| paste.fo/c2257075b9a6 | 172.67.144.225 | | 1.4 kB |
IP172.67.144.225:0
File typeHTML document, ASCII text, with very long lines (1494) Hash43c1bb57bfe608617672f656c48d62d2 d736a2f46882f8e46630e3d9dc183f44c4c24e0a 50da4bb4ddbbe14351ca4a234a4a8511fbb7f3469189ad375bb77ef76f9345b7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /c2257075b9a6 HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 07 May 2024 16:33:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Retry-After: 10
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=doMhHTFk9zRHnMgMlnzCGtHiafPoOPMjBwo985p0ikqxA84RP3158YTXBm6%2Fe873Mmz9%2FKGO6JojItq09ldlePxBwZKt4Q%2F1o9xASuxt6lolUg%2F6ynjKMRlgCg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88029c1adc57b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| fonts.googleapis.com/css2?family=Source+Code+Pro:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap | 142.250.74.138 | | 1.7 kB |
URL fonts.googleapis.com/css2?family=Source+Code+Pro:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap IP142.250.74.138:0
File typegzip compressed data, max compression Hash7e15e0b1cc954ca6764eadea844282c2 e77c51b06afd980a3bcfd9a6add42ee932c8bc61 16df2b18403680637a5e96d34f8b795cec93ab84969ee32e3baf2e0cf038fb1f
GET /css2?family=Source+Code+Pro:ital,wght@0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://paste.fo/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 16:33:06 GMT
date: Tue, 07 May 2024 16:33:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| paste.fo/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.144.225 | 302 Found | 143 B |
URL GET HTTP/2paste.fo/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.144.225:443
Requested byhttp://paste.fo/c2257075b9a6 CertificateIssuerCloudflare, Inc. Subjectpaste.fo Fingerprint45:4F:E3:CB:01:43:C2:8B:CA:E1:64:B0:D4:A7:73:8A:C0:79:E2:22 ValidityWed, 17 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcb7b8f439b04c00f4a2d78160ddfee8d 9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4 12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Tue, 07 May 2024 16:33:06 GMT
Content-Type: text/html
Content-Length: 143
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Location: https://paste.fo/cdn-cgi/challenge-platform/scripts/jsd/main.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Ikr%2Fr5trIexVWYFRzieFnfH8ddJc2IXnwGtjr1zg%2BdEBRrzy7KWF3FpLP8%2BUtvK52%2F%2Br959TC4bB4ATwI%2FdgYWCv06se9HFlJAg96GZ%2BBd7%2FWHr2pLpTkiRMA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88029c204807b50b-OSL
alt-svc: h2=":443"; ma=60
|
|
| fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 | 142.250.74.99 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 IP142.250.74.99:443
Requested byhttp://paste.fo/c2257075b9a6 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21528, version 1.0 Hash6113a25a586aeb6d0d3af5b5b652b973 25619eeae1fe17389310e4d392c427b7711dba44 539bdb4bd9bb71c694451bbf2d5d7c0b2849e3584f0b50be3588a07605d3337f
GET /s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://paste.fo
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 10:47:01 GMT
expires: Wed, 07 May 2025 10:47:01 GMT
cache-control: public, max-age=31536000
age: 20765
last-modified: Wed, 13 Sep 2023 23:21:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 | 142.250.74.99 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 IP142.250.74.99:443
Requested byhttp://paste.fo/c2257075b9a6 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21528, version 1.0 Hash6113a25a586aeb6d0d3af5b5b652b973 25619eeae1fe17389310e4d392c427b7711dba44 539bdb4bd9bb71c694451bbf2d5d7c0b2849e3584f0b50be3588a07605d3337f
GET /s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://paste.fo
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 10:47:01 GMT
expires: Wed, 07 May 2025 10:47:01 GMT
cache-control: public, max-age=31536000
age: 20765
last-modified: Wed, 13 Sep 2023 23:21:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| paste.fo/favicon.ico | 172.67.144.225 | | 628 B |
IP172.67.144.225:0
File typeHTML document, ASCII text Hash7be6216a205b83c724bed7c8724e6ba6 9b9b8b3a980d1d4c3d8c4168065c9d11fe32b7fc d04b43daf0c4e200b091bfefde1324543682266f2201c6c8e38d06249e1087ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://paste.fo/c2257075b9a6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 07 May 2024 16:33:06 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Retry-After: 9
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ycAyIV4so8UdWT3MI0opFpZgHuFQdm4x4xB269MFO3UoiJFeKbxI%2FTrCPZhvMQgGBUQ5iyGuz4tdMQ4MdkBA3VFCkkSRMc9rm1r0mmYwIfRamPjhi0palt3dqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88029c215a82b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| paste.fo/cdn-cgi/challenge-platform/scripts/jsd/main.js | 172.67.144.225 | 302 Found | 0 B |
URL GET HTTP/2paste.fo/cdn-cgi/challenge-platform/scripts/jsd/main.js IP172.67.144.225:443
