| zippyfinickysofwps.shop/apiiq/ | 172.67.148.231 | 200 OK | 5.9 kB |
URL User Request POST HTTP/1.1zippyfinickysofwps.shop/apiiq/ IP172.67.148.231:80
File typeHTML document, ASCII text, with very long lines (14405), with no line terminators Hash41244a56aec805acf63204995dee4eff 45a03afc582dcd6208b94e53a16377bfc10d266c 1646c588cc9b7499b29e21045a183020e07bb2ab3f9de8bfe8da7909328ee5c1
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /apiiq/ HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: CuZUB5TQ0UpMGoQbwsXqBpYkqXudPeVH+IKsH9VKFc7OO9nm57O62+/Q/sVK9EhSXqqhX8N4xcPGORdmIiUaSmoTRdpPuZgdwuPKNdWXDV02t3xs/ebKEtsmsiZ4zFi8dERhjemw0ZwfoWHu1dZZFQ==$gsWUV158VjqHyXlIGZGZwg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2%2FZTWrYqGVwsYA8M%2BXcIv4V0l0XE7qIbppr9Znf7I0bkwMKVQ570iOPTHwhX5RCx1rTt1wckiZ%2BMBno3fUc0zMURVJDiazV0c6dh0lqNuww6MvgZF8o8chAImQuJgThtUYjQzTeXLNYl0g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807901bbb32568f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8807901bbb32568f | 172.67.148.231 | | 112 kB |
URL zippyfinickysofwps.shop/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8807901bbb32568f IP172.67.148.231:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size112 kB (112082 bytes) Hashb6829d70f8e9038ec926c501bfd5a30a ec762ed0dced55b4a78b8d7fed39c4d52129eb09 4dd42cb85877e8c65823f9f4210bc94e79fcd823d2894bca9e3cf5f7bca8e11e
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8807901bbb32568f HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://zippyfinickysofwps.shop/apiiq/?__cf_chl_rt_tk=FRaRMPyVnpgAlT60Xp8T6YiDh57Ut6N3ir8BXG3PuMk-1715151523-0.0.1.1-1301
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 06:58:43 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rIctPPEC2FzDN8Jnic009Gdeh1KTeLps7OubM6QUTZexudm8q0eNlNU03k6NjaEWzKtPffQMvuCNfK0A3ZOKwk325CI7PF4agl6aBKF8X19Psb8sJi8pjfuR9ROevPwqW32ugPoOkZ7CXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8807901de91e568a-OSL
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/favicon.ico | 172.67.148.231 | 403 Forbidden | 5.9 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/favicon.ico IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14442), with no line terminators Hashe9eeab61ae3cf03cfbe0742c5626c42f 685585cb416f841a9780f929d5832bcad8d6036d 91f68c15761c29e0e43b735c961ad07c2cebccd78180ae26d428de33bffea53c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://zippyfinickysofwps.shop/apiiq/
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=b4e4e8d8d547095
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:43 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: wSAjGG2DlcltuHSfaatL/jIWQaL5rlCJea9OuaDVzlERrsrSm5+USWujUh7Nw1kS0CLuLSvP7V9jE9IP05F1Zehji9YcrIj2sDnLlNrvYWoNaGXx91TkFpczNQRtXS+TCtFdpAve649/n8PY/nJS6A==$ab02Z093MghqN9qd4OfODQ==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0rcheDMa%2BzE%2FTdcTNlRWseDXa1YmisEruyYrVzGl13YMLk534zLUH6uHormh0%2FCd5LGjXzafjJb8iHPwxdY2TKcJItLa%2B28ZJTcxoBPDnRdHGLNlQaIHF3jXuulj6rlC4CIap9GeljNtJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807901f6c08b529-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/1955538030:1715149781:d_D6VThnav325ROvQu641HEeCJ4lHExYMKBsnLuBFqk/8807901bbb32568f/b4e4e8d8d547095 | 172.67.148.231 | | 12 kB |
URL zippyfinickysofwps.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/1955538030:1715149781:d_D6VThnav325ROvQu641HEeCJ4lHExYMKBsnLuBFqk/8807901bbb32568f/b4e4e8d8d547095 IP172.67.148.231:0
