Report - atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/

Report Overview

Submitted URL
atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
IP
54.230.111.78
ASN
#16509 AMAZON-02
Submitted
2023-06-01 04:32:28
Access
public
Website Title
Final URL
Tags
phishing
urlquery detections
Phishing - Generic phishing

Detections

urlquery
3
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.r2m02.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-05-31	340 B	941 B	54.230.80.227
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2023-06-01	481 B	31 kB	142.250.74.74
code.jquery.com	634	2005-12-10	2012-05-21	2023-05-31	460 B	30 kB	69.16.175.10
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-31	1.3 kB	2.8 kB	142.250.74.131
i.imgur.com	5110	2009-01-09	2012-05-21	2023-05-31	483 B	8.5 kB	151.101.244.193
ka-f.fontawesome.com	3598	2012-10-18	2019-12-17	2023-05-31	1.8 kB	151 kB	172.64.203.28
atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net	unknown	2018-01-25	2023-03-05	2023-06-01	1.2 kB	30 kB	54.230.111.83
docucdn-a.akamaihd.net	10361	2009-09-14	2014-04-10	2023-05-31	511 B	7.8 kB	23.36.77.32
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-31	500 B	1.9 kB	142.250.74.106
kit.fontawesome.com	1868	2012-10-18	2019-12-16	2023-05-31	539 B	12 kB	104.18.22.52

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-01 04:32:10	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/	108 B	2023-03-08	2024-03-07
Pretty URL atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ IP 54.230.111.83 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:38:17 Last Seen2024-03-07 04:06:02 Times Seen8 Hash 6c0c8b11139916f9950596bc152cf17b 13812245902039803b6aac05e07e3c452b537272 1df19268b76bc6bf286ba959e74f0561ce76c7837d0ae8deeb0e39348b8579ea Loading...

	atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/	155 B	2023-03-07	2024-04-17
Pretty URL atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ IP 54.230.111.83 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11:38 Last Seen2024-04-17 17:59:40 Times Seen437 Hash f46ad3d0e4e2760d8c398b79b8d1e901 5ec5b8265f72dc338695a6a588e6abbe315dbaff e4d8eb546b16bbe04873a6581afb7f389c7d730eabfa166a32cbd0eae667e899 Loading...

	atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/	72 B	2023-03-07	2024-04-17
Pretty URL atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ IP 54.230.111.83 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11:38 Last Seen2024-04-17 17:59:40 Times Seen437 Hash 093b15e495761553bb6228b76ccc1291 9da1b7b8678ad12f48664a2beefc2e6b105a8441 da147886bece377a663901504e9c1102fb58a0bfd8713965cb20c5af9abffe8a Loading...

	unknown	20 B	2023-04-19	2024-04-25
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-19 09:45:13 Last Seen2024-04-25 10:16:52 Times Seen499 Hash 0213bea50e3e3d26eb08e9de84c72d3f d6b1f4f5792e875e06f158b6474e3b60dc3ac8b3 26f5bd93ddd130deaa261c10d0236700667bb9a051d646421828904efc5ae5a5 Loading...

	atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/	309 B	2023-03-07	2024-04-17
Pretty URL atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ IP 54.230.111.83 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11:38 Last Seen2024-04-17 17:59:40 Times Seen440 Hash 34937f26e51152396b834e50e102f2dd 81f787450083b8392da53bdaa2d0d6f3bd56d276 7db6bb669497456cc590d699a35dcca2d38353d8c328bf3b31a9466fb4342884 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	86 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 142.250.74.74 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-26 04:29:25 Times Seen384426 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/	240 B	2023-03-07	2024-04-17
Pretty URL atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ IP 54.230.111.83 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11:38 Last Seen2024-04-17 17:59:40 Times Seen441 Hash 50de97825b2918daa368dda639a8024a 0b77821b28eda3aef76092356e4e967c229f2ee6 dcf2d0b3983f04adc14048d81b5925aefa8a6b8de10d4ba6e4de760bf0753529 Loading...

	atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/	313 B	2023-03-07	2024-04-17
Pretty URL atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ IP 54.230.111.83 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:11:38 Last Seen2024-04-17 17:59:40 Times Seen437 Hash ff8473b23401ac7c8ceca7d4514e2a3b f595ea0435fdc1dd8dce19c7c5ba918206e6d29c 05162cb300add7ffa655a944340cbbc8053a79e5f5e59e61c9798e8ba4d79f4c Loading...

	atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/	5.0 kB	2023-06-01	2023-06-01
Pretty URL atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ IP 54.230.111.83 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-01 06:32:30 Last Seen2023-06-01 06:32:30 Times Seen1 Hash 8f72bbafb0e72d92c0cdcdefc623e63a e42e64415d98586d48c6690fc2c572985d2631e5 78dbf9c463bda362fb1303d9f5a4f587ec5e6fe95f503d083f66c9176804e44b Loading...

	code.jquery.com/jquery-3.1.1.min.js	87 kB	2023-03-07	2024-04-26
Pretty URL code.jquery.com/jquery-3.1.1.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-26 04:36:17 Times Seen263877 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	kit.fontawesome.com/585b051251.js	12 kB	2023-05-30	2024-01-18
Pretty URL kit.fontawesome.com/585b051251.js IP 104.18.22.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-30 20:41:24 Last Seen2024-01-18 06:55:13 Times Seen7051 Hash 4ec685b1e2c1ca5fd6d56e2f4cb0569d a41e1f45db2fbc59562390ba8567ec3373d69510 cac5a0bd86eba50bf4a83d4dc43fe38b759ed39cc8397fdbbaa7ea68b9c63cfa Loading...

HTTP Transactions (16)

URL IP Response Size

ocsp.r2m02.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m02.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
4c9055fe67e19e1568b4cbfcde73bd04
84ea083d4b77186931c5f8e391742c6c43dfd658
209920d72142b9c0d9844cc229065633055339d69037708a92ca066f72d3b1c5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 01 Jun 2023 04:32:10 GMT
Last-Modified: Thu, 01 Jun 2023 04:27:37 GMT
Server: ECAcc (dcb/7339)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RALRBpkXmEFVBqcLqufZHp1r5-sv686uY31UvuHDWrby1zwdGAQ69g==
Age: 275

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
582908ff8bc13bc9b5422491129d8b0e
8deb8d1987e09761ca90108160cc262f1ee8dffa
daa1cabdc684ac8d98c86cd6aa983b52bb982052a8a7b6632f565a606c85a8b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 04:32:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
582908ff8bc13bc9b5422491129d8b0e
8deb8d1987e09761ca90108160cc262f1ee8dffa
daa1cabdc684ac8d98c86cd6aa983b52bb982052a8a7b6632f565a606c85a8b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 04:32:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

142.250.74.74

200 OK

30 kB

URL GET HTTP/3
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (32065)
Size
30 kB (30028 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:16:38 GMT
expires: Thu, 30 May 2024 00:16:38 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 101733
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.1.1.min.js

69.16.175.10

200 OK

30 kB

URL GET HTTP/2
code.jquery.com/jquery-3.1.1.min.js
IP
69.16.175.10:443
ASN
#20446 STACKPATH-CDN

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT

File type
ASCII text, with very long lines (32030)
Size
30 kB (30070 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

HTTP Headers

GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 01 Jun 2023 04:32:11 GMT
content-encoding: gzip
content-length: 30070
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-152b5"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685593931.dop010.sk1.t,1685593931.cds002.sk1.hn,1685593931.cds010.sk1.c
X-Firefox-Spdy: h2

i.imgur.com/C0xqihY.png

151.101.244.193

200 OK

7.8 kB

URL GET HTTP/2
i.imgur.com/C0xqihY.png
IP
151.101.244.193:443
ASN
#54113 FASTLY

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT

File type
PNG image data, 219 x 230, 8-bit colormap, non-interlaced\012- data
Size
7.8 kB (7772 bytes)
Hash
da49f2bbf5712eb2793f17e954ad2098
dcb9a3855656e214230d051a748b6eee8c68f800
46d822ddc27ea747f99f011867aca251f34bffb81f6b791984c9b6bdcfae8ca3

HTTP Headers

GET /C0xqihY.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 22 Aug 2022 05:53:08 GMT
etag: "da49f2bbf5712eb2793f17e954ad2098"
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: 8Vrf5zvcSb19Rw_BFnikDxIQniXhS7mIkR9kF9YVHvo8lu8ahfYx8g==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Thu, 01 Jun 2023 04:32:11 GMT
age: 1369405
x-served-by: cache-iad-kiad7000075-IAD, cache-hel1410024-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 1318, 0
x-timer: S1685593932.790901,VS0,VE102
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 7772
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
582908ff8bc13bc9b5422491129d8b0e
8deb8d1987e09761ca90108160cc262f1ee8dffa
daa1cabdc684ac8d98c86cd6aa983b52bb982052a8a7b6632f565a606c85a8b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 04:32:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
582908ff8bc13bc9b5422491129d8b0e
8deb8d1987e09761ca90108160cc262f1ee8dffa
daa1cabdc684ac8d98c86cd6aa983b52bb982052a8a7b6632f565a606c85a8b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 04:32:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251

