| www.icewireless.ca/localization/switch-language?_locale=en&redirect_url=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20= | 3.234.70.165 | 302 Found | 245 B |
URL User Request GET HTTP/2www.icewireless.ca/localization/switch-language?_locale=en&redirect_url=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20= IP3.234.70.165:443
CertificateIssuerAmazon Subject*.icewireless.com Fingerprint0C:6C:FF:49:A1:D7:92:3F:7E:B7:56:C7:09:8F:CF:81:9C:5A:5F:41 ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 23 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (327) Hashebacf40591e91cf09523de8eda802cc8 9854e5e3575b3e098651ee9f884c8ba5b47ca476 d8eec16210ead53068dde671a32a26d57ca1736c48fa0ce9edf44955bc94d314
GET /localization/switch-language?_locale=en&redirect_url=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20= HTTP/1.1
Host: www.icewireless.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 23:42:16 GMT
content-type: text/html; charset=UTF-8
content-length: 245
server: Apache
cache-control: max-age=0, must-revalidate, private
location: //wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=
set-cookie: PHPSESSID=hbuq469m7k80lopse7mqnajpf8; path=/; HttpOnly
device_view=full; expires=Sun, 28-Apr-2024 23:42:16 GMT; Max-Age=2678400; path=/; httponly
_locale=en; path=/; httponly
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20= | 209.133.196.210 | 302 Found | 73 B |
URL User Request GET HTTP/1.1wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20= IP209.133.196.210:443
CertificateIssuerLet's Encrypt Subject*.wamasolution.com Fingerprint30:1F:F2:75:C9:3C:09:FC:2A:84:4F:02:B6:8B:72:1A:B8:4D:8D:E3 ValiditySun, 17 Mar 2024 06:47:47 GMT - Sat, 15 Jun 2024 06:47:46 GMT
File typeHTML document, ASCII text, with no line terminators Hashf53f512956dcdac91a53d12c8df1bc9c f7183c241f0747834e5a0f01de35df7771b610a4 6adffb54e2eca001c42c4fbd3fcf2bfac1752a186f983d047ceb45de6d7b416c
GET /dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20=//wamasolution.com/dev/adobe/2024/shared/sender/cmVpZEA0NGhvbGRjby5jb20= HTTP/1.1
Host: wamasolution.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 28 Mar 2024 23:42:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=85c7a412186c90abf15c17ae98806212; path=/
Location: https://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20=
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.24.14 | 200 OK | 28 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:42:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1194844
expires: Tue, 18 Mar 2025 23:42:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Ld0eBIZnbY5AowyhJ8E96DD9fJJA7pDoSkF7xmy4ar6LU%2BjcgP95YfyPyWh%2B8o%2FVCRGBJrMTmH7Hy1WLtfWHUNgCg2cevplCmhf91R7nQu7KN99nSVoww8iHLlHZaKhaDPsKFCG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bb79cebc85b527-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bc1q3jc6cu9q5t33q8gpk7h47pw.com/api/v3/auth | 193.222.96.117 | 200 OK | 2 B |
URL POST HTTP/1.1bc1q3jc6cu9q5t33q8gpk7h47pw.com/api/v3/auth IP193.222.96.117:443 ASN#203168 Constant MOULIN
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerLet's Encrypt Subjectbc1q3jc6cu9q5t33q8gpk7h47pw.com Fingerprint0C:0B:80:87:BF:9A:E1:DB:F7:66:D6:00:8F:11:CE:00:4B:CB:24:84 ValiditySat, 24 Feb 2024 20:47:08 GMT - Fri, 24 May 2024 20:47:07 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /api/v3/auth HTTP/1.1
Host: bc1q3jc6cu9q5t33q8gpk7h47pw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Thu, 28 Mar 2024 23:42:19 GMT
server: uvicorn
vary: Origin
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://cloudflare-ipfs.com
access-control-allow-headers: content-type
content-length: 2
content-type: text/plain; charset=utf-8
|
|
| bc1q3jc6cu9q5t33q8gpk7h47pw.com/api/v3/auth | 193.222.96.117 | 200 OK | 16 kB |
URL POST HTTP/1.1bc1q3jc6cu9q5t33q8gpk7h47pw.com/api/v3/auth IP193.222.96.117:443 ASN#203168 Constant MOULIN