File typeASCII text, with very long lines (16316), with no line terminators Hash3b85c9b4b994e26efae66fbdb17d896c c6406860f489dd24102445be1a638e94a73f5178 7516471107888250dfb46140cad740d5aa96047bc22b38c3536235f03db778f3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1955538030:1715149781:d_D6VThnav325ROvQu641HEeCJ4lHExYMKBsnLuBFqk/8807901bbb32568f/b4e4e8d8d547095 HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://zippyfinickysofwps.shop/apiiq/
Content-type: application/x-www-form-urlencoded
CF-Challenge: b4e4e8d8d547095
Content-Length: 1864
Origin: http://zippyfinickysofwps.shop
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=b4e4e8d8d547095
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 06:58:43 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-gen: BuELHjXX4S1a+40dUZw+WWQtbV2dfraiTywewOZ5S595mILCKtB2JjlciqeeTD+s$ualzjsoBFJLfqtzH8Zdgvg==
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0AO3fbbMaRxi1M%2BpJopGQcfMvGoVnp0x13UaIMzc3Dc4PrRzEtk0lQSCbIhO7kZR4rUJu%2FUjlXir4anwj6FuIAX7bY9SoW45KlNo8EekWVvWBNZP8JDp4oiCttSzrnT2LLykY4KCImVwYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8807901f6e8ab50c-OSL
alt-svc: h2=":443"; ma=60
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/dfq2r/0x4AAAAAAAAjq6WYeRDKmebM/light/normal | 104.17.2.184 | | 87 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/dfq2r/0x4AAAAAAAAjq6WYeRDKmebM/light/normal IP104.17.2.184:0
File typeHTML document, ASCII text, with very long lines (41702) Hash5d15bf8cdc76f46a66494d6a9900adf4 b5dc878ef2bb85a1d6f3127bb6c19a031a5fac93 1260b531ea26ad688c69540a3e0fbf052f97b72723eea204cbfddb7ad0871cdf
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/dfq2r/0x4AAAAAAAAjq6WYeRDKmebM/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 06:58:43 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
origin-agent-cluster: ?1
cross-origin-opener-policy: same-origin
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
document-policy: js-profiling
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
vary: accept-encoding
server: cloudflare
cf-ray: 88079020692f5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/b/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/dfq2r/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 06:58:44 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 880790214a0c5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/640156531:1715149672:J4ZihzSWh-QEzxKA1JpsWl6YYsjDIshz3QEODj_3DPE/88079020692f5699/931875dd98a8a4f | 104.17.2.184 | | 135 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/640156531:1715149672:J4ZihzSWh-QEzxKA1JpsWl6YYsjDIshz3QEODj_3DPE/88079020692f5699/931875dd98a8a4f IP104.17.2.184:0
File typeASCII text, with very long lines (65536), with no line terminators Size135 kB (134746 bytes) Hashc80706fa7a949fbbd381cb39a05bc992 5f1de107ba9ea7469934202959bf4e492a4761ab 2bf0f3fac8efa77de3833bc4b823340bf5f3886f3a5a46445fd91817157b944e
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/640156531:1715149672:J4ZihzSWh-QEzxKA1JpsWl6YYsjDIshz3QEODj_3DPE/88079020692f5699/931875dd98a8a4f HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/dfq2r/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 931875dd98a8a4f
Content-Length: 3537
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 06:58:44 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: I2aY7Q7wygGjGKvujntiCOcPdbdt826bBYHj8jhxRMqDdV4DURgd4kuSZqo7ukHqJApaPmvP57dqR642erH4nfXgdnlfALlUZDa4oq1wH4Pc4EM/c1P1k96+PYuLqXOWpgrwFP38zoLXvEdSDsyyzii27WG6Nq3stF2rgOdRqUleU+G4BHpPJV4wHtVGzH/ZwrgpVkjZ26yNg3YLfZ/LtEXtcOYYk0XdKLLbDnu1ci+aY2f7eWrFZdQTnxADxc7Qj74iXJOYhhXmcnB3omucOGXeEOH2I40rvt7+FRDtTFV2EsJq47ISrCf6refaAdym/I3xX2zAeLK3tfLUJJRM9IFLjkmao2+PW6hcBje3OGjdAJUdz48KoNm3bi9HZJx6zgcd1eI8qrLTPwBckSbY+EQZagt76+ohnF1FBkeAiAU7uhrL+xsrlEZxUwhAaurEbihJpp1GlAMx4NC0UM707OJe/zqXTvpyDLyQITbWahg=$oFrw9ifBF33SxU8xNSzqfg==
vary: accept-encoding
server: cloudflare
cf-ray: 880790234c585699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/88079020692f5699/1715151524383/qjGcqB5HLFEb6rj | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/88079020692f5699/1715151524383/qjGcqB5HLFEb6rj IP104.17.2.184:0
File typePNG image data, 49 x 16, 8-bit/color RGB, non-interlaced Hash563a7b4e818c9f2a2f11df03a259c6a8 92266ec66ac6c49d97e39cec953379168e262768 80c7e30445f27f19b1ec3f93d31b1fd117b7436593fd9dafb8445837666cd567
GET /cdn-cgi/challenge-platform/h/b/i/88079020692f5699/1715151524383/qjGcqB5HLFEb6rj HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/dfq2r/0x4AAAAAAAAjq6WYeRDKmebM/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 06:58:46 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8807902d9ee35699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zippyfinickysofwps.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/1955538030:1715149781:d_D6VThnav325ROvQu641HEeCJ4lHExYMKBsnLuBFqk/8807901bbb32568f/b4e4e8d8d547095 | 172.67.148.231 | | 2.5 kB |
URL zippyfinickysofwps.shop/cdn-cgi/challenge-platform/h/b/flow/ov1/1955538030:1715149781:d_D6VThnav325ROvQu641HEeCJ4lHExYMKBsnLuBFqk/8807901bbb32568f/b4e4e8d8d547095 IP172.67.148.231:0
File typeASCII text, with very long lines (3232), with no line terminators Hashf222ce280160498b15ba7fa852728e82 8e4351f36cdb91856c10000805db9ce68da33429 721f10715105b9c7792d78b553d511097df5be50ebd2b9818a9b5cdb380873f2
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1955538030:1715149781:d_D6VThnav325ROvQu641HEeCJ4lHExYMKBsnLuBFqk/8807901bbb32568f/b4e4e8d8d547095 HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://zippyfinickysofwps.shop/apiiq/
Content-type: application/x-www-form-urlencoded
CF-Challenge: b4e4e8d8d547095
Content-Length: 3341
Origin: http://zippyfinickysofwps.shop
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=b4e4e8d8d547095
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 06:58:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cf-chl-out: tb8bEpCzhhgOkKsmwpQ68dxgZVLaZzin1E7s07WVQjvnjBqmSsHNl8kgcz+YtZJrkWZSOkv/2AHJuJVIoL5w+6hmlVbT8VGTWLs6he+c3e/rT/auM6vf3GfjJia7qlq0$mioqQnIGpdMXuneB1TMFqw==
cf-chl-out-s: pxBMhabwqyOAscS/uabefg==$OuXBM/+iEjEDH/miNSUnaA==
set-cookie: cf_chl_rc_i=;Expires=Tue, 07 May 2024 06:58:52 GMT;SameSite=Strict
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vtwTs5%2B90i%2BG%2Ftfnn3kWBrTIIsaQ657XoqD6b%2BLtCHipeR4ywfTn%2FiDZ91Df0HxkdhyJL4M8qzl01qiebV8CjO0tJYRhFRg6aErF5HhKssOt9%2FzmYr%2FCk%2F3Cj9lnU2ftpUKpQgUPQ9dIRg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880790588923b50c-OSL
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/apiiq/ | 172.67.148.231 | 200 OK | 1.0 kB |
URL User Request POST HTTP/1.1zippyfinickysofwps.shop/apiiq/ IP172.67.148.231:80