172.64.203.28

200 OK

43 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
IP
172.64.203.28:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:14:F2:7A:2C:AE:36:01:38:B7:F7:3D:DB:44:3E:3F:5C:FB:6B:15
ValidityFri, 12 Aug 2022 00:00:00 GMT - Sat, 12 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (60130)
Size
43 kB (42921 bytes)
Hash
a12ec7ebe75a4d59a5dd6b79e2ba2e16
28f5dcc595ee6d4163481ef64170180502c8629b
fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda

HTTP Headers

GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Origin: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 01 Jun 2023 04:32:12 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 59970c86d3717db509a968eaad0da4de.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: Uq8Y5hFRNetNXuaIJfPCqTDWb2KP5LN3CudTHpPbQ-INDpvc5q8_Cg==
age: 11402
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3bL6xe1AicBolL0syvIoEH4RVqzViNqV1zuML7w%2FtNPmQ9tsscfMCMeNFDxzZV%2Ft%2BQnxpame5u%2Bt1EzcyJEY4uGCwy3CoN9pnBnFMvVNYIfIam7n%2B%2F2cV0v0Glz2dSy856sKUV%2FWuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d04bb3bceff240b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2

172.64.203.28

200 OK

78 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/webfonts/free-fa-solid-900.woff2
IP
172.64.203.28:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:14:F2:7A:2C:AE:36:01:38:B7:F7:3D:DB:44:3E:3F:5C:FB:6B:15
ValidityFri, 12 Aug 2022 00:00:00 GMT - Sat, 12 Aug 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 78168, version 331.-31196\012- data
Size
78 kB (78168 bytes)
Hash
a9fd1225fb2cd32320e2b931dca01089
44ec5c6a868b4ce62350d9f040ed8e18f7a1d128
c5dd43f53f3af822cbf17b1fb75f46192cdbd51724f277acf6cf0dacb3fd57e7

HTTP Headers

GET /releases/v5.15.4/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Jun 2023 04:32:12 GMT
content-type: font/woff2
content-length: 78168
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:58:24 GMT
etag: "a9fd1225fb2cd32320e2b931dca01089"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 ce738519b722f3350531751d4205f8f4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: CpPvExoHI8iA1B0tr_Ay8rbMjJYQHoW-rIO2qJdy6PmhePwUCHy3EA==
age: 11402
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F2WR3G2IW%2BqNrZmf31sHEkg5icpIxhYtNSnq%2Bje9qjjbOmO%2Boh1CIXg5A6MLgNEDxUOnnPWo3b2BCWBuqIzgYy0EhRxuKc8hzvgY%2F9bO2mIJaES4K8XGrCvzsH8TkDfyUbvW9nofIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d04bb3d4823240b-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/

54.230.111.83

200 OK

29 kB

URL User Request GET HTTP/2
atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
IP
54.230.111.83:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectarweave.net
FingerprintC3:1E:18:04:64:7C:14:FF:D6:D3:78:08:94:FB:CC:27:AA:55:0E:1B
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sun, 07 Jan 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (63372), with CRLF line terminators
Size
29 kB (29275 bytes)
Hash
c49e57ca34565ce14aabf247a7df12cb
871ff8385400f89332f6ef33da9b78f4a6e4a63a
c7bf1df72ecdba741efb3779561455b2474d6bc58d6a072306df5b0a0f22c67e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic phishing

HTTP Headers

GET /BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/ HTTP/1.1
Host: atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 01 Jun 2023 04:32:11 GMT
x-trace: E9WFRNw1tT
cache-control: public,must-revalidate,max-age=2592000
content-encoding: br
x-cache: Miss from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1t94RZPMHbjnCVrYMOU4n8vRs6uiwTn2M8vUccd7wFk-_Wjp-E3qMA==
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/css/hover.css

54.230.111.83

200 OK

0 B

URL GET HTTP/2
atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/css/hover.css
IP
54.230.111.83:443
ASN
#16509 AMAZON-02

