| canal33.com.br/redirecting..../rsrtt/modified35/bWFsaHV0aWxhaEBhbGZyYW5zaS5jb20uc2E= | 158.69.4.253 | | 0 B |
URL canal33.com.br/redirecting..../rsrtt/modified35/bWFsaHV0aWxhaEBhbGZyYW5zaS5jb20uc2E= IP158.69.4.253:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirecting..../rsrtt/modified35/bWFsaHV0aWxhaEBhbGZyYW5zaS5jb20uc2E= HTTP/1.1
Host: canal33.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
refresh: 0;url=https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa
content-type: text/html; charset=UTF-8
content-length: 0
date: Wed, 08 May 2024 10:01:48 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu | 104.17.96.13 | | 71 kB |
URL cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu IP104.17.96.13:0
File typeHTML document, Unicode text, UTF-8 text Hash3299063762110e9a5175244eda66e3df 0927b49bbc6cc897a5b79f326f2b374e029c9c33 8781f3a3795aaafb90e6588439806e1c9d1312c281a714307ad1d337e440bbaf
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 10:01:49 GMT
content-type: text/html
cf-ray: 88089c52ea1356b1-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu
x-ipfs-roots: bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu
set-cookie: __cf_bm=3Y7qJdaNPvl7C3NOf_uGBAubiZxDR3cFBDxTunReGXQ-1715162509-1.0.1.1-u9B.uji0.qjm34hg8jT56IqOGLrJHdSxTKMThcFYEQuymrDeBtQs1izJbW9U5Q_r.6cC6SDmcVG.ZSfuZG7g3A; path=/; expires=Wed, 08-May-24 10:31:49 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.25.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.25.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 10:01:50 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 22844
expires: Mon, 28 Apr 2025 10:01:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YgFIVDvY9LgmSuzNIEw68%2BtW%2BsGu8D8k5qbZKYWESDQRX0x6DVvLKWu9cEYoOp%2BbHg6D8yhrH2OM4AexuR%2B4an3H%2F19iBPhdkRCcIaQ28dpCt9%2BzmAMgzIGILBKEsY4g4iW68G30"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88089c579bf856bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.w3schools.com/w3css/4/w3.css | 192.229.133.221 | 200 OK | 5.3 kB |
URL GET HTTP/2www.w3schools.com/w3css/4/w3.css IP192.229.133.221:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerDigiCert Inc Subject*.w3schools.com Fingerprint20:AF:FF:E1:FC:DB:58:C8:05:B7:D2:97:1F:8F:A1:C6:AD:ED:59:3A ValidityWed, 03 Apr 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File typeUnicode text, UTF-8 (with BOM) text Hashba0537e9574725096af97c27d7e54f76 bd46b47d74d344f435b5805114559d45979762d5 4a7611bc677873a0f87fe21727bc3a2a43f57a5ded3b10ce33a0f371a2e6030f
GET /w3css/4/w3.css HTTP/1.1
Host: www.w3schools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 9852
cache-control: public,max-age=14400,public
content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com;
content-type: text/css
date: Wed, 08 May 2024 10:01:50 GMT
etag: "0d3c54b4ea0da1:0+gzip"
last-modified: Tue, 07 May 2024 07:15:10 GMT
server: ECS (ska/F716)
vary: Accept-Encoding
x-cache: HIT
x-content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com;
x-powered-by: ASP.NET
content-length: 5256
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Fjalla+One&family=Josefin+Slab:ital,wght@1,100&family=Playfair+Display:ital,wght@0,400;1,900&family=Sofia+Sans+Extra+Condensed:ital,wght@0,1;0,100;0,200;0,300;1,100;1,200&display=swap | 142.250.74.106 | 200 OK | 1.6 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Fjalla+One&family=Josefin+Slab:ital,wght@1,100&family=Playfair+Display:ital,wght@0,400;1,900&family=Sofia+Sans+Extra+Condensed:ital,wght@0,1;0,100;0,200;0,300;1,100;1,200&display=swap IP142.250.74.106:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashb786f47d67bec5f7878e16746465c963 23c8b8615f0b022a4264a601640d4eeca35b176b b2fc87d7cd84c33225e2657d384909e5c8928f743a1806b1babcaa84f23295f9