File typeHTML document, Unicode text, UTF-8 text, with very long lines (416), with CRLF, LF line terminators Hash7918a2bcb5972fb9180547ebfa69bdf0 e903f27fd09e492fd214f1cfc73bea1f6a262c90 797e5cddce578311bdfbc496be17620fb8630210396c8839a3385c8512194450
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
POST /apiiq/ HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://zippyfinickysofwps.shop/apiiq/?__cf_chl_tk=FRaRMPyVnpgAlT60Xp8T6YiDh57Ut6N3ir8BXG3PuMk-1715151523-0.0.1.1-1301
Content-Type: application/x-www-form-urlencoded
Content-Length: 2480
Origin: http://zippyfinickysofwps.shop
DNT: 1
Connection: keep-alive
Cookie: cf_chl_3=b4e4e8d8d547095
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_chl_3=; path=/; expires=Thu, Jan 01 1970 00:00:00 UTC; domain=.zippyfinickysofwps.shop
cf_clearance=A3F9wKT47rUVF988h63dG4Hg2h9cXZZsy_wPWdyhxPc-1715151523-1.0.1.1-R8UI4vhPDQO4TGiT6tSQrnVeRKvgF26otKwIqvi6NFTIkLlb4SGVKqa730L_9bVv9J4FLiw839z5fn1153fpcQ; path=/; expires=Thu, 08-May-25 06:58:53 GMT; domain=.zippyfinickysofwps.shop; HttpOnly; SameSite=None
PHPSESSID=e04j1its5a3jmthf6na22mcu8c; expires=Sun, 01-Sep-2024 00:45:32 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=77yaI146uVyX8U8flqF1g1gLaMj0veUo1qBdF1VIdvtRbSqARqCcEykX0VpXYqF3EAv9LkigSVHhfuWr3fMHslt5uCe4ozXBQ2cGt%2FLrDYpt1QBeVUrbILf%2B5n5JTxme%2F5YIolYu5NWUDw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 880790595a3cb50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/core/panel/icons/tabler-icons.min.css | 172.67.148.231 | 403 Forbidden | 6.0 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/core/panel/icons/tabler-icons.min.css IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14693), with no line terminators Hash58ec6154856f1bddb99e5a5f19f0d5ab 444987755294f8f8019afef42ae8a9b1f19f00c8 d4dd830bb4baec71772555109e9d1e26735ebfe8725b6a9dcba4e9937f518a09
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /core/panel/icons/tabler-icons.min.css HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/apiiq/
Cookie: cf_chl_3=b4e4e8d8d547095; PHPSESSID=e04j1its5a3jmthf6na22mcu8c
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: BBVRoY3wxOwFauCgjo2f/ECcXxjdnh6cDyS6xiJWabAxoTQvv4EiaWPqQV3VK4and+7PygWHOqThBy4gc+rfp9BYufFuY5pHuArL4GT9UfGNaAw1Wjmy5ug3AtGhIklh6g8U5HY9pqcbfgm4nWfIIA==$DIZ7BI5MGaIkJi/q2M5sVg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6rE4TllbyX35RF1Hmt4ZtUZjc7C%2FFREauIB0Mn%2BTPD4CFH3339jPtwRXrtHFseOHDefMbG%2BK5JpFs15T3J3jwXB%2B2ADZYdX28b19CjjHHxN9kNJLk%2FvOhnJFH8NcicvgAyqJMJtVRDhv1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807905a7b5cb50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/core/panel/js/doberman.min.js?2 | 172.67.148.231 | 403 Forbidden | 6.0 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/core/panel/js/doberman.min.js?2 IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14624), with no line terminators Hashd467eabbc83bd3fb046f73628dd56479 28c40fd6e3e08e7d0afa91ece8b74523b683aa98 880e36d32b253873c2daadd33311025238480232c10a93da083dbfa7a8e673b6
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /core/panel/js/doberman.min.js?2 HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/apiiq/
Cookie: cf_chl_3=b4e4e8d8d547095; PHPSESSID=e04j1its5a3jmthf6na22mcu8c