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerAmazon
Subjectarweave.net
FingerprintC3:1E:18:04:64:7C:14:FF:D6:D3:78:08:94:FB:CC:27:AA:55:0E:1B
ValidityFri, 09 Dec 2022 00:00:00 GMT - Sun, 07 Jan 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/css/hover.css HTTP/1.1
Host: atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 01 Jun 2023 04:32:12 GMT
x-trace: 5VivQ49qh
cache-control: public,must-revalidate,max-age=2592000
content-encoding: br
x-cache: Miss from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _pJQ0kCbS82UDDB_1nkcU9Ni4ktjHCoAc4FfDLIwssboBQBLtoXUTA==
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251

172.64.203.28

200 OK

27 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
IP
172.64.203.28:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint49:14:F2:7A:2C:AE:36:01:38:B7:F7:3D:DB:44:3E:3F:5C:FB:6B:15
ValidityFri, 12 Aug 2022 00:00:00 GMT - Sat, 12 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (26500)
Size
27 kB (26682 bytes)
Hash
76f34b71fc9fb641507ff6a822cc07f5
73ed2f8f21cd40fb496e61306acbb5849d4dbff4
6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8

HTTP Headers

GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Origin: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 01 Jun 2023 04:32:12 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 905eac6c91c9858bd0f20b56e9c842d4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: Fy4V_FEGw20dWadzAeiqJHQCnDRC6ua9LXK_D-rvaK506h0bVTuTqg==
age: 11402
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HEOTpGyCTRNiQdsw2KDA4JgxP4pShlqJKUjkWfvFDXIrnHaWutUM%2F9DYW2MKBGacbVET3GpYQXFDtWTSEPBkvd3Z9P6Pai3WsD6rWJXgHa2Ws4W82rUUFz3ui0kI6IGlGTBwCvdN2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7d04bb3bcefb240b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

docucdn-a.akamaihd.net/olive/images/2.15.0/favicons/favicon.ico

23.36.77.32

200 OK

7.4 kB

URL GET HTTP/2
docucdn-a.akamaihd.net/olive/images/2.15.0/favicons/favicon.ico
IP
23.36.77.32:443
ASN
#20940 Akamai International B.V.

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel\012- data
Size
7.4 kB (7405 bytes)
Hash
888e04d5d5ff290d47bf73787f1e0bfc
c8edc4b60bb909c025b908f4adbeea557581687c
387483b8c9fb9f677e0d72d066945675540fe417e6e6c70baa9c013cb8fc88cd

HTTP Headers

GET /olive/images/2.15.0/favicons/favicon.ico HTTP/1.1
Host: docucdn-a.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: AkamaiGHost
mime-version: 1.0
unused62: 8096267
accept-ranges: bytes
content-type: image/x-icon
etag: "888e04d5d5ff290d47bf73787f1e0bfc:1584027770.848895"
last-modified: Thu, 12 Mar 2020 15:40:31 GMT
content-length: 7405
cache-control: max-age=3628800
date: Thu, 01 Jun 2023 04:32:12 GMT
x-content-type-options: nosniff
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Archivo+Narrow&display=swap

142.250.74.106

200 OK

1.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Archivo+Narrow&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (1320), with no line terminators
Size
1.3 kB (1293 bytes)
Hash
1438d721a96f081ae0cbca8b142cfed0
54d195d18a5691d999d88592aaf84b865030dd69
e7578d54c23bf5f7069220f26cf655caa20935e42a873299e28f3d51d08f8d9b

HTTP Headers

GET /css?family=Archivo+Narrow&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Jun 2023 04:32:11 GMT
date: Thu, 01 Jun 2023 04:32:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kit.fontawesome.com/585b051251.js

104.18.22.52

200 OK

12 kB

URL GET HTTP/2
kit.fontawesome.com/585b051251.js
IP
104.18.22.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/BOqn2Kq4uyLD8OOtV1Wo1iFpb3LTKkmqXFD3ezLJGSo/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (11213)
Size
12 kB (11645 bytes)
Hash
4ec685b1e2c1ca5fd6d56e2f4cb0569d
a41e1f45db2fbc59562390ba8567ec3373d69510
cac5a0bd86eba50bf4a83d4dc43fe38b759ed39cc8397fdbbaa7ea68b9c63cfa

HTTP Headers

GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net
DNT: 1
Connection: keep-alive
Referer: https://atvkpwfkxc5sfq7q4owvovni2yqws33s2mvetks4kd3xwmwjdeva.arweave.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 01 Jun 2023 04:32:11 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F2RuwBQEhnOr4N4UMtDi
cf-cache-status: MISS
server: cloudflare
cf-ray: 7d04bb398d941c0e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL