Report - www.gelodoporto.com.br/include/card.php

Report Overview

Visited public
2025-03-24 05:41:53
Tags
dyndns suspicious
Submit Tags
URL
www.gelodoporto.com.br/include/card.php
Finishing URL
www.gelodoporto.com.br/include/card.php
IP / ASN
173.236.244.92
#26347 DREAMHOST-AS
Title
MyTax
Suspicious - DynDNS domain
Suspicious - Suspicious Javascript code

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.gelodoporto.com.br	unknown	2023-08-01	2025-03-21	2025-03-21	2.9 kB	813 kB	173.236.244.92
cdnjs.cloudflare.com	235	2009-02-17	2012-05-23	2025-03-19	916 B	98 kB	104.17.24.14
telegrambotcheck.duckdns.org	unknown	2013-04-12	2024-05-03	2025-03-16	562 B	156 B	102.165.14.4
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-03-19	460 B	1.5 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js	ScriptElement	8.3 kB	2023-03-07	2025-07-04
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-07-04 02:09 Times Seen6760 Hash cc290e6c3aeecf5021dd82ad8df2512a fb983aecd3940e8ebbfe5e74c8099cee9223c957 2a0db34dc14ef4b5ce73b230701c7561e5012667a4c9cb274ecab646e1474995 Loading...

	www.gelodoporto.com.br/include/res/jq.js	ScriptElement	369 kB	2024-05-16	2025-07-04
Pretty URL www.gelodoporto.com.br/include/res/jq.js IP 173.236.244.92 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-16 02:47 Last Seen2025-07-04 07:12 Times Seen938 Hash da5dde515a49fb9248e84c45d5a63370 37825dc4bfb94d3def358d26e6ba0d13840e4045 d066c11600369c32eea993e482d74be1bcc76c906f18f2ea7cd995bba6ecc385 Loading...

	www.gelodoporto.com.br/include/card.php	Function	916 B	2024-05-16	2025-07-04
Pretty URL www.gelodoporto.com.br/include/card.php IP 173.236.244.92 ASN #26347 DREAMHOST-AS Introduced by Function Embedded in HTML false Observations First Seen2024-05-16 02:47 Last Seen2025-07-04 07:12 Times Seen946 Hash f957c88e86e92c7bf2bb53eb18f0971f b7d66c72b9a91ecd028c4d25bc7cbf31806352bf 12cf38da03df33d1540f05e342eb443ff92740de80ecc40ee6ec8e7956277e7e Loading...

	www.gelodoporto.com.br/include/card.php	Function	2.0 kB	2024-05-16	2025-07-04
Pretty URL www.gelodoporto.com.br/include/card.php IP 173.236.244.92 ASN #26347 DREAMHOST-AS Introduced by Function Embedded in HTML false Observations First Seen2024-05-16 02:47 Last Seen2025-07-04 07:12 Times Seen946 Hash aff49177ae9c77724783cfb192546baa cc7e7afc26962ac345ecb42840891c68754c6722 30ed5f646abec0aaec9d0818bf2c05f98081420cd99fcbab3b8653f2542348b9 Loading...

	www.gelodoporto.com.br/include/card.php	ScriptElement	59 B	2025-03-21	2025-04-09
Pretty URL www.gelodoporto.com.br/include/card.php IP 173.236.244.92 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-21 08:00 Last Seen2025-04-09 08:21 Times Seen3 Hash 3da2e592e3a45c6d4e27af7e74172fcb fe19137123ac722ed9a2377962b602439ae6e92a f2fa977be2ee91e080d4efc2127a810b45e629925aa21484bb346e313c415b39 Loading...

	www.gelodoporto.com.br/include/card.php	ScriptElement	88 B	2024-10-11	2025-06-04
Pretty URL www.gelodoporto.com.br/include/card.php IP 173.236.244.92 ASN #26347 DREAMHOST-AS Introduced by scriptElement Embedded in HTML true Observations First Seen2024-10-11 08:35 Last Seen2025-06-04 08:38 Times Seen11 Hash a368410cc79cb319188f30439b03d87a 1159f34e9f611a2b8005a67eedca546b29fc857e bf1fa181f630feec84ba6cf2dfc401fcf348cec1a23291b6b0f312813f272945 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js	ScriptElement	88 kB	2023-08-31	2025-07-04
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-31 16:03 Last Seen2025-07-04 08:22 Times Seen44457 Hash 2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a Loading...