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: kg0CR4174tcEIQF71PKcUZugngBJiCoaVJFPUzsPQ9PEl6z0//JNhV7uS14ciIEvPkkGzd5LtlJz/Ku1/wzkJ1//WVFdmaMcPA0EF0PQcSMYeK56FOZHJw0cC1fCF67PWYTU/guHVd3fayhuKX1Mhw==$zv5wpnqpvVOhAOYQ17PahA==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hdrsrcFGYbhy793Qw0gKhnIPPZZXmGlXYYc5%2BgIPKHFz6qRawiPXHQUq2t3ygH%2FQ7XfM6WPLfA%2BKOzo6gn74tyLbs6TdX7INfZ1BUKghhY1s2vJOPsySlgfKyEbK5w3u%2F%2BSrvz028tVdmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807905a98fc56be-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit | 104.17.2.184 | | 20 kB |
URL challenges.cloudflare.com/turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit IP104.17.2.184:0
File typeJavaScript source, ASCII text, with very long lines (42565) Hasha5b92920e25651d2058f4982a108347b caeeadd68d38fdb681c52006c68880abc2e8a1a6 49a5abedf03eb8ad9a66eca7c5ccb8e59a440e06958e1e7b71d078f494178dc5
GET /turnstile/v0/b/ce7818f50e39/api.js?onload=Ialy2&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zippyfinickysofwps.shop
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:43 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=604800, public
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 8807901f79bc7127-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/tom-select@2.3.1/dist/js/tom-select.complete.min.js | 104.18.186.31 | 200 OK | 18 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/tom-select@2.3.1/dist/js/tom-select.complete.min.js IP104.18.186.31:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerSectigo Limited Subject*.jsdelivr.net Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1002) Hashcb0a959ac3d7a23dd8271f8438671211 8bc8a58a48d6f529e6b58e235b47d92dc61a0e2d 28d785eb15b9a3fb56d6869ee57952e0908d003a0cf911eaae7a14a8bea9bc76
GET /npm/tom-select@2.3.1/dist/js/tom-select.complete.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 18451
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.3.1
x-jsd-version-type: version
etag: W/"c620-i8ilikjW9SnmtY4jW0fZLcYaDi0"
content-encoding: br
x-served-by: cache-fra-etou8220055-FRA, cache-lga21940-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149590
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BXiIT2g57ezztjAFqJQk7v8O50awm6BfdivNksW%2FxZDaf0lb00JE5MGkFvqXxRHjOxVU1PKHA4yDoSTqqL4iRuI2m7IvV9NsvxV0AfMbbrW7bSSHspwuQFy8t2uTZS3E3uk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8807905aed62569a-OSL
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/tom-select@2.3.1/dist/css/tom-select.css | 104.18.186.31 | 200 OK | 2.7 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/tom-select@2.3.1/dist/css/tom-select.css IP104.18.186.31:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerSectigo Limited Subject*.jsdelivr.net Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
Hashc95b0bc73baee2d4aa8a5d31819916c7 5c6101d999331d9dd4f6902ec76fa484cc0e6150 c8168f6b45f8cf03ee444c7a0d2d61850899fd10dd13e2e523ca15e24fb1340c
GET /npm/tom-select@2.3.1/dist/css/tom-select.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:53 GMT
content-type: text/css; charset=utf-8
content-length: 2714
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.3.1
x-jsd-version-type: version
etag: W/"2618-XGEB2ZkzHZ3U9pAux2+khMwOYVA"
content-encoding: br
x-served-by: cache-fra-eddf8230097-FRA, cache-lga21924-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 149476
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j5B8H9sSON009BgJEo0FJJ9HR4PySCkauNMqqS3shpJDbaDdqjKk6ROfJzOsnwTqQ7%2BG0yKAiP1X31yM%2BJKyaxBIV3BPvhw0mPfF%2BhpibIG3tJlxU7q19yMdbVjwWaWx9yE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8807905add60569a-OSL
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.0.min.js | 151.101.66.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.0.min.js IP151.101.66.137:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zippyfinickysofwps.shop
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 May 2024 06:58:53 GMT
age: 1007714
x-served-by: cache-lga21931-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 3, 760292
x-timer: S1715151533.315583,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| zippyfinickysofwps.shop/core/panel/icons/tabler-icons.min.css | 172.67.148.231 | 403 Forbidden | 6.0 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/core/panel/icons/tabler-icons.min.css IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14671), with no line terminators Hashfbca73963cdcee32002b3caf46898964 1a0c2973367dfb9a7457d0aaeecd6407f0290e23 47dc01d814760eb3ec81bc0ace7d3137a94317c42f8ab8fa11fca1aaf2968983
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /core/panel/icons/tabler-icons.min.css HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/apiiq/
Cookie: cf_chl_3=b4e4e8d8d547095; PHPSESSID=e04j1its5a3jmthf6na22mcu8c
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: P4avfIfbHxVuWTHn5XVOCCJl0UM/WRflnSi37Cad5ads/Nt9DMZ31WAKCCxUfWi46sMTsRqbe9q5aUCHdoDQ/nD2+TNZ0XQM+QmhuD+j8psRXWK/XTT3ayzMUo622IOdfm/m6bEirVhRiMK8KsbGYg==$ZrolaQMAjID0luAoNEoGXQ==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u0%2BlbdAEEMzWf4p6vvZD43Aa90WKjkmz6LcUI20fDrAKN%2BvRCAYxgzkZDyXFIOU0jgU35LI%2Frsr7I18aAAmo4pHaqDWNlQvX6dr24LrHqfWMJSfP8o456FZHGFgDE2VS7FOFcDlUrma32w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807905ccf450b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| unpkg.com/@tabler/core@1.0.0-beta10/dist/js/tabler.min.js | 104.17.247.203 | 200 OK | 58 kB |
URL GET HTTP/2unpkg.com/@tabler/core@1.0.0-beta10/dist/js/tabler.min.js IP104.17.247.203:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65272) Hashaa14c90bcf88e4bb677a6652c703d371 9f7f1217b1bc208033a41fe844c7a3be8363593d e69349eaa159cd847e1a3f551d69ca3dc4a291eba2428b38371c68dbe78d5620
GET /@tabler/core@1.0.0-beta10/dist/js/tabler.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:53 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "22f35-n38SF7G8IIAzpB/oRMejvoNjWT0"
via: 1.1 fly.io
fly-request-id: 01HWT9Q1M3DF7ZJBTNTCM8J240-arn
cf-cache-status: HIT
age: 576974
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8807905abcc156b7-OSL
X-Firefox-Spdy: h2
|
|
| zippyfinickysofwps.shop/core/panel/js/doberman.min.js?2 | 172.67.148.231 | 403 Forbidden | 5.9 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/core/panel/js/doberman.min.js?2 IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14398), with no line terminators Hash086fba459309c13565109109848c6359 4e0f212eadd8351099745d32c41f00be9691005a 312d31d16bb71c62e907ba65a268c3d812bb17d48cfec8b130189f822c070027
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /core/panel/js/doberman.min.js?2 HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/apiiq/
Cookie: cf_chl_3=b4e4e8d8d547095; PHPSESSID=e04j1its5a3jmthf6na22mcu8c
