| www.icewireless.ca/localization/switch-language?_locale=en&redirect_url=//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ== | 3.234.70.165 | 302 Found | 254 B |
URL User Request GET HTTP/2www.icewireless.ca/localization/switch-language?_locale=en&redirect_url=//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ== IP3.234.70.165:443
CertificateIssuerAmazon Subject*.icewireless.com Fingerprint0C:6C:FF:49:A1:D7:92:3F:7E:B7:56:C7:09:8F:CF:81:9C:5A:5F:41 ValiditySun, 25 Jun 2023 00:00:00 GMT - Tue, 23 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (615) Hash86c86e81af2d1c71ef2a639042ccca31 8058241d6d8999d29ad8b9d3c2a66f2dd7593054 68a5ae71b27b45f51415904fb64f2decf4494b8bf51955b27599a97eaf101eab
GET /localization/switch-language?_locale=en&redirect_url=//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ== HTTP/1.1
Host: www.icewireless.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 18:59:01 GMT
content-type: text/html; charset=UTF-8
content-length: 254
server: Apache
cache-control: max-age=0, must-revalidate, private
location: //wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==
set-cookie: PHPSESSID=50lmn1r2c7vhf4bufcantcuek7; path=/; HttpOnly
device_view=full; expires=Sun, 28-Apr-2024 18:59:01 GMT; Max-Age=2678400; path=/; httponly
_locale=en; path=/; httponly
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ== | 209.133.196.210 | 302 Found | 73 B |
URL User Request GET HTTP/1.1wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ== IP209.133.196.210:443
CertificateIssuerLet's Encrypt Subject*.wamasolution.com Fingerprint30:1F:F2:75:C9:3C:09:FC:2A:84:4F:02:B6:8B:72:1A:B8:4D:8D:E3 ValiditySun, 17 Mar 2024 06:47:47 GMT - Sat, 15 Jun 2024 06:47:46 GMT
File typeHTML document, ASCII text, with no line terminators Hashf53f512956dcdac91a53d12c8df1bc9c f7183c241f0747834e5a0f01de35df7771b610a4 6adffb54e2eca001c42c4fbd3fcf2bfac1752a186f983d047ceb45de6d7b416c
GET /dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ==//wamasolution.com/dev/adobe/2024/shared/sender/bGxhbUB2YWxvcmVwLmNvbQ== HTTP/1.1
Host: wamasolution.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 28 Mar 2024 18:59:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=949effd72e9f619471b3e830338b05ae; path=/
Location: https://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ==
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.25.14 | 200 OK | 28 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.25.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 18:59:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1177849
expires: Tue, 18 Mar 2025 18:59:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sY7bHqOcs5DSoi2GpmNxUF7boFySH5MYb50WOGNCZso1xrba9DwnKDxnatD2VpTHYK1%2F36n%2B9KkFTJVyB2c0mAx0NqOCeKgbO03cxZs44klyLiHqTx1H1p072FMS6ve2SWseSLha"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86b9dae29b9856bb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bc1qkwkwjxv7m3zhsnrtxmaqlxj.com/api/v3/auth | 185.216.70.5 | 200 OK | 2 B |
URL POST HTTP/1.1bc1qkwkwjxv7m3zhsnrtxmaqlxj.com/api/v3/auth IP185.216.70.5:443 ASN#216289 Sircrosar Limited
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerLet's Encrypt Subjectbc1qkwkwjxv7m3zhsnrtxmaqlxj.com Fingerprint3E:0F:36:57:65:B4:22:24:78:87:DE:F5:AC:B3:3C:E9:62:74:59:9D ValiditySat, 24 Feb 2024 20:54:03 GMT - Fri, 24 May 2024 20:54:02 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /api/v3/auth HTTP/1.1
Host: bc1qkwkwjxv7m3zhsnrtxmaqlxj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Thu, 28 Mar 2024 18:59:04 GMT
server: uvicorn
vary: Origin
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://cloudflare-ipfs.com
access-control-allow-headers: content-type
content-length: 2
content-type: text/plain; charset=utf-8
|
|
| bc1qkwkwjxv7m3zhsnrtxmaqlxj.com/api/v3/auth | 185.216.70.5 | 200 OK | 16 kB |
URL POST HTTP/1.1bc1qkwkwjxv7m3zhsnrtxmaqlxj.com/api/v3/auth IP185.216.70.5:443 ASN#216289 Sircrosar Limited
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerLet's Encrypt Subjectbc1qkwkwjxv7m3zhsnrtxmaqlxj.com Fingerprint3E:0F:36:57:65:B4:22:24:78:87:DE:F5:AC:B3:3C:E9:62:74:59:9D ValiditySat, 24 Feb 2024 20:54:03 GMT - Fri, 24 May 2024 20:54:02 GMT
Hashfd82de618c2ea894d5fb38b46fd97dd1 0e30d01223bdd508395ffbbe0eb829412f006efe 6fc440917c44ec6389509153abdcd9af5ef4ce852b59cfa98eb5269775fd177a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook | Quad9 DNS | malicious | Sinkholed |
POST /api/v3/auth HTTP/1.1
Host: bc1qkwkwjxv7m3zhsnrtxmaqlxj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 168
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
date: Thu, 28 Mar 2024 18:59:04 GMT
server: uvicorn
content-length: 15671
content-type: application/json
access-control-allow-origin: *
access-control-allow-credentials: true
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js | 104.17.25.14 | 200 OK | 28 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP104.17.25.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 18:59:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1177854
expires: Tue, 18 Mar 2025 18:59:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p%2BUfnNN%2BW18Eqp2O6esqjKxseyr1v9GHycA0sK9yssPO6TvQ9rHC7ebJY2%2FXsGeMhE2D6ZujigmKma5EblPPvhDUJiwj6jg%2B4mhSIcdYBL15z2SGh895F%2FXydXWcVsM4LskQ4vr8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86b9db0558f4b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css | 152.199.23.37 | 200 OK | 20 kB |
URL GET HTTP/2aadcdn.msftauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css IP152.199.23.37:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeASCII text, with very long lines (61177) Hashf0e5964f8bbedf73d2d3001623bb663b aadf3504d5e5a93e678487eeb4a63398f2699341 9537f00ca371747a97a2acca388f7b2379a7fa7c59bde18c3d2621c0de8de492
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 279085
cache-control: public, max-age=31536000
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
content-type: text/css
date: Thu, 28 Mar 2024 18:59:07 GMT
etag: 0x8DA7650B375AC9B
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
server: ECAcc (ska/F7A0)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 8887ee14-601e-0019-5fb8-7e9917000000
x-ms-version: 2009-09-19
content-length: 19970
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg | 13.107.213.53 | 200 OK | 276 B |
URL GET HTTP/2aadcdn.msauth.net/shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha9cc2824ef3517b6c4160dcf8ff7d410 8db9aebad84ca6e4225bfdd2458ff3821cc4f064 34f9db946e89f031a80dfca7b16b2b686469c9886441261ae70a44da1dfa2d58
GET /shared/1.0/content/images/arrow_left_a9cc2824ef3517b6c4160dcf8ff7d410.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 18:59:07 GMT
content-type: image/svg+xml
content-length: 276
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Fri, 17 Jan 2020 19:28:34 GMT
etag: 0x8D79B8371B97A82
x-ms-request-id: c6ffcdb0-401e-0062-3992-7cf1b8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240328T185907Z-srwvnc5u0h5s146ty3uzpy766000000006d0000000006d0h
x-fd-int-roxy-purgeid: 4554691
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css | 13.107.213.53 | 200 OK | 20 kB |
URL GET HTTP/2aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css IP13.107.213.53:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerDigiCert Inc Subjectaadcdn.msauth.net FingerprintEB:7C:D1:4E:EF:B5:D4:72:25:0B:1A:AF:5F:10:3D:EA:13:80:5A:47 ValidityMon, 29 Jan 2024 00:00:00 GMT - Wed, 29 Jan 2025 23:59:59 GMT
File typeASCII text, with very long lines (61177) Hashce26137fc0d9b7d7a0d52ebe3a186512 b9d7fb3fe7d08f46c2d1153bb47b13809375c663 1304c5090f063c677a5b3720fe7b97ef4d9ea102e2bdd837ce399df6057fe385
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_ziytf8dzt9eg1s6-ohhleg2.css HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 18:59:07 GMT
content-type: text/css
content-length: 19953
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Mon, 18 Apr 2022 21:18:26 GMT
etag: 0x8DA2180FA29F5AF
x-ms-request-id: edd603ee-e01e-0044-1a3c-819a87000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 20240328T185907Z-hrwnrc8cy97x542h9c23tenbh000000009d00000000034d4
x-fd-int-roxy-purgeid: 0
x-cache-info: L1_T2
x-cache: TCP_HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico | 152.199.23.37 | 200 OK | 17 kB |
URL GET HTTP/2aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico IP152.199.23.37:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 319126
cache-control: public, max-age=31536000
content-md5: EuPayFgGHQiAI7K9SOL6lg==
content-type: image/x-icon
date: Thu, 28 Mar 2024 18:59:08 GMT
etag: 0x8D8731240E548EB
last-modified: Sun, 18 Oct 2020 03:02:30 GMT
server: ECAcc (ska/F738)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 582df77a-301e-0028-1b5a-7e9304000000
x-ms-version: 2009-09-19
content-length: 17174
X-Firefox-Spdy: h2
|
|
| aadcdn.msauthimages.net/dbd5a2dd-vqlvc6g5-tuvustcrwtowwwc-x86xvcaxbkejwjiufi/logintenantbranding/0/bannerlogo?ts=636924210006469978 | 152.199.21.175 | 200 OK | 4.8 kB |
URL GET HTTP/2aadcdn.msauthimages.net/dbd5a2dd-vqlvc6g5-tuvustcrwtowwwc-x86xvcaxbkejwjiufi/logintenantbranding/0/bannerlogo?ts=636924210006469978 IP152.199.21.175:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerMicrosoft Corporation Subjectaadcdn.msauthimages.net Fingerprint3B:14:C7:84:64:65:A8:46:3C:B4:7E:B7:F2:A1:AF:6B:8F:EF:17:E5 ValidityThu, 11 Jan 2024 12:14:02 GMT - Sun, 05 Jan 2025 12:14:02 GMT
File typePNG image data, 280 x 60, 8-bit/color RGBA, non-interlaced Hasha4e3a74d8c8d146a7cb0099b12ca1b81 12ad58da80c3b6bf2dcb16bf5bc7e4f13caf8b4a 3b0d00674d61f4a99df1e2f8876e7559f7aa09aa277c3e52fe587e754ce3013c
GET /dbd5a2dd-vqlvc6g5-tuvustcrwtowwwc-x86xvcaxbkejwjiufi/logintenantbranding/0/bannerlogo?ts=636924210006469978 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=86400
content-md5: pOOnTYyNFGp8sAmbEsobgQ==
content-type: image/*
date: Thu, 28 Mar 2024 18:59:07 GMT
etag: 0x8D6CF31C6923273
last-modified: Thu, 02 May 2019 19:10:01 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 424b9a0b-601e-000a-3842-81e755000000
x-ms-version: 2009-09-19
content-length: 4801
X-Firefox-Spdy: h2
|
|
| aadcdn.msauthimages.net/dbd5a2dd-vqlvc6g5-tuvustcrwtowwwc-x86xvcaxbkejwjiufi/logintenantbranding/0/illustration?ts=636924212884229382 | 152.199.21.175 | 200 OK | 31 kB |
URL GET HTTP/2aadcdn.msauthimages.net/dbd5a2dd-vqlvc6g5-tuvustcrwtowwwc-x86xvcaxbkejwjiufi/logintenantbranding/0/illustration?ts=636924212884229382 IP152.199.21.175:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe#bGxhbUB2YWxvcmVwLmNvbQ== CertificateIssuerMicrosoft Corporation Subjectaadcdn.msauthimages.net Fingerprint3B:14:C7:84:64:65:A8:46:3C:B4:7E:B7:F2:A1:AF:6B:8F:EF:17:E5 ValidityThu, 11 Jan 2024 12:14:02 GMT - Sun, 05 Jan 2025 12:14:02 GMT
File typePNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced Hash1d937f82fdf59cb5fef3ada5d678b505 4341a1e29ae61c3a5d479135e326d8814ad86ac3 8fa32245a647567f88519fc3c78cac47143dfcfc7cf0c21ba29af4d790ae9374
GET /dbd5a2dd-vqlvc6g5-tuvustcrwtowwwc-x86xvcaxbkejwjiufi/logintenantbranding/0/illustration?ts=636924212884229382 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=86400
content-md5: HZN/gv31nLX+862l1ni1BQ==
content-type: image/*
date: Thu, 28 Mar 2024 18:59:08 GMT
etag: 0x8D6CF32721F60FA
last-modified: Thu, 02 May 2019 19:14:48 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 19feb184-e01e-0059-0142-81c461000000
x-ms-version: 2009-09-19
content-length: 30737
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe | 104.17.64.14 | 200 OK | 19 kB |
URL User Request GET HTTP/2cloudflare-ipfs.com/ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe IP104.17.64.14:443
CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com Fingerprint18:E5:C9:71:96:8A:A9:48:E2:79:2A:29:91:D2:4E:46:90:B7:5D:9F ValiditySun, 25 Feb 2024 02:55:05 GMT - Sat, 25 May 2024 02:55:04 GMT
File typeHTML document, ASCII text, with very long lines (3936), with CRLF line terminators Hash9dbe30810d104ff0471dab2fc01f2044 a93dfbc1fd19c2d7fb6049c6215d9fde40a782b0 7b794fb6213f46ac6ba31d3fc78aa19dcd93c9e6d4c41b62a5e5d33a6a989172
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 18:59:01 GMT
content-type: text/html
cf-ray: 86b9dae0fa87568a-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 78
cache-control: public, max-age=29030400, immutable
etag: W/"QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe
x-ipfs-roots: QmUtyY7srcKRCVFZKXu6dzENHCmDcapaoj7hN4iR41pGWe
set-cookie: __cf_bm=ro_WVktRZn1C85s_BWABTARa2P3xMvzV2G5e6gs16V4-1711652341-1.0.1.1-zTm3W8qowBRn.JlGxU0UCySyJZcTVt7w5SmAvPg7Ej9bQz.JhMOFCaA5_FINczCDXm5gmXo4iWlhxgn3r70fIw; path=/; expires=Thu, 28-Mar-24 19:29:01 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|