| fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2 | 216.58.207.227 | 200 OK | 14 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2 IP216.58.207.227:443
Requested byhttps://forecastimposedrawfalldisappeardefect.cfd/404.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14504, version 1.0 Hash0b2af9e9b9f433440932bb3223b8a5dd 5d260bb6085861f69919b61c5be73e41cb8c21c7 09d39f49d4cdbed981f59d7c21ce058f68777b7b25f6d60e2f07a0ad1d8b68ac
GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCvC73w5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forecastimposedrawfalldisappeardefect.cfd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:41:19 GMT
expires: Fri, 18 Apr 2025 02:41:19 GMT
cache-control: public, max-age=31536000
age: 504463
last-modified: Wed, 13 Sep 2023 22:52:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 | 216.58.207.227 | 200 OK | 28 kB |
URL GET HTTP/2fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 IP216.58.207.227:443
Requested byhttps://forecastimposedrawfalldisappeardefect.cfd/404.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28076, version 1.0 Hash876d74bcd0a927aba5be92bf7993f1aa 1ffc2b292eb17625a33feaf5460e84d137846811 dcb085ad0fca889c4a1b898ccc7458c5d586e5740e7b7bffe065ac6a5e247ada
GET /s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forecastimposedrawfalldisappeardefect.cfd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 17:04:33 GMT
expires: Sat, 19 Apr 2025 17:04:33 GMT
cache-control: public, max-age=31536000
age: 366269
last-modified: Wed, 13 Sep 2023 22:14:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 | 216.58.207.227 | 200 OK | 28 kB |
URL GET HTTP/2fonts.gstatic.com/s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 IP216.58.207.227:443
Requested byhttps://forecastimposedrawfalldisappeardefect.cfd/404.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28076, version 1.0 Hash876d74bcd0a927aba5be92bf7993f1aa 1ffc2b292eb17625a33feaf5460e84d137846811 dcb085ad0fca889c4a1b898ccc7458c5d586e5740e7b7bffe065ac6a5e247ada
GET /s/cabin/v27/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forecastimposedrawfalldisappeardefect.cfd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 17:04:33 GMT
expires: Sat, 19 Apr 2025 17:04:33 GMT
cache-control: public, max-age=31536000
age: 366269
last-modified: Wed, 13 Sep 2023 22:14:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Cabin:400,700 | 142.250.74.106 | 200 OK | 2.4 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Cabin:400,700 IP142.250.74.106:443
Requested byhttps://forecastimposedrawfalldisappeardefect.cfd/404.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (2466), with no line terminators Hash4d3548de5714c0caf3a77b5f8d8cd5ad 7e1b7f3e8d476b85c96629953898ff07a9b5198b 3563f520a1609b5e885681351dca35a0661a0ccaf8bcbc31042dcc1846cd8065
GET /css?family=Cabin:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forecastimposedrawfalldisappeardefect.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 22:49:02 GMT
date: Tue, 23 Apr 2024 22:49:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Montserrat:900 | 142.250.74.106 | 200 OK | 1.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat:900 IP142.250.74.106:443
Requested byhttps://forecastimposedrawfalldisappeardefect.cfd/404.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (1849), with no line terminators Hash2acfd721b0c20560866fa3903ad5cb81 920ceff886a97b13de5808656834a09deacb5917 c7afb2581c1d66992f43313f62527d86fd002922b922cf5312c3cafe14c1a6c1
GET /css?family=Montserrat:900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forecastimposedrawfalldisappeardefect.cfd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 23 Apr 2024 22:49:02 GMT
date: Tue, 23 Apr 2024 22:49:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| forecastimposedrawfalldisappeardefect.cfd/favicon.ico | 188.114.97.1 | 404 Not Found | 209 B |
URL GET HTTP/3forecastimposedrawfalldisappeardefect.cfd/favicon.ico IP188.114.97.1:443
Requested byhttps://forecastimposedrawfalldisappeardefect.cfd/404.html CertificateIssuerGoogle Trust Services LLC Subjectforecastimposedrawfalldisappeardefect.cfd FingerprintED:BD:D0:91:4E:6D:8D:21:D2:0D:B6:EF:5E:7E:F2:02:5B:11:3A:86 ValiditySun, 21 Apr 2024 07:48:27 GMT - Sat, 20 Jul 2024 07:48:26 GMT
File typeHTML document, ASCII text, with no line terminators Hash8ace35f18ab1832bacfde13597767517 22e4ee51bbdba11b19a2d6879bc60126dc89eecd f87134d32dc903f27ed9c905bfd824f31192dac9e05887b2dedbb1ca416d1280
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: forecastimposedrawfalldisappeardefect.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://forecastimposedrawfalldisappeardefect.cfd/404.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 23 Apr 2024 22:49:02 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qLzVGHfdizbZnwcvVOzAnnp1yl%2BtMKZMqkz3cZwXhXYZtIEgwHwjKojow3XOWd5YX1MQ3oFnWxolU%2Fp5tJ2877zot20YmOahHQOoTeEL4g%2BkjUU59aEpNjHDBn%2F6R%2BHxlbgVYZBI6gc43S4LfMMLJR0uDNQ2T4b9LuC29A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791678d987f7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| forecastimposedrawfalldisappeardefect.cfd/404.html | 188.114.97.1 | 200 OK | 3.3 kB |
URL User Request GET HTTP/2forecastimposedrawfalldisappeardefect.cfd/404.html IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectforecastimposedrawfalldisappeardefect.cfd FingerprintED:BD:D0:91:4E:6D:8D:21:D2:0D:B6:EF:5E:7E:F2:02:5B:11:3A:86 ValiditySun, 21 Apr 2024 07:48:27 GMT - Sat, 20 Jul 2024 07:48:26 GMT
File typeHTML document, ASCII text, with very long lines (3613), with no line terminators Hashe9cfd515ff2ce3d888df9c7e0e0d24bf 236a4d64a3deb002c425d2c8257f358762b76e7b 3811a1f482bcebe6e3cc9a22f908fbcb5051702f867b992715f77e99d078d331
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /404.html HTTP/1.1
Host: forecastimposedrawfalldisappeardefect.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 23 Apr 2024 22:49:01 GMT
content-type: text/html; charset=UTF-8
last-modified: Thu, 16 Mar 2023 06:31:31 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ad3F1bnabxPSJJZpDLrUt0ML5poJQAPt4GoAcHoQM3wMnKmytCKvnOp%2FZgQwCSjNg44TQQaQiZ%2FC4qfcWMCWdWUrbhTHad0KTTKExJS2rryejkh9GJFp5EN13%2FBQZfNp%2FUFTZ9BeiOxThupFJebYt7agUMytxYTdYDgpzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879167899b6156ae-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|