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: +VEsr1raZ5N8jEotwN3yyTK6jEQ5gQFwuROViM2KIull1qH89TbAxuPI2cJ0d95Yh/YdDCDW0GLyIwIh3KAgYmUk+2q5vDId2yu7UCODQNi1SApiMRKtTkiUPqNV42KiW3LXc0B9ujNpALay0vks7g==$0B3pu4haFgg5d4u3deFvkA==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tyL5laFFSNPslFwxi0ya6yeFPAhjUZcTpTLU%2FxIfaVdSPNbIlo6BioVwKM%2FsA%2FxbbMYf2boTywQ5LiLFOyBItRKXkGQr4RLX1W76wB%2F%2FR%2BigWq%2FL%2BoDSBhs1oKrWG%2B4cV3K5%2FjpNSfK%2Bzg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807905cff0b56b7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/favicon.ico | 172.67.148.231 | 403 Forbidden | 5.9 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/favicon.ico IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14485), with no line terminators Hash882be4b7d42f3f4ae53705ec996b1fb8 ace5642ef59bb08a4421c425cc14d5f6576fcd25 1ea1427a7ef7f40777dd75cbfe46b811057cc07e885397316392742788797643
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/apiiq/
Cookie: cf_chl_3=b4e4e8d8d547095; PHPSESSID=e04j1its5a3jmthf6na22mcu8c
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: ZqS2bIyBhdNbvb4H5Yc70woSCC0U4mlTE/jKznEVAJ+vL5o6MF5r3pBRrQLtNo9eK6ZyejULqQ8Ebfkx1MRJZZoqKsyl91YpR6BJJ5Pe7UDgGjECJviQIsb8PuNQpPCD9pWY8nX3iKfE30yQP8DCwg==$7sf5fLp8AC6dnuLoJoaEUA==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5w7J1Sr6d6yiRcebDs8hxtLln1TIHtTL3DsF5n9dkyF5v7GfJXCb8Ue1747KkxfQ%2Bw9ebWVocZD8QKJNqjRF%2BP6HPfGK6f3%2B032C%2FviM60OaNOzKkEBeo5GX1GkjcRxN8MFvtzQiGnCfOg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807905d4862b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler-payments.min.css | 104.17.247.203 | 200 OK | 7.7 kB |
URL GET HTTP/2unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler-payments.min.css IP104.17.247.203:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File typeUnicode text, UTF-8 text, with very long lines (9982) Hash04784b92504b4b5c7787accb86e38c6d 923286260ab882266d1ef2af9e606db0ff9afe35 c5b29d4a7e41bf14b47dce1bd9cb077a7a6520dfec0fcb2629c36e96a38a48a4
GET /@tabler/core@1.0.0-beta10/dist/css/tabler-payments.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:53 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "2806-kjKGJgq4giZtHvKvnmBtsP+a/jU"
via: 1.1 fly.io
fly-request-id: 01HWT9Q1MTTN73MFFH569S9PMD-arn
cf-cache-status: HIT
age: 576974
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8807905accd256b7-OSL
X-Firefox-Spdy: h2
|
|
| zippyfinickysofwps.shop/core/panel/css/dober.css | 172.67.148.231 | 403 Forbidden | 15 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/core/panel/css/dober.css IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14595), with no line terminators Hash120297add30b801346d08084eeaa160b 71273c9a015cfed7251907f49a0ad57daf66c278 d99639f775a08fd12d281784efed059e2308fca1c542c113dcfaf749d8ce0356
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /core/panel/css/dober.css HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/apiiq/
Cookie: cf_chl_3=b4e4e8d8d547095; PHPSESSID=e04j1its5a3jmthf6na22mcu8c
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: rL+PS893ZbTp7KL5FPCAP5VhOlmFq2QnQf4CV574TQzMONffTaZUIJ1VHRfo8ug9qlST40HCZ6cYUNaiEOg1fhlPwxnek1Euv17OWCJmETNHX3OKoMY8D2d288z/mHv0Zqm+QTzKqgYVDto8aTmf0w==$eAKjuWnnfie/CK/evMCmyg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QRMLu3kMqEli5ilEkotmAyZWeLqnOrGb8GB%2FVp1JPA2ZZOh60it36ARhdXmZiZWUOBdChUTSP6vyEP7N3K%2Fg5292sSS7F3u2aUYbpuWFE0sJnqvPNJutyazQ%2F6BGBZlRTzNvb2kYrLe9rg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807905aa87db4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| zippyfinickysofwps.shop/core/panel/css/dober.css | 172.67.148.231 | 403 Forbidden | 15 kB |