Requested byhttp://paste.fo/c2257075b9a6 CertificateIssuerCloudflare, Inc. Subjectpaste.fo Fingerprint45:4F:E3:CB:01:43:C2:8B:CA:E1:64:B0:D4:A7:73:8A:C0:79:E2:22 ValidityWed, 17 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 07 May 2024 16:33:06 GMT
content-length: 0
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6MkJZuteE%2BaaUyszn8TQZnU6y91zl%2F5rcZPomyMpNtc0pLNG16Hj1NLTKfQrDzxzWQwm59n4gRXOdWz9x3T7NYDp7rxnRbLJqBPhh8hsxSxMmtHCzCvsySQUsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88029c218e85b512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| paste.fo/cdn-cgi/challenge-platform/h/b/jsd/r/88029c1adc57b50b | 172.67.144.225 | 400 Bad Request | 143 B |
URL OPTIONS HTTP/3paste.fo/cdn-cgi/challenge-platform/h/b/jsd/r/88029c1adc57b50b IP172.67.144.225:443
Requested byhttp://paste.fo/c2257075b9a6 CertificateIssuerCloudflare, Inc. Subjectpaste.fo Fingerprint45:4F:E3:CB:01:43:C2:8B:CA:E1:64:B0:D4:A7:73:8A:C0:79:E2:22 ValidityWed, 17 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcb7b8f439b04c00f4a2d78160ddfee8d 9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4 12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/88029c1adc57b50b HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 11563
Origin: http://paste.fo
DNT: 1
Connection: keep-alive
Referer: http://paste.fo/c2257075b9a6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Tue, 07 May 2024 16:33:07 GMT
Content-Type: text/html
Content-Length: 143
Connection: keep-alive
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Location: https://paste.fo/cdn-cgi/challenge-platform/h/b/jsd/r/88029c1adc57b50b
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fdy78zJDCEtej%2BsskAS2gmm4Xa%2FIokeg7FiLdMTvIqsHqvpo9Q7jvuI1dNA6%2BBQVBsXzkIALCDFOVm6zWBt18X3WAB%2B6fcMXk5TkaUIiMxUzIlo%2FcNOjsfP7pA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 88029c23df4eb50b-OSL
alt-svc: h2=":443"; ma=60
|
|
| paste.fo/cdn-cgi/rum? | 172.67.144.225 | | 0 B |
IP172.67.144.225:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/rum? HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
content-type: application/json
Content-Length: 1028
Origin: http://paste.fo
DNT: 1
Connection: keep-alive
Referer: http://paste.fo/c2257075b9a6
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Date: Tue, 07 May 2024 16:33:07 GMT
Connection: keep-alive
access-control-allow-origin: http://paste.fo
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
Server: cloudflare
CF-RAY: 88029c241fddb50b-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
|
|
| paste.fo/cdn-cgi/challenge-platform/h/b/jsd/r/88029c1adc57b50b | 172.67.144.225 | 400 Bad Request | 7 B |
URL OPTIONS HTTP/3paste.fo/cdn-cgi/challenge-platform/h/b/jsd/r/88029c1adc57b50b IP172.67.144.225:443
Requested byhttp://paste.fo/c2257075b9a6 CertificateIssuerCloudflare, Inc. Subjectpaste.fo Fingerprint45:4F:E3:CB:01:43:C2:8B:CA:E1:64:B0:D4:A7:73:8A:C0:79:E2:22 ValidityWed, 17 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashfedb2d84cafe20862cb4399751a8a7e3 81f344a7686a80b4c5293e8fdc0b0160c82c06a8 f1234d75178d892a133a410355a5a990cf75d2f33eba25d575943d4df632f3a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /cdn-cgi/challenge-platform/h/b/jsd/r/88029c1adc57b50b HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Referer: http://paste.fo/
Origin: http://paste.fo
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 400 Bad Request
date: Tue, 07 May 2024 16:33:07 GMT
content-type: application/json
content-length: 7
cf-chl-out: +xH/KyOGk2++TskIkP1ecg==$4TWbfX7AJJ3NARlNxQbKNg==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xMK15pM1PkiHTjl43vMBYWsxpctss3yMVUzGhCb5MHaUjGiAtQFrL93iNz%2FO4GgICQHl3WUFqaaN%2BwZb8yN%2BBOGNDNloaQEcNEfm9zH6RKAo05XdElmq6yI6tQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88029c2479f8b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| paste.fo/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js | 172.67.144.225 | 200 OK | 7.8 kB |
URL GET HTTP/2paste.fo/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js IP172.67.144.225:443
Requested byhttp://paste.fo/c2257075b9a6 CertificateIssuerCloudflare, Inc. Subjectpaste.fo Fingerprint45:4F:E3:CB:01:43:C2:8B:CA:E1:64:B0:D4:A7:73:8A:C0:79:E2:22 ValidityWed, 17 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7849), with no line terminators Hash152ad58f814230c99ff4f8a08b990afb c4dfaf3b1a671b849912d3641e894b1fe333fee4 2c589e92de90425fc02dd89c4c312baeb20d11956069fba9ec60a64537d24097
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: paste.fo
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 16:33:06 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eSBNqyzeZxouDfEcnoZQvlBcXeY9lq8VZ2neqUEV6LRwG3QjS5l%2FtcKvIIFFPDRXXFDS1Vf6orVDnwarTakIb4YuBWC4BiuuXe6gLBppK8bl8vEcjVc0MiDt9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88029c21cf23b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|