GET /css2?family=Fjalla+One&family=Josefin+Slab:ital,wght@1,100&family=Playfair+Display:ital,wght@0,400;1,900&family=Sofia+Sans+Extra+Condensed:ital,wght@0,1;0,100;0,200;0,300;1,100;1,200&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 10:01:50 GMT
date: Wed, 08 May 2024 10:01:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Ubuntu+Mono | 142.250.74.106 | 200 OK | 150 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Ubuntu+Mono IP142.250.74.106:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Size150 kB (150524 bytes) Hash3d91c3a3caa2dfadbcf018607e48d24b b3405a332c822410c11f6528dd1c355dbe7fbae6 7da958e56021aaafcd9436b6d3f319cf465c00ba67fe78d128030a9729c04336
GET /css?family=Ubuntu+Mono HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 10:01:50 GMT
date: Wed, 08 May 2024 10:01:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/images/favicon.ico | 104.17.96.13 | 404 Not Found | 14 B |
URL GET HTTP/3cloudflare-ipfs.com/images/favicon.ico IP104.17.96.13:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
File typeASCII text, with no line terminators Hashd0fbda9855d118740f1105334305c126 bc3023b36063a7681db24681472b54fa11f0d4ec a469ab4ca4e55bf547566e9ebfa1b809c933207e9d558156bc0c4252b17533fe
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /images/favicon.ico HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu
Cookie: __cf_bm=3Y7qJdaNPvl7C3NOf_uGBAubiZxDR3cFBDxTunReGXQ-1715162509-1.0.1.1-u9B.uji0.qjm34hg8jT56IqOGLrJHdSxTKMThcFYEQuymrDeBtQs1izJbW9U5Q_r.6cC6SDmcVG.ZSfuZG7g3A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 08 May 2024 10:01:50 GMT
content-type: text/plain;charset=UTF-8
content-length: 14
vary: Accept-Encoding
server: cloudflare
cf-ray: 88089c5af8ac56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-brands-400.woff2 | 104.17.25.14 | 200 OK | 110 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-brands-400.woff2 IP104.17.25.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 109808, version 772.1280 Size110 kB (109808 bytes) Hash005c9aa92b564b73b7582cc4f1fa49cb 373361ed756b1fe68ce2f5968d467826b6973bb5 faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 10:01:51 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 109808
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-1acf0"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 49368
expires: Mon, 28 Apr 2025 10:01:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1mtvMmQsLHkHXxFctyNfnFEQoG%2FohhJ7IfKpmhgbvoagyeVJDBsS2q9kSIWuQ13FMpqnoY%2BY44FHCwS2jrMGfJvy4PFQTIKyEGfZ5pPn%2Bo93Jox5GlS6eNovySzw7XBWwzEqcoAv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88089c5f7931b524-OSL
alt-svc: h3=":443"; ma=86400
|
|
| t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=32 | 142.250.74.164 | | 460 B |
URL t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=32 IP142.250.74.164:0
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash4987dfcd01c25750765d6d369b66ce6b 27d1a47a546db4195ef2f8bee1bbc6d76946fe5e 23c70344561c8547fdd1d58d99de8151833ee5fcd39f432e950962b68c465466
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.alfransi.com.sa/images/favicon.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 460
date: Wed, 08 May 2024 10:01:51 GMT
expires: Wed, 15 May 2024 10:01:51 GMT
cache-control: public, max-age=604800
last-modified: Sat, 04 Dec 2021 14:16:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| egensession.com/n.php?getemailinfo=malhutilah@alfransi.com.sa&linkbox=brittneypa&url=https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu | 104.21.49.206 | | 3.8 kB |
URL egensession.com/n.php?getemailinfo=malhutilah@alfransi.com.sa&linkbox=brittneypa&url=https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu IP104.21.49.206:0
Hash26fcea102a16d06ef0da935c4d9b5974 4f56173d6bddacc019c2f65d28d38d396b87444b f7f03c25d2e9491e0e95fc19f0b244198dd311426e69a4978b2d7a98b7b5d94b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /n.php?getemailinfo=malhutilah@alfransi.com.sa&linkbox=brittneypa&url=https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu HTTP/1.1
Host: egensession.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 10:01:51 GMT
content-type: application/json; charset=utf-8
x-powered-by: PHP/8.0.30
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, X-Request-With
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1s6MJA2xhe1OtE5FEoCrWMP613Qo7iMv2OltBwvOxnZUw4FGxjUo8rktiumqQmeFpEEv5Sf0pGpksfSEQRfVh4F6XtdpBJV5nGcdghXau9LqJdCOVy7aCH20iOY2Tp9MGUU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88089c5a2c735693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 | 142.250.74.164 | | 3.0 kB |
URL t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 IP142.250.74.164:0
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hash98e78e0a9700f5f4aadeaa01f7200773 917ea93c27fd4207b672047b8e462a528ca93c36 251d85d5b56b5a0e13bbe8b4b5669b772edd69a8d3fd65479d93bb2232bf449c
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.alfransi.com.sa/images/favicon.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 3024
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 10:01:51 GMT
expires: Wed, 15 May 2024 10:01:51 GMT
cache-control: public, max-age=604800
last-modified: Sat, 04 Dec 2021 14:16:03 GMT
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 | 142.250.74.163 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 IP142.250.74.163:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21904, version 1.0 Hash27b2f94167bce460f3e669c52be7301e de5636d6096f5a29f0764aa563c54f157b1f9de9 51c8eae79bf05bbcc1811da8cb56ff69d87d40bafdce8282fea8a43259b4afcb
GET /s/playfairdisplay/v37/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 04:47:11 GMT
expires: Sat, 03 May 2025 04:47:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 31 Jan 2024 23:15:04 GMT
content-type: font/woff2
age: 450882
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Ubuntu | 142.250.74.106 | 200 OK | 6.6 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Ubuntu IP142.250.74.106:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash4f2df512ff7e0b8163909d08669f708b 3491b55e7598ba71ac28a88493dd3be79eff7831 a92975167cf4944b88fb679b0b6a57d02eb51fff15180a8a6b067a9078ba721b
GET /css?family=Ubuntu HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 10:01:50 GMT
date: Wed, 08 May 2024 10:01:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=kmKoX61G0OdGVRjuKSsfuuC7A_XCazBEoHEs9ZOiXw_xO_Ht3klQAQ_Mksuwnje4chR9vt21XgGVBYRj_9KtaLyi_4jM0slZg7GhEWVHQqTehdJlrGhPak-Z1O6sDQk-
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Wed, 08 May 2024 10:01:07 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 60
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 | 142.250.74.164 | 200 OK | 3.0 kB |
URL GET HTTP/2t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 IP142.250.74.164:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hash98e78e0a9700f5f4aadeaa01f7200773 917ea93c27fd4207b672047b8e462a528ca93c36 251d85d5b56b5a0e13bbe8b4b5669b772edd69a8d3fd65479d93bb2232bf449c
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.alfransi.com.sa/images/favicon.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 3024
date: Wed, 08 May 2024 10:01:51 GMT
expires: Wed, 15 May 2024 10:01:51 GMT
cache-control: public, max-age=604800
last-modified: Sat, 04 Dec 2021 14:16:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=32 | 142.250.74.164 | 200 OK | 460 B |
URL GET HTTP/2t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=32 IP142.250.74.164:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash4987dfcd01c25750765d6d369b66ce6b 27d1a47a546db4195ef2f8bee1bbc6d76946fe5e 23c70344561c8547fdd1d58d99de8151833ee5fcd39f432e950962b68c465466
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.alfransi.com.sa/images/favicon.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 460
date: Wed, 08 May 2024 10:01:51 GMT
expires: Wed, 15 May 2024 10:01:51 GMT
cache-control: public, max-age=604800
last-modified: Sat, 04 Dec 2021 14:16:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 | 142.250.74.164 | 200 OK | 3.0 kB |
URL GET HTTP/2t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 IP142.250.74.164:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hash98e78e0a9700f5f4aadeaa01f7200773 917ea93c27fd4207b672047b8e462a528ca93c36 251d85d5b56b5a0e13bbe8b4b5669b772edd69a8d3fd65479d93bb2232bf449c
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://alfransi.com.sa&size=64 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://www.alfransi.com.sa/images/favicon.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 3024
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 08 May 2024 10:01:51 GMT
expires: Wed, 15 May 2024 10:01:51 GMT
cache-control: public, max-age=604800
last-modified: Sat, 04 Dec 2021 14:16:03 GMT
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu | 104.17.96.13 | 200 OK | 304 kB |
URL User Request GET HTTP/2cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu IP104.17.96.13:443
CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
Size304 kB (303482 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 10:01:49 GMT
content-type: text/html
cf-ray: 88089c52ea1356b1-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu
x-ipfs-roots: bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu
set-cookie: __cf_bm=3Y7qJdaNPvl7C3NOf_uGBAubiZxDR3cFBDxTunReGXQ-1715162509-1.0.1.1-u9B.uji0.qjm34hg8jT56IqOGLrJHdSxTKMThcFYEQuymrDeBtQs1izJbW9U5Q_r.6cC6SDmcVG.ZSfuZG7g3A; path=/; expires=Wed, 08-May-24 10:31:49 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| egensession.com/n.php?getemailinfo=malhutilah@alfransi.com.sa&linkbox=brittneypa&url=https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu | 104.21.49.206 | 200 OK | 1.4 kB |
URL GET HTTP/2egensession.com/n.php?getemailinfo=malhutilah@alfransi.com.sa&linkbox=brittneypa&url=https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu IP104.21.49.206:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerGoogle Trust Services LLC Subjectegensession.com FingerprintDA:92:ED:40:FF:16:EA:C4:47:1F:A5:C4:AA:CB:3D:C8:B3:70:10:A0 ValidityTue, 19 Mar 2024 07:18:47 GMT - Mon, 17 Jun 2024 07:18:46 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1614), with no line terminators Hash6da0a5027ec6af850a6ef51634afe75b 5d60c82300a41f495cd7dd89aab86912fa56de04 e89ec72fa7b6146a8db2bfc5951af59360dc087f5e43774590e8fd0997a145ab
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /n.php?getemailinfo=malhutilah@alfransi.com.sa&linkbox=brittneypa&url=https://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu HTTP/1.1
Host: egensession.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 10:01:51 GMT
content-type: application/json; charset=utf-8
x-powered-by: PHP/8.0.30
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, X-Request-With
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1s6MJA2xhe1OtE5FEoCrWMP613Qo7iMv2OltBwvOxnZUw4FGxjUo8rktiumqQmeFpEEv5Sf0pGpksfSEQRfVh4F6XtdpBJV5nGcdghXau9LqJdCOVy7aCH20iOY2Tp9MGUU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88089c5a2c735693-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafybeih5fwvam6rdseuyux4dvoc6bsazh2fvea7sbevhxjm7jepgl322qu#malhutilah@alfransi.com.sa CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 10:01:50 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 660061
expires: Mon, 28 Apr 2025 10:01:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pFaJBjCRpWbkZtNihE4k7hi8HlnuClLdLrEUkJShAMJQ29od%2F3%2Fqb6NndIB2B6QvwxwZPvNMUPKnT8zx%2BFwUrb9L%2FaoA7oZyRwcfdN3NC%2BYRArEpxUTuB7TjL6VrRX9h%2FRDp3wOB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88089c59de1e56bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|