URL GET HTTP/1.1zippyfinickysofwps.shop/core/panel/css/dober.css IP172.67.148.231:80
Requested byhttp://zippyfinickysofwps.shop/apiiq/
File typeHTML document, ASCII text, with very long lines (14595), with no line terminators Hash0edf2dfe7b7eeb459ce9a9a9c75a6bf4 9e956775359a1e7262c95f7a3e72558c8b1e6899 ef7f9b99996efec5e2ca68b5cb8bc6db3daf3c011e917595312f315b1fe30bd0
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed | Quad9 DNS | malicious | Sinkholed |
GET /core/panel/css/dober.css HTTP/1.1
Host: zippyfinickysofwps.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/apiiq/
Cookie: cf_chl_3=b4e4e8d8d547095; PHPSESSID=e04j1its5a3jmthf6na22mcu8c
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Wed, 08 May 2024 06:58:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: D8ZvLJU5VdQMD2h3clc0/Jj7YIK9tNawuql9RP+r6GplmmsGq1p+aIL6LZE8JcJqv5ePR6YSa+YTSF1rUQx1qzn8RnkYV/UbdU6uz7uismNup1gG9zFEzDJqwAH00535BlBIigz+iVC275QIgYaHeA==$hXswAS493F/74Vs3Z1qqDg==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EVGT2WwnD0y6JtEE88%2F8rU4eX3yFUInKt7lvgJwiyT8F6jFrmKtYOLEU7llBKBivc9t7gV0PbOxz3xf8uio1XQxOtvavDhnabGq0K6%2FL8%2BvAfvSlgCXDrJujxSvc6DCyhUIE02B4LJRzXw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8807905ccdaa7130-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler.min.css | 104.17.247.203 | 200 OK | 300 kB |
URL GET HTTP/2unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler.min.css IP104.17.247.203:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
Size300 kB (300441 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /@tabler/core@1.0.0-beta10/dist/css/tabler.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:53 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "49599-nWlRizNidNMAgcjSv4f3utVNqHY"
via: 1.1 fly.io
fly-request-id: 01HTZRWFWVX5PFVQX8X8E63WZY-arn
cf-cache-status: HIT
age: 2540779
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8807905abcc556b7-OSL
X-Firefox-Spdy: h2
|
|
| unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler-vendors.min.css | 104.17.247.203 | 200 OK | 20 kB |
URL GET HTTP/2unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler-vendors.min.css IP104.17.247.203:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /@tabler/core@1.0.0-beta10/dist/css/tabler-vendors.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:53 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "501d-KzRlg0kTrqxbPtPfiexL7OQBp7U"
via: 1.1 fly.io
fly-request-id: 01HWT9Q1MGHYRDJDVVHBH00JR8-arn
cf-cache-status: HIT
age: 576974
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8807905adcda56b7-OSL
X-Firefox-Spdy: h2
|
|
| unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler-flags.min.css | 104.17.247.203 | 200 OK | 16 kB |
URL GET HTTP/2unpkg.com/@tabler/core@1.0.0-beta10/dist/css/tabler-flags.min.css IP104.17.247.203:443
Requested byhttp://zippyfinickysofwps.shop/apiiq/ CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /@tabler/core@1.0.0-beta10/dist/css/tabler-flags.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://zippyfinickysofwps.shop/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 06:58:53 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "3dee-nKAPWTieQ/tpCdi7lKfJqVdDhu8"
via: 1.1 fly.io
fly-request-id: 01HWT9Q1M7PZ9HX1HQ5ARQCQDX-arn
cf-cache-status: HIT
age: 576974
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8807905adcdd56b7-OSL
X-Firefox-Spdy: h2
|
|