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerLet's Encrypt Subjectbc1q3jc6cu9q5t33q8gpk7h47pw.com Fingerprint0C:0B:80:87:BF:9A:E1:DB:F7:66:D6:00:8F:11:CE:00:4B:CB:24:84 ValiditySat, 24 Feb 2024 20:47:08 GMT - Fri, 24 May 2024 20:47:07 GMT
Hashf55e0816215360a63c87ff81be00a076 f9422800479f937db5d268e2bd5f308a1ad79657 4273b6b3910003664afc93017fab513b155e242e31bdd424a0ec318f3132ec81
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /api/v3/auth HTTP/1.1
Host: bc1q3jc6cu9q5t33q8gpk7h47pw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 169
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Thu, 28 Mar 2024 23:42:19 GMT
server: uvicorn
content-length: 15872
content-type: application/json
access-control-allow-origin: *
access-control-allow-credentials: true
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.24.14 | 200 OK | 28 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.24.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 23:42:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1194850
expires: Tue, 18 Mar 2025 23:42:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0%2FKF11vdp2gGw6x0yFWLRBKlgCr6SE22dfC4ypewgYeCVLUfpG15ba89kpL%2BdRSG1e6PvPVhwjewob5W2Usls8OhKpoJ2fLwOE%2BfF69Hu1%2FoWUe0jNy6f0KOmeQq0c0Ri1TMz779"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bb79f22fd956bb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg | 152.199.23.37 | 200 OK | 1.4 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg IP152.199.23.37:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashee5c8d9fb6248c938fd0dc19370e90bd d01a22720918b781338b5bbf9202b241a5f99ee4 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a
GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 149716
cache-control: public, max-age=31536000
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
content-type: image/svg+xml
date: Thu, 28 Mar 2024 23:42:23 GMT
etag: 0x8D79A1B9F5E121A
last-modified: Thu, 16 Jan 2020 00:32:52 GMT
server: ECAcc (ska/F76D)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: a1e45449-701e-0068-210c-804015000000
x-ms-version: 2009-09-19
content-length: 1435
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css | 13.107.213.53 | 200 OK | 20 kB |
URL GET HTTP/2aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File typeASCII text, with very long lines (61177) Hashce26137fc0d9b7d7a0d52ebe3a186512 b9d7fb3fe7d08f46c2d1153bb47b13809375c663 1304c5090f063c677a5b3720fe7b97ef4d9ea102e2bdd837ce399df6057fe385
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:42:23 GMT
content-type: text/css
content-length: 19953
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Mon, 18 Apr 2022 21:18:26 GMT
etag: 0x8DA2180FA29F5AF
x-ms-request-id: edd603ee-e01e-0044-1a3c-819a87000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240328T234223Z-uyvbdkvkhd03tfx2r4yyr4dbcg00000009pg0000000028n3
x-fd-int-roxy-purgeid: 0
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css | 152.199.23.37 | 200 OK | 20 kB |
URL GET HTTP/2aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css IP152.199.23.37:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (61177) Hashf0e5964f8bbedf73d2d3001623bb663b aadf3504d5e5a93e678487eeb4a63398f2699341 9537f00ca371747a97a2acca388f7b2379a7fa7c59bde18c3d2621c0de8de492
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 296081
cache-control: public, max-age=31536000
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
content-type: text/css
date: Thu, 28 Mar 2024 23:42:23 GMT
etag: 0x8DA7650B375AC9B
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
server: ECAcc (ska/F7A0)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 8887ee14-601e-0019-5fb8-7e9917000000
x-ms-version: 2009-09-19
content-length: 19970
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg | 13.107.213.53 | 200 OK | 276 B |
URL GET HTTP/2aadcdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha9cc2824ef3517b6c4160dcf8ff7d410 8db9aebad84ca6e4225bfdd2458ff3821cc4f064 34f9db946e89f031a80dfca7b16b2b686469c9886441261ae70a44da1dfa2d58
GET /shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:42:23 GMT
content-type: image/svg+xml
content-length: 276
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Fri, 17 Jan 2020 19:28:34 GMT
etag: 0x8D79B8371B97A82
x-ms-request-id: 0835b12c-b01e-0059-4441-81f5be000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240328T234223Z-uwqtx2u22h60z2vwkpafvtfhks00000000hg000000000sqn
x-fd-int-roxy-purgeid: 4554691
x-cache: TCP_HIT
x-cache-info: L1_T2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauthimages.net/dbd5a2dd-xv-0u2h-gqa-pczmeqk3s-uobs1mg5tbgqmcvnmaym/logintenantbranding/1033/illustration?ts=638095656003590763 | 13.107.213.53 | 200 OK | 21 kB |
URL GET HTTP/2aadcdn.msftauthimages.net/dbd5a2dd-xv-0u2h-gqa-pczmeqk3s-uobs1mg5tbgqmcvnmaym/logintenantbranding/1033/illustration?ts=638095656003590763 IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerMicrosoft Corporation Subjectaadcdn.msftauthimages.net FingerprintE6:88:22:EC:52:D3:88:E3:A1:7B:01:0A:70:8F:08:41:F8:AD:6D:4B ValiditySun, 18 Feb 2024 02:47:29 GMT - Wed, 12 Feb 2025 02:47:29 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 524x149, components 3 Hash6658456b14fccb401e8ce4f0defab632 04e9864306174ece1a68f5f09aedc930144b9705 df9d4136d07b12374cc4c0226cb7b9d895d42a403f69ee27441c51f89aa9aabb
GET /dbd5a2dd-xv-0u2h-gqa-pczmeqk3s-uobs1mg5tbgqmcvnmaym/logintenantbranding/1033/illustration?ts=638095656003590763 HTTP/1.1
Host: aadcdn.msftauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:42:23 GMT
content-type: image/*
content-length: 21057
cache-control: public, max-age=86400
last-modified: Tue, 17 Jan 2023 15:20:00 GMT
etag: 0x8DAF89E4CD82632
x-ms-request-id: 009f99c5-701e-002f-0a69-810a98000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240328T234223Z-uyvbdkvkhd03tfx2r4yyr4dbcg00000009ng000000001q18
x-fd-int-roxy-purgeid: 50755578
x-cache: TCP_HIT
x-cache-info: L1_T2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico | 152.199.23.37 | 200 OK | 17 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico IP152.199.23.37:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#cmVpZEA0NGhvbGRjby5jb20= CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 336121
cache-control: public, max-age=31536000
content-md5: EuPayFgGHQiAI7K9SOL6lg==
content-type: image/x-icon
date: Thu, 28 Mar 2024 23:42:23 GMT
etag: 0x8D8731240E548EB
last-modified: Sun, 18 Oct 2020 03:02:30 GMT
server: ECAcc (ska/F738)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 582df77a-301e-0028-1b5a-7e9304000000
x-ms-version: 2009-09-19
content-length: 17174
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe | 104.17.96.13 | 200 OK | 19 kB |
URL User Request GET HTTP/2cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe IP104.17.96.13:443
CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com Fingerprint18:E5:C9:71:96:8A:A9:48:E2:79:2A:29:91:D2:4E:46:90:B7:5D:9F ValiditySun, 25 Feb 2024 02:55:05 GMT - Sat, 25 May 2024 02:55:04 GMT
File typeHTML document, ASCII text, with very long lines (3936), with CRLF line terminators Hash9dbe30810d104ff0471dab2fc01f2044 a93dfbc1fd19c2d7fb6049c6215d9fde40a782b0 7b794fb6213f46ac6ba31d3fc78aa19dcd93c9e6d4c41b62a5e5d33a6a989172
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 23:42:17 GMT
content-type: text/html
cf-ray: 86bb79cd0af756a9-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 17074
cache-control: public, max-age=29030400, immutable
etag: W/"QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe
x-ipfs-roots: QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe
set-cookie: __cf_bm=dy1vy5uBPrv2jOe380JFR1v_0FH1lRDPDbHBSzw_FrI-1711669337-1.0.1.1-Q5jiM1NZQ6MSYmmqNhApEiHI.UmuVms0qoVinVmHKm6rroabLJ3QLJpr0B6HBcye4mDJJjllfsF0iGwwv7qh5A; path=/; expires=Fri, 29-Mar-24 00:12:17 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|