HTTP Transactions (10)

URL IP Response Size

GET www.gelodoporto.com.br/include/res/img/logo-right.png

173.236.244.92

200 OK

181 kB

URL GET
www.gelodoporto.com.br/include/res/img/logo-right.png
IP
173.236.244.92:443
ASN
#26347 DREAMHOST-AS

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerLet's Encrypt
Subjectwww.gelodoporto.com.br
FingerprintE4:15:0F:A4:DA:04:DA:3C:B7:A2:4A:0C:9C:A2:52:79:A3:99:D2:0B
ValiditySat, 01 Mar 2025 07:50:48 GMT - Fri, 30 May 2025 07:50:47 GMT

File type
PNG image data, 898 x 218, 8-bit/color RGBA, non-interlaced
Size
181 kB (181380 bytes)
Hash
de8387d0043560af60ad6fad70a7ef53
eea3387be57dbb86365aa7e15cfae8bac30a242e
e2320b27fade0c77c660f5cd376bd931ea9de86a2364b4f89c5a6313e884d499

HTTP Headers

GET /include/res/img/logo-right.png HTTP/1.1
Host: www.gelodoporto.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/include/card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 17 Sep 2024 09:05:56 GMT
etag: "2c484-6224cff478500"
accept-ranges: bytes
content-length: 181380
cache-control: max-age=2592000
expires: Wed, 23 Apr 2025 05:41:31 GMT
vary: User-Agent,Accept-Encoding
content-type: image/png
date: Mon, 24 Mar 2025 05:41:31 GMT
server: Apache
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js

104.17.24.14

200 OK

8.3 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (8550), with no line terminators
Size
8.3 kB (8327 bytes)
Hash
330ced9fb9619c9b605e47730355869a
842f7329266618618689052402242fc3ffb50378
2950fccfc1560fd10d219e1ac89bb2da789794eba5b5288311c1b3b4a6aab945

HTTP Headers

GET /ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 24 Mar 2025 05:41:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 3074
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-2087"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 285006
expires: Sat, 14 Mar 2026 05:41:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=69m3DsqbIAT97sp71ohF5Pacomgu0h7h4ZdhlL8bc2Pxhy9XwU7PIFkaznUXwphXjNcjiifmykuN8SYrnH0SoN2hkAJZqASHKvsVsH6cLtITdi6NWvUcTo97DyjcVYZxmP2mywQy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9253d70a9eed568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

POST telegrambotcheck.duckdns.org:5001/receive_token?referrer=loco

102.165.14.4

200 OK

13 B

URL POST
telegrambotcheck.duckdns.org:5001/receive_token?referrer=loco
IP
102.165.14.4:5001
ASN
#397423 TIER-NET

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerSectigo Limited
Subjecttelegrambotcheck.duckdns.org
FingerprintAA:9A:6C:CD:FD:08:C4:6B:49:1F:5D:E4:58:27:41:6A:90:CE:1F:FB
ValidityFri, 03 May 2024 00:00:00 GMT - Sat, 03 May 2025 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
13 B (13 bytes)
Hash
58bede4a7735521978693943a044a600
3b920f698c36ab96176eae0f330449acf0510635
b3245801ba28071735b9a8e59e66e4bd98fb9ad443dfe711a75022199d75226a

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain

HTTP Headers

POST /receive_token?referrer=loco HTTP/1.1
Host: telegrambotcheck.duckdns.org:5001
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gelodoporto.com.br/
Content-Type: application/x-www-form-urlencoded
Content-Length: 54
Origin: https://www.gelodoporto.com.br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: TwistedWeb/24.3.0
Date: Mon, 24 Mar 2025 05:41:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 13

GET www.gelodoporto.com.br/include/res/img/LHDN_logo.png

173.236.244.92

200 OK

250 kB

URL GET
www.gelodoporto.com.br/include/res/img/LHDN_logo.png
IP
173.236.244.92:443
ASN
#26347 DREAMHOST-AS

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerLet's Encrypt
Subjectwww.gelodoporto.com.br
FingerprintE4:15:0F:A4:DA:04:DA:3C:B7:A2:4A:0C:9C:A2:52:79:A3:99:D2:0B
ValiditySat, 01 Mar 2025 07:50:48 GMT - Fri, 30 May 2025 07:50:47 GMT

File type
PNG image data, 3163 x 2463, 8-bit/color RGBA, non-interlaced
Size
250 kB (250040 bytes)
Hash
2752d3c6e82195b5b7841de1f5c71d39
292d387008a4c1707d0244d65f575395793cdfaf
da44e1af8f8ece6f0dcc6f8a50f86d400c7133cf9c203d75efb303cef239498d

HTTP Headers

GET /include/res/img/LHDN_logo.png HTTP/1.1
Host: www.gelodoporto.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/include/card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 29 Jun 2024 23:42:52 GMT
etag: "3d0b8-61c0fec21f700"
accept-ranges: bytes
content-length: 250040
cache-control: max-age=2592000
expires: Wed, 23 Apr 2025 05:41:32 GMT
vary: User-Agent,Accept-Encoding
content-type: image/png
date: Mon, 24 Mar 2025 05:41:32 GMT
server: Apache
X-Firefox-Spdy: h2

GET www.gelodoporto.com.br/include/card.php

173.236.244.92

200 OK

2.7 kB

URL User Request GET
www.gelodoporto.com.br/include/card.php
IP
173.236.244.92:443
ASN
#26347 DREAMHOST-AS

Certificate
IssuerLet's Encrypt
Subjectwww.gelodoporto.com.br
FingerprintE4:15:0F:A4:DA:04:DA:3C:B7:A2:4A:0C:9C:A2:52:79:A3:99:D2:0B
ValiditySat, 01 Mar 2025 07:50:48 GMT - Fri, 30 May 2025 07:50:47 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (2878), with no line terminators
Size
2.7 kB (2656 bytes)
Hash
d5907aaa6f28faa66383ab60331aaa2f
3cadbdf412ad7ff4c408852207fba92b85db6b82
de57e05a9116ec446c094d1676bfa1f790e93f966ff29dd677b570e8c9187443

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious Javascript code

HTTP Headers

GET /include/card.php HTTP/1.1
Host: www.gelodoporto.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=600
expires: Mon, 24 Mar 2025 05:51:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1103
content-type: text/html; charset=UTF-8
date: Mon, 24 Mar 2025 05:41:31 GMT
server: Apache
X-Firefox-Spdy: h2

GET fonts.googleapis.com/css2?family=Karla&display=swap

142.250.74.10

200 OK

859 B

URL GET
fonts.googleapis.com/css2?family=Karla&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint69:99:38:F9:7C:82:8E:AC:7D:DA:EA:3E:1C:E4:7F:52:1B:36:41:AA
ValidityMon, 10 Mar 2025 08:37:02 GMT - Mon, 02 Jun 2025 08:37:01 GMT

File type
ASCII text, with very long lines (877), with no line terminators
Size
859 B (859 bytes)
Hash
4ade2b92fe5883971abb2f748040f40c
0af80606ea431f1e7bfe66bfe0c8372dcc9a5d96
4d03744ff6be6d8b67f3fc2840dd3d2885400d3544ce19375572b426afd79e6e

HTTP Headers

GET /css2?family=Karla&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 24 Mar 2025 05:41:32 GMT
date: Mon, 24 Mar 2025 05:41:32 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.gelodoporto.com.br/include/res/img/logo.png

173.236.244.92

200 OK

5.3 kB

URL GET
www.gelodoporto.com.br/include/res/img/logo.png
IP
173.236.244.92:443
ASN
#26347 DREAMHOST-AS

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerLet's Encrypt
Subjectwww.gelodoporto.com.br
FingerprintE4:15:0F:A4:DA:04:DA:3C:B7:A2:4A:0C:9C:A2:52:79:A3:99:D2:0B
ValiditySat, 01 Mar 2025 07:50:48 GMT - Fri, 30 May 2025 07:50:47 GMT

File type
PNG image data, 150 x 73, 8-bit/color RGBA, non-interlaced
Size
5.3 kB (5280 bytes)
Hash
b7d727ea7f81e0c12a9350a0635ce462
9fe221f42c53bc774aba82a22433c8666b90de5d
08affdaa0e2f8cc0c5d6260c80eefc945ec2fe79650f029def372d9e0618a000

HTTP Headers

GET /include/res/img/logo.png HTTP/1.1
Host: www.gelodoporto.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/include/card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 17 Sep 2024 08:47:26 GMT
etag: "14a0-6224cbd1e4380"
accept-ranges: bytes
content-length: 5280
cache-control: max-age=2592000
expires: Wed, 23 Apr 2025 05:41:31 GMT
vary: User-Agent,Accept-Encoding
content-type: image/png
date: Mon, 24 Mar 2025 05:41:31 GMT
server: Apache
X-Firefox-Spdy: h2

GET www.gelodoporto.com.br/include/res/css/my.css

173.236.244.92

200 OK

2.1 kB

URL GET
www.gelodoporto.com.br/include/res/css/my.css
IP
173.236.244.92:443
ASN
#26347 DREAMHOST-AS

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerLet's Encrypt
Subjectwww.gelodoporto.com.br
FingerprintE4:15:0F:A4:DA:04:DA:3C:B7:A2:4A:0C:9C:A2:52:79:A3:99:D2:0B
ValiditySat, 01 Mar 2025 07:50:48 GMT - Fri, 30 May 2025 07:50:47 GMT

File type
ASCII text, with very long lines (2308), with no line terminators
Size
2.1 kB (2057 bytes)
Hash
272a7d09c626b151cde2f364904de1d1
6ec7bbd081dec439e26ff9c40a58c770e191609a
332a6e72fe362a766aff0a717955e5f728045d615aa64bd5bfff95676d69d99e

HTTP Headers

GET /include/res/css/my.css HTTP/1.1
Host: www.gelodoporto.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/include/card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 17 Sep 2024 09:10:26 GMT
etag: "809-6224d0f5f6480-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 23 Apr 2025 05:41:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 751
content-type: text/css
date: Mon, 24 Mar 2025 05:41:31 GMT
server: Apache
X-Firefox-Spdy: h2

GET cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js

104.17.24.14

200 OK

88 kB

URL GET
cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87533 bytes)
Hash
2c872dbe60f4ba70fb85356113d8b35e
ee48592d1fff952fcf06ce0b666ed4785493afdc
fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a

HTTP Headers

GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 24 Mar 2025 05:41:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 27446
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64ed75bb-6b36"
last-modified: Tue, 29 Aug 2023 04:36:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 990982
expires: Sat, 14 Mar 2026 05:41:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D1PSXgSaWSnXwmNJu8GcA9XK86%2FsGJrZvWqEjohyaQ2P5OKC9WTg2GlTgRcDP8ISMXlHDASZxc5EZR0irhhXiP%2FkthDEExKTUpS%2FsAINE8vRui4E8IZShZkTjhPK9IGJvHNVuoGq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9253d70aaef1568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.gelodoporto.com.br/include/res/jq.js

173.236.244.92

200 OK

369 kB

URL GET
www.gelodoporto.com.br/include/res/jq.js
IP
173.236.244.92:443
ASN
#26347 DREAMHOST-AS

Requested by
https://www.gelodoporto.com.br/include/card.php
Certificate
IssuerLet's Encrypt
Subjectwww.gelodoporto.com.br
FingerprintE4:15:0F:A4:DA:04:DA:3C:B7:A2:4A:0C:9C:A2:52:79:A3:99:D2:0B
ValiditySat, 01 Mar 2025 07:50:48 GMT - Fri, 30 May 2025 07:50:47 GMT

File type

Size
369 kB (369177 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /include/res/jq.js HTTP/1.1
Host: www.gelodoporto.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gelodoporto.com.br/include/card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 29 Jun 2024 23:00:20 GMT
etag: "5a219-61c0f54058900-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 23 Apr 2025 05:41:32 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: text/javascript
date: Mon, 24 Mar 2025 05:41:32 GMT
server: Apache
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (10)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers