| secure-login-keeslerfuc.pages.dev/MobileLogo.png | 172.66.44.127 | 200 OK | 35 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/MobileLogo.png IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typePNG image data, 945 x 345, 8-bit/color RGBA, non-interlaced Hash67277511e17ba0c06c0ccbde73a57e6e 98fd2d653ced9bcd26b1c045ca0eb74b4fe09c00 0bb7e66ec13cdc10cf254866c9aa07fa02a1deacd01a63a92802718df2d25bd0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /MobileLogo.png HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/isotope.min.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: image/png
content-length: 34846
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "70fa92d3ab73cd8e6776002eef95760f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tQQFdMBWWOlDDrB2Isri2kQswc248fkb5dmEM3pwOqD%2Fd3VNmDyVVByA12AUzXnmlyLPrV9jjfDu%2F9owCmDXs9utv09z7FUj4aDav%2Fo8JmtjqTYJEbc3HgGvpLk2NKQgzhS2Q4rLbpeEErbpkaRRw9IPPL8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79f9ea856a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/iris-components.min.css | 172.66.44.127 | 200 OK | 64 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/iris-components.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (65309) Hash3f422952c888b7d59b49fa322dff0b45 e0f6c5e1ae3834a01aa40d33d17ec3f4e46e7e78 85392c1de142face2c43f99a314465b26754b0c3b84a66c744802e4268fee931
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/iris-components.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"c98a8914a0ed5385367565f4a0fa73fc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1rDs0mQtdftLjbkXTfz9qWbkyt6x7Zx7%2FsH9LCssP3ZIarTgWTPtDZXp53xj8NkXEIRkOq5jSxJz638ozMknqNWXkaDa4rJeB7Q%2FHsWIOE8lpDHOm%2B7PsKLEE1ZiEo88dV6DDRu8IF%2BB9fy0nkzrNhHnUD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3be356a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/iris.shim.mobile.min.css | 172.66.44.127 | 200 OK | 740 B |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/iris.shim.mobile.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (557) Hash2b495c471e337eac5d280f5519c6fc53 285689d6b41833ced6b63a3f82892d2901d4039b 06dee56fb4e2677948bc2f6ce7e20e9900e3c7431843ae3d9c9d975ff03889a7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/iris.shim.mobile.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5ce5269d454ada57aaf907d09110fd78"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rjUvdBZmkN8lMu1kQ%2BOOzev%2Fk%2BhauUkDspdMtQxgP3G6ypoWgZzqrHqCO02QcJJeAZ%2F2Yga5LAEjgDDKPJEcn1HnrDhETSQfqBOWPQPXnRrjy02wAW66WE07N4ZE6QPCg1xXFUi5Hmoq85Q7jU%2BRPyHvaHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bbe56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-login-keeslerfuc.pages.dev/
Origin: https://secure-login-keeslerfuc.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 563782
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| secure-login-keeslerfuc.pages.dev/isotope.min.css | 172.66.44.127 | 200 OK | 5.7 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/isotope.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (5626) Hash709d01e56ec1c87ebac53ddc1a294eeb e4049e62eecd6b499a4d12a2965aa68d016c3e50 8a46fcf51f11418130adafc88cf7833f90f9d1e5cb000cf9d7554ecf463978f6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /isotope.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"552897eb38e845c5b43f5a6b90e3d242"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U%2F0G8%2BGI149toPzN3ajcklKWVr%2FMAWV86WfQat7so3aqzh7koK%2BJ3B9GxK%2FLCmrAiNKjHXCCsZG8A0Bn6FBhiy%2FCdeyi6oDEU2NtwO%2B3%2B1%2B%2BuaHHF%2FSUUcelPsgSCHSn7go28SQVqX9bINm%2BE5Y%2FlpKbXCQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3be756a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/Isotope/Images/app-store-badge.svg | 172.66.44.127 | 200 OK | 25 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/Isotope/Images/app-store-badge.svg IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Isotope/Images/app-store-badge.svg HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"10eec588f43dcdb5e918762d18eefadd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5AFh%2F9XNIXwrVsU0LpEfnorGuVu4Xgiydot%2B4%2Bqvn9mnrJMZ1HX08HH1Gl75S6XzdFYqxXfZf5R4Px8To%2B1nstn3uk1nH8C4D1C%2FN6aAw16YNnuvXnyq%2FiaD5J2uRgwEbhAjZjpZZdOIyzEtrQz4aVWpVmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e4bea56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/iris-components.shim.mobile.min.css | 172.66.44.127 | 200 OK | 915 B |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/iris-components.shim.mobile.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (931), with no line terminators Hash59daef41571d265bc29745ff757acb5e 76b12c0fc5908789f3bb3d8d2f4f8aecd44c41e8 e026358143803e91822b7951086298c7250db05ab90b6cea0a84df537a50e132
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/iris-components.shim.mobile.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cb8dcecaf349a854f35f350196a1bcc5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7sqtGrQBwee%2F19Z%2BVHUfRiQSxXpcQifVP1QKyw1vAwab55QvTFbnFffNLoLdEtYXU6N2KEa6CQJYUiRik8yYN1jgKTtAnypVIcR%2FHbuJ4TasqPWZWCIrTvjyOL3y11cifTRJNFZNulLmZ2vSL%2BqSZxwNKXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bd456a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/iris-foundation.min1.css | 172.66.44.127 | 200 OK | 51 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/iris-foundation.min1.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (50964) Hash0160c354e11f9e1f2ffcd720f880dc2e 7c3b5681a9483a0f37110476e04375e7e88d8fcc 037e5f8a4d2ef765d97f6c14e087cab4f8f27a1ac2a6a7584793b1a76a08fb8f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/iris-foundation.min1.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"3381a46cd5614c6fc0907e933c2d8e1a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zc776chnx%2BMgXlSZHKPY%2Fvw9E3e9fP5QSOjN5WGKzhbGH6CmMoF%2FCsMJRMQgSBWNH2ku7Q3UErdj6Yki4Ba6S2b2ujH2YpKKeDKJsPybITCo0MN67Q8Sy4O8a7zHxs9%2FRXtFpCguD3XqaLhGjir42lspdnY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bda56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/iris.android.min.css | 172.66.44.127 | 200 OK | 98 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/iris.android.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashbe81b5e26048fc742fb16310834da4ad 03112d4ed94d9ee41cf5012c1f594fb4f8b5c1c8 65c12121b00f8425f4bd66383649d717e0b381b0336eaf39c732e6d5bb1109e5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/iris.android.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9dcbf1b9640084e0724ad5e25164d442"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8E%2FjgZdOPAwJEnL0LP0ETyvjxmXNbAb3Utm%2FO%2BBK0hn7DHo05mf%2Fak4XlAmLmn8sqjwMShC950iWSEs5k8SdC51op64idAYe384ij8c2UTcf1C%2FwzH0bcArbz%2BdySicqwAsTGUmcM5ZsTLEp5ho%2F89LmVws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bc156a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/favicon.ico | 172.66.44.127 | 200 OK | 7.4 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/favicon.ico IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeMS Windows icon resource - 3 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel Hash681d7c17deb6699aaaf8527958220836 7c5e1743d23805882eb3ea385086169d3c9b26a8 de1f10007a2f218cc207c1a1d35a33baec9b5899f816d689dcdaf38df868c235
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: image/x-icon
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0b43f0111e884e45b6f22576f3357d05"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AL%2FQb6COz5q1dTIy8%2FNjqNVhSF18gOdj4T%2FTQbqVIJsdbUZhSdoliGruBY2qrZQtLkRJL2HYPEsqj9RaHVHP8tvbFX2tyoMDPNIVvg%2BqUkHsk%2B%2B9iaE4l927kZj8RryCpEd9VNJOH8SRkMVM5swWGdyl9nI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79f8e9156a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/jquery-ui.min.css | 172.66.44.127 | 200 OK | 31 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/jquery-ui.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (29486) Hash0ba6b64b2cc5a2e2a1f0866d8e4f141f 575fc9181fbacd2bdd8953554171c89dc57d4e20 5bed9d2f4811025c2bde2c4747db5f3cacc9e4547ea594a0468b1e4f00965df9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/jquery-ui.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"6e5f9fa17f963977d636f6fe28e0545e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FUDW0khCP0hDMadrcqGUnIa1w2Ru6%2Ft4IxeAgi1VMdxqv%2Bu%2BdvuX0IkCrUKit86%2F49GoGUAWcVGqKmMamTBb%2Ftt2iaJg6LAGw3RROtZpt6dX9G2CIKBXgjjgprsgirR6XgPkldq7CiXLH7iCJD06lQFSYLo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bb756a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/theme.mobile.min.css | 172.66.44.127 | 200 OK | 115 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/theme.mobile.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size115 kB (114780 bytes) Hashc8821e4017de2c0400a7f724976edbc5 53cdc80ffff4f7a9141695ef3b3315934c58e7ad e68a4eec77e984e73b04c021c1296f12def2d00262265f37a5f2e20a44878582
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/theme.mobile.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b53e42364edae65eaf6d408f926a61ac"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hBp9%2BNgIN97XsoCYt55Wg8SfX6ghQiccdwio%2BscXOGCXHuyGzRAVhAOe4Wt5wgfEVZWajjVhmPVjbsHpm00by3lDqcSFbA4X7LM29SKutr8%2FdBCN48wWHmy9fxDfTn5CjCwcTmUDGfYg%2FpMjswj9%2B0qv2Y4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bce56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/Isotope/Images/google-play-badge.svg | 172.66.44.127 | 200 OK | 25 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/Isotope/Images/google-play-badge.svg IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Isotope/Images/google-play-badge.svg HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"10eec588f43dcdb5e918762d18eefadd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qibXEwbYqO5PBiU4wOGeXeEJROg0B6rci%2BSjTG6IVrQxIJrxYSSMdIVguLEWfYYItaLWLFN4jtraR6LGpzQdAMHPNl85Vi3DdnLEcDLIIRvDkK98dhJ0Q5f66Y5RDf63e7R8%2BjvjvTirDJ5kZvv5G2uEgKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e4bec56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/font-icons.css | 172.66.44.127 | 200 OK | 116 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/font-icons.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
Size116 kB (116136 bytes) Hash1a5d68c1034b27069a47f79e90c35775 b05f852596b06fc19de48adff0cd977f0324c5d0 b732cce907baa80850c8857d858358284883f9ea9b7239fc6a5ed6e7eaa9b5b1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/font-icons.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d8b2af67a6988296423039e29e7fb2e5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BTzsxU4zmUo5a%2B8GOcjWnYA0l6195iqBN0pg3UWdzxDMiIsqrLdFh5JZEY%2BTMzmGKmzbhRMFvaHbN7lEZ4Ik8u3kxWYrymnEOlGruZjXK1ZkXWD6KnwSbBJq6fOx3qc4%2Bz5XXXBtSsDJCZqUVxx22BIUmAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e2ba756a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/base.min.css | 172.66.44.127 | 200 OK | 2.2 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/base.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (2259), with no line terminators Hash99b7f8952d3577bc6963d97c37e3f773 25c02ba04444c137c84644e48ef91eec673fec4b ec94cbaaf42c4b4420ab287fdbca16345adec2d9ee4f380c6355d4dc9621797e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/base.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"fd88b89d36d594e84ca0e637c74283a7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t0sRs%2FHVSAt3Qod%2BrcghrrT4N3SVzLADefOODzhGhHZqZj13iOYL0bdhWNttQSX%2BRAsNAOcc0FHkQCMpCBcZUJmg2KzG3HBseA%2BLOmMjbjwCt5MbFa6v8bG7WBEL3u8OLB4LGjZ5wMxBRiwlf3gdrlwmbxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bb956a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/css/iris-foundation.min.css | 172.66.44.127 | 200 OK | 51 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/iris-foundation.min.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (50964) Hashb8c864cda1f61ea4ffc57ba52f038a41 5c8784412d182c24f931531629a9bcf1455e9e76 f6fca06e2aac270b488f73bcf0a10d249e2722a015135e60dbb49360c5335a72
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/iris-foundation.min.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"30510574fe9f3330128f6ef8cc58e173"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2v0HzIhaUeCUK6l7gtgHStaccWBZt29dVcotEMcqwCfZDLRyCs5sJ%2BlhPY7sq2pTgINDPM54WPJrTh1SUlGciazYab0AHpYURs%2FiWQ0RSa%2BaxQGYQto9bBN%2B5NLhgmADfZ0STYG1kmdL3QXEQCH%2FCMMbAh4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bc756a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/favicon.ico | 172.66.44.127 | 200 OK | 7.4 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/favicon.ico IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeMS Windows icon resource - 3 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel Hash681d7c17deb6699aaaf8527958220836 7c5e1743d23805882eb3ea385086169d3c9b26a8 de1f10007a2f218cc207c1a1d35a33baec9b5899f816d689dcdaf38df868c235
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: image/x-icon
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"0b43f0111e884e45b6f22576f3357d05"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qsbxi0LQ7mu2k9IGy8dAMAR0w7R9FYPEiM%2Fpm1lfF1J%2FilzLIowwX6Z5dG8qoFDP7VjblHPjDP63QoNxoc9x25e%2BKAQVgTIf%2FJ4cFGftptB5FLOoe7DqjZCXll%2FUAb8Uxlj2eVrFMNefgApGCkX6CCEexRk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79f8e8b56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/Alkami.woff2 | 172.66.44.127 | 200 OK | 42 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/Alkami.woff2 IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 41960, version 1.0 Hash52cad9764bad2f9d90208c91a7c5e847 6179e764e760b16d8b8ac30b9251ce2311b83dd1 4e2bcd3f2e35e841bece706f0426cc746ac77cfd2148ea365ce05eebd5124a45
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /Alkami.woff2 HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://secure-login-keeslerfuc.pages.dev/css/font-icons.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-length: 41960
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5783a176049ca972e916d2afb31f85dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qfcmf2WiL72yvVfMls1BeW%2FSf5YzU8LRYTM51kCdlZf2SfIBxJWGBBHkDJzDKQZtOWDi35H9WaDnGj18KKPXg3uZVI2gdeQ0Jr5k3eqAzjK3wcf1TxG8eOnwrvdBXJ9fQnYbTThsi4CVTwrSK3J6jD3nx3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d7a00f2f56a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| secure-login-keeslerfuc.pages.dev/robots.txt | 172.66.44.127 | 200 OK | 25 kB |
URL User Request GET HTTP/2secure-login-keeslerfuc.pages.dev/robots.txt IP172.66.44.127:443
CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /robots.txt HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 18:44:40 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"10eec588f43dcdb5e918762d18eefadd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wTkS5816DVWrSJJDffB66piCsyxXRhC9s%2FvSBuTDrQv4mtwMuPL6zBxqu3jOi1IdHJTNC%2FUbVVuU3IkIdX7Xy6D5RFnrM49znF8UEGBxARws8Xygm32x5X%2BjPgrQcbHdkGsjQfo6Ku%2BuhjaihvJmtXx%2FPWk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79b8e1e7130-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| secure-login-keeslerfuc.pages.dev/css/css.css | 172.66.44.127 | 200 OK | 2.0 kB |
URL GET HTTP/3secure-login-keeslerfuc.pages.dev/css/css.css IP172.66.44.127:443
Requested byhttps://secure-login-keeslerfuc.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectsecure-login-keeslerfuc.pages.dev Fingerprint2D:3A:7C:FB:45:5F:39:39:AE:24:D0:3A:72:B2:7E:FF:8E:F7:B9:D0 ValidityWed, 08 May 2024 15:39:07 GMT - Tue, 06 Aug 2024 15:39:06 GMT
File typeASCII text, with very long lines (2042), with no line terminators Hashb1c09f4b5f17add18524d7ca99ec5c73 ddb7cf725f008f8a66c69181082a1a3300ffa278 7fa16ed85ff37fa47131c999bffc496757d85924d4f72e00549ee5b308de4e23
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /css/css.css HTTP/1.1
Host: secure-login-keeslerfuc.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://secure-login-keeslerfuc.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 18:44:41 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"aeb71a3201fec4e44691a4d312f4f5c8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JfmKzMxfGaB9AxW9DdO1klaCyo82VLHlA1b9J67pdsK0rIAcNvhUL57prEkdHgaObhMaFBRsBLDmHAAAgUfjqxdXAWc%2BvYBlAVSGcRD%2Fi1mL%2FhHosthhgdJVgC3lWL7Ocalvw0%2FGJa5oPhrh7IZOMeuUFjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8813d79e3bb056a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|