a4659c9dc99ef7b97204a3cb54a18
c3d39c18208608f789cf3b5706b47e664182614a
8a6bcad8877ebd6d7cd7f7bb7f32b502963ea8e9af85b6f2bc26aca1205473d3

HTTP Headers

GET /?filename=sweetalert.js HTTP/1.1
Host: bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="sweetalert.js"; filename*=UTF-8''sweetalert.js
etag: W/"bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi"
x-ipfs-path: /ipfs/bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi/
x-ipfs-roots: bafybeibti4iinvd5b2p775563ygtudzqktihggrtnksbmphezza3hn4eoi
x-ipfs-pop: ipfs-bank4-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 28817a92afd347b1d1a653bbb912b473
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu.ipfs.dweb.link/?filename=jquery.min.js

209.94.90.1

200 OK

86 kB

URL GET HTTP/2
bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu.ipfs.dweb.link/?filename=jquery.min.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
JavaScript source, ASCII text, with very long lines (32065), with CRLF line terminators
Size
86 kB (85584 bytes)
Hash
bceabde9d4ba653fd1f4bb171bff0c01
c8cdd4f8e91a77cddbc6d9ce8d5f302c52d74b6f
7496a1a9d658f14a47f7ee8dfa70840e47efa61b55b02cda8b316b0fc8dcc2c5

HTTP Headers

GET /?filename=jquery.min.js HTTP/1.1
Host: bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:58 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="jquery.min.js"; filename*=UTF-8''jquery.min.js
etag: W/"bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu"
x-ipfs-path: /ipfs/bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu/
x-ipfs-roots: bafybeigeqhk7awdadjfe7mg764ts37prfajxfqry7gsdhb3ku47uwk2tiu
x-ipfs-pop: ipfs-bank2-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: b25f38574b3e858bf1071de97234534a
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq.ipfs.dweb.link/?filename=jquery.js

209.94.90.1

200 OK

87 kB

URL GET HTTP/2
bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq.ipfs.dweb.link/?filename=jquery.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
87 kB (86927 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /?filename=jquery.js HTTP/1.1
Host: bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="jquery.js"; filename*=UTF-8''jquery.js
etag: W/"bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq"
x-ipfs-path: /ipfs/bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq/
x-ipfs-roots: bafybeibqo6sij2nxln2lh3l4bhpufkriqsc6vtcni44smmcw2hskahjtxq
x-ipfs-pop: ipfs-bank1-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 52a506e3d49cd4b2db8edbf8d23ab87b
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy.ipfs.dweb.link/?filename=popper.js

209.94.90.1

200 OK

19 kB

URL GET HTTP/2
bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy.ipfs.dweb.link/?filename=popper.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
JavaScript source, ASCII text, with very long lines (19015)
Size
19 kB (19188 bytes)
Hash
70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

HTTP Headers

GET /?filename=popper.js HTTP/1.1
Host: bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="popper.js"; filename*=UTF-8''popper.js
etag: W/"bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy"
x-ipfs-path: /ipfs/bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy/
x-ipfs-roots: bafybeic6x2fp4tittdgm62ih5upavzl5cd7mfqheybck3e262z3mwy4xpy
x-ipfs-pop: ipfs-bank2-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: b3289a4d8f414fda63c98f401ee1a7c5
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona.ipfs.dweb.link/?filename=bootstrap.css

209.94.90.1

200 OK

145 kB

URL GET HTTP/2
bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona.ipfs.dweb.link/?filename=bootstrap.css
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/index3.htm
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint2A:D2:03:4C:D3:15:24:93:EF:9E:1F:8F:5A:9C:AF:C4:E2:63:C9:42
ValidityTue, 06 Feb 2024 17:40:37 GMT - Mon, 06 May 2024 17:40:36 GMT

File type
ASCII text, with very long lines (65325)
Size
145 kB (144877 bytes)
Hash
450fc463b8b1a349df717056fbb3e078
895125a4522a3b10ee7ada06ee6503587cbf95c5
2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d

HTTP Headers

GET /?filename=bootstrap.css HTTP/1.1
Host: bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pub-ba8507aed7c44524b1e60764505db63c.r2.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Thu, 18 Apr 2024 01:14:59 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="bootstrap.css"; filename*=UTF-8''bootstrap.css
etag: W/"bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona"
x-ipfs-path: /ipfs/bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona/
x-ipfs-roots: bafybeibl6q4lz3so3hbhc2vbzxcpitws5yd3wcrkfewuerr3l5ohj4mona
x-ipfs-pop: ipfs-bank2-fr2
timing-allow-origin: *
x-ipfs-lb-pop: gateway-bank2-fr2
x-bfid: 3e20e7403360d9b7ed15afa295c0cb58
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-proxy-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by