Report - bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/

Report Overview

Submitted URL
bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
IP
104.17.64.14
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-04 17:25:39
Access
public
Website Title
Alibaba Manufacturer Directory - Suppliers, Manufacturers, Exporters & Importers
Final URL
bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ipfs.io	41400	2014-05-16	2015-09-09	2024-05-02	3.3 kB	130 kB	209.94.90.1
u.alicdn.com	39058	2008-06-25	2015-04-24	2024-03-28	462 B	28 kB	104.110.21.4
bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com	unknown	2018-12-05	2023-04-28	2024-03-14	1.2 kB	13 kB	104.17.64.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/	Alibaba
2024-05-04	medium	bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/	Alibaba

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (0)

HTTP Transactions (9)

URL IP Response Size

ipfs.io/ipfs/QmeE6RJcpaES9RuHQYcqgpeJDpaRA3QmgrJyCVvQ4m1XE7?filename=TB1awf5PXXXXXXLXFXXXXXXXXXX-585-350.jpg

209.94.90.1

200 OK

29 kB

URL GET HTTP/2
ipfs.io/ipfs/QmeE6RJcpaES9RuHQYcqgpeJDpaRA3QmgrJyCVvQ4m1XE7?filename=TB1awf5PXXXXXXLXFXXXXXXXXXX-585-350.jpg
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectipfs.io
Fingerprint07:58:C3:22:5D:BD:99:F6:5C:4D:37:65:3F:B9:C3:4C:B7:02:C2:46
ValidityTue, 16 Apr 2024 16:23:44 GMT - Mon, 15 Jul 2024 16:23:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 585x350, components 3
Size
29 kB (28956 bytes)
Hash
b4ea5d8bed9945018ea3a324425871a1
405fe86d25aed719136c93091f073643cb2b9373
cec49b1571e0c35f77887787e3eb9cff70ba816d5e461f98d3e55f1058ce5f21

HTTP Headers

GET /ipfs/QmeE6RJcpaES9RuHQYcqgpeJDpaRA3QmgrJyCVvQ4m1XE7?filename=TB1awf5PXXXXXXLXFXXXXXXXXXX-585-350.jpg HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 17:25:15 GMT
content-type: image/jpeg
content-length: 28956
cache-control: public, max-age=29030400, immutable
cf-bgj: h2pri
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
content-disposition: inline; filename="TB1awf5PXXXXXXLXFXXXXXXXXXX-585-350.jpg"; filename*=UTF-8''TB1awf5PXXXXXXLXFXXXXXXXXXX-585-350.jpg
etag: "QmeE6RJcpaES9RuHQYcqgpeJDpaRA3QmgrJyCVvQ4m1XE7"
x-ipfs-path: /ipfs/QmeE6RJcpaES9RuHQYcqgpeJDpaRA3QmgrJyCVvQ4m1XE7
x-ipfs-pop: rainbow-am6-02
x-ipfs-roots: QmeE6RJcpaES9RuHQYcqgpeJDpaRA3QmgrJyCVvQ4m1XE7
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea30617c60569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

u.alicdn.com/js/aplus_en.js

104.110.21.4

200 OK

28 kB

URL GET HTTP/2
u.alicdn.com/js/aplus_en.js
IP
104.110.21.4:443
ASN
#16625 AKAMAI-AS

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerDigiCert Inc
Subjectru.aliexpress.com
FingerprintC9:93:DC:41:76:B4:7F:04:C8:79:2C:8B:0A:D5:30:02:C6:F9:6D:4A
ValidityWed, 10 Apr 2024 00:00:00 GMT - Wed, 23 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
28 kB (27615 bytes)
Hash
e1d88b2e542d89752ecac1314047376c
085b7076dc8d9096823638b99a9d420848ef5ac4
1961d16246e3ae3e99b17c3d1f0377eddf72cc176bd0c3072f8f67c9aebfaef5

HTTP Headers

GET /js/aplus_en.js HTTP/1.1
Host: u.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Mon, 26 Mar 2018 06:55:57 GMT
etag: 8350491d_0
served-from: 23.36.79.134
server: Tengine
x-server-id: 5dd621d318911325a05c259270f04ee86978561e8707b2eecc358da1ed5d9acc921c630316b46fd3
x-readtime: 1
strict-transport-security: max-age=0
eagleid: 4f85b09916898693351253103e, 2ff62c9716898703040835491e
server-timing: rt;dur=0.006,eagleid;desc=4f85b09916898693351253103e
ali-swift-global-savetime: 1689869335
content-type: application/javascript
content-length: 27615
content-encoding: gzip
x-swift-savetime: Fri, 06 May 2022 21:07:40 GMT
x-swift-cachetime: 278
cache-control: max-age=5
expires: Sat, 04 May 2024 17:25:20 GMT
date: Sat, 04 May 2024 17:25:15 GMT
vary: Accept-Encoding
network_info: NO_OSLO_50304
timing-allow-origin: *, *, *
access-control-allow-origin: *
access-control-expose-headers: FW_IP
fw_ip: 104.110.21.4
X-Firefox-Spdy: h2

ipfs.io/ipfs/QmeEqKjj9UQcbB2Nr6q5bqyfo9NJuPWuLB7vZeENbunVax?filename=TB1ROn8OpXXXXbZaXXXXXXXXXXX-32-31.png

209.94.90.1

200 OK

1.7 kB

URL GET HTTP/2
ipfs.io/ipfs/QmeEqKjj9UQcbB2Nr6q5bqyfo9NJuPWuLB7vZeENbunVax?filename=TB1ROn8OpXXXXbZaXXXXXXXXXXX-32-31.png
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectipfs.io
Fingerprint07:58:C3:22:5D:BD:99:F6:5C:4D:37:65:3F:B9:C3:4C:B7:02:C2:46
ValidityTue, 16 Apr 2024 16:23:44 GMT - Mon, 15 Jul 2024 16:23:43 GMT

File type
PNG image data, 32 x 31, 8-bit/color RGBA, non-interlaced
Size
1.7 kB (1699 bytes)
Hash
c738d961dd8d36206c8956302a703041
56efb7ae3db98c34088a24fec7a1482b628423e0
139359e8cd675429cb1766058fd9067a54af94517145b3dd6e73df778a3bfb07

HTTP Headers

GET /ipfs/QmeEqKjj9UQcbB2Nr6q5bqyfo9NJuPWuLB7vZeENbunVax?filename=TB1ROn8OpXXXXbZaXXXXXXXXXXX-32-31.png HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 04 May 2024 17:25:15 GMT
content-type: image/png
content-length: 1699
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="TB1ROn8OpXXXXbZaXXXXXXXXXXX-32-31.png"; filename*=UTF-8''TB1ROn8OpXXXXbZaXXXXXXXXXXX-32-31.png
etag: "QmeEqKjj9UQcbB2Nr6q5bqyfo9NJuPWuLB7vZeENbunVax"
x-ipfs-path: /ipfs/QmeEqKjj9UQcbB2Nr6q5bqyfo9NJuPWuLB7vZeENbunVax
x-ipfs-roots: QmeEqKjj9UQcbB2Nr6q5bqyfo9NJuPWuLB7vZeENbunVax
x-ipfs-pop: rainbow-am6-02
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea30618c67569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/

104.17.64.14

200 OK

11 kB

URL User Request GET HTTP/2
bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
IP
104.17.64.14:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type

Size
11 kB (11432 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET / HTTP/1.1
Host: bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 17:25:14 GMT
content-type: text/html
cf-ray: 87ea305e8a12568f-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze/
x-ipfs-roots: bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze
set-cookie: __cf_bm=IaU7FFqPGvNw2yE7.PVnaTh4j1hods49oZ7XMCvDnJo-1714843514-1.0.1.1-Yew_kqpBuR1eiOISXG0pU3Qrgh9W1ViMWbp_kJje5h1EXyVPluHExr_f3YRyUtOoXFbQwCeLzRgob.uMDvbUtg; path=/; expires=Sat, 04-May-24 17:55:14 GMT; domain=.bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ipfs.io/ipfs/QmYSoY817pbEsCjAGjtJWKnnmdCWuuyUAbfX8dXYUfDEKG?filename=jquery.min.js

209.94.90.1

200 OK

86 kB

URL GET HTTP/2
ipfs.io/ipfs/QmYSoY817pbEsCjAGjtJWKnnmdCWuuyUAbfX8dXYUfDEKG?filename=jquery.min.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectipfs.io
Fingerprint07:58:C3:22:5D:BD:99:F6:5C:4D:37:65:3F:B9:C3:4C:B7:02:C2:46
ValidityTue, 16 Apr 2024 16:23:44 GMT - Mon, 15 Jul 2024 16:23:43 GMT

File type
JavaScript source, ASCII text, with very long lines (32065)
Size
86 kB (85578 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /ipfs/QmYSoY817pbEsCjAGjtJWKnnmdCWuuyUAbfX8dXYUfDEKG?filename=jquery.min.js HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 17:25:15 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="jquery.min.js"; filename*=UTF-8''jquery.min.js
etag: W/"QmYSoY817pbEsCjAGjtJWKnnmdCWuuyUAbfX8dXYUfDEKG"
x-ipfs-path: /ipfs/QmYSoY817pbEsCjAGjtJWKnnmdCWuuyUAbfX8dXYUfDEKG
x-ipfs-roots: QmYSoY817pbEsCjAGjtJWKnnmdCWuuyUAbfX8dXYUfDEKG
x-ipfs-pop: rainbow-am6-02
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea30618c73569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ipfs.io/ipfs/QmbTG6hwosBixJZoUhHQskukVvN5ZSE5vzJhVzUJzULtnS?filename=jquery.session.min.js

209.94.90.1

200 OK

2.3 kB

URL GET HTTP/2
ipfs.io/ipfs/QmbTG6hwosBixJZoUhHQskukVvN5ZSE5vzJhVzUJzULtnS?filename=jquery.session.min.js
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectipfs.io
Fingerprint07:58:C3:22:5D:BD:99:F6:5C:4D:37:65:3F:B9:C3:4C:B7:02:C2:46
ValidityTue, 16 Apr 2024 16:23:44 GMT - Mon, 15 Jul 2024 16:23:43 GMT

File type
ASCII text, with very long lines (2368), with no line terminators
Size
2.3 kB (2333 bytes)
Hash
0e6e66d900256c806b3a9dac174b2ebb
68dd2a54579d1895fbe35383da6f56ed841e6d7a
785b2383673ae9ccb86d36969c8e8d9593edaeb6d435aab4adad805898dce5f8

HTTP Headers

GET /ipfs/QmbTG6hwosBixJZoUhHQskukVvN5ZSE5vzJhVzUJzULtnS?filename=jquery.session.min.js HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 17:25:15 GMT
content-type: text/javascript; charset=utf-8
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="jquery.session.min.js"; filename*=UTF-8''jquery.session.min.js
etag: W/"QmbTG6hwosBixJZoUhHQskukVvN5ZSE5vzJhVzUJzULtnS"
x-ipfs-path: /ipfs/QmbTG6hwosBixJZoUhHQskukVvN5ZSE5vzJhVzUJzULtnS
x-ipfs-roots: QmbTG6hwosBixJZoUhHQskukVvN5ZSE5vzJhVzUJzULtnS
x-ipfs-pop: rainbow-am6-03
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea30618c68569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ipfs.io/ipfs/QmTzrfqjxbUH8gLXxotJwUA3BX6tBQvUc1Z2i5K3xFAva6?filename=footer.css

209.94.90.1

200 OK

7.3 kB

URL GET HTTP/2
ipfs.io/ipfs/QmTzrfqjxbUH8gLXxotJwUA3BX6tBQvUc1Z2i5K3xFAva6?filename=footer.css
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectipfs.io
Fingerprint07:58:C3:22:5D:BD:99:F6:5C:4D:37:65:3F:B9:C3:4C:B7:02:C2:46
ValidityTue, 16 Apr 2024 16:23:44 GMT - Mon, 15 Jul 2024 16:23:43 GMT

File type
ASCII text, with very long lines (7310), with no line terminators
Size
7.3 kB (7310 bytes)
Hash
374e2b45e8ee13c1dabc598767ef6168
cf1c50683677d2ca2255807001fdb922187b33e3
71e9caa7c17b20aac3baa32a9a4fbba2bb95634a6bdcc886af7e876c70b1f9a8

HTTP Headers

GET /ipfs/QmTzrfqjxbUH8gLXxotJwUA3BX6tBQvUc1Z2i5K3xFAva6?filename=footer.css HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 04 May 2024 17:25:15 GMT
content-type: text/css; charset=utf-8
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
cache-control: public, max-age=29030400, immutable
content-disposition: inline; filename="footer.css"; filename*=UTF-8''footer.css
etag: W/"QmTzrfqjxbUH8gLXxotJwUA3BX6tBQvUc1Z2i5K3xFAva6"
x-ipfs-path: /ipfs/QmTzrfqjxbUH8gLXxotJwUA3BX6tBQvUc1Z2i5K3xFAva6
x-ipfs-roots: QmTzrfqjxbUH8gLXxotJwUA3BX6tBQvUc1Z2i5K3xFAva6
x-ipfs-pop: rainbow-am6-01
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea30618c7b569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ipfs.io/ipfs/QmXtnFHsgR83MugCZaJjFs59DSzBChAMr571cKMPBAEhXJ?filename=stylessl.aliunicorn.css

0.0.0.0

0 B

URL GET
ipfs.io/ipfs/QmXtnFHsgR83MugCZaJjFs59DSzBChAMr571cKMPBAEhXJ?filename=stylessl.aliunicorn.css
IP
0.0.0.0:0
ASN
#0

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectipfs.io
Fingerprint07:58:C3:22:5D:BD:99:F6:5C:4D:37:65:3F:B9:C3:4C:B7:02:C2:46
ValidityTue, 16 Apr 2024 16:23:44 GMT - Mon, 15 Jul 2024 16:23:43 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ipfs/QmXtnFHsgR83MugCZaJjFs59DSzBChAMr571cKMPBAEhXJ?filename=stylessl.aliunicorn.css HTTP/1.1
Host: ipfs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/preload.js?t=630906a9_626294dd08

104.17.64.14

404 Not Found

0 B

URL GET HTTP/2
bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/preload.js?t=630906a9_626294dd08
IP
104.17.64.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Certificate
IssuerLet's Encrypt
Subjectcf-ipfs.com
Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14
ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Alibaba

HTTP Headers

GET /preload.js?t=630906a9_626294dd08 HTTP/1.1
Host: bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze.ipfs.cf-ipfs.com/
Cookie: __cf_bm=IaU7FFqPGvNw2yE7.PVnaTh4j1hods49oZ7XMCvDnJo-1714843514-1.0.1.1-Yew_kqpBuR1eiOISXG0pU3Qrgh9W1ViMWbp_kJje5h1EXyVPluHExr_f3YRyUtOoXFbQwCeLzRgob.uMDvbUtg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sat, 04 May 2024 17:25:15 GMT
content-type: text/plain; charset=utf-8
cf-ray: 87ea30613de9568f-OSL
cf-cache-status: EXPIRED
access-control-allow-origin: *
cache-control: no-store
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-content-type-options: nosniff
x-ipfs-path: /ipfs/bafybeifax5eqv7gdlyhyialpeq77xa6nv7v52wejm3gyquusyn534m2eze/preload.js
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (0)

HTTP Transactions (9)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash