Report - kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC

Report Overview

Visited public
2023-12-31 04:40:03
Tags
URL
kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC
Finishing URL
kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC
IP / ASN
104.26.5.28
#13335 CLOUDFLARENET
Title
Kioskloud

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-30 10:03:18	901 B	10 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-30 11:21:10	1.6 kB	162 kB	216.58.211.3
kioskloud.io	unknown	2023-05-09	2023-05-09 19:28:36	2023-12-02 22:09:33	3.2 kB	1.1 MB	104.26.5.28
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2023-12-30 16:29:00	500 B	24 kB	104.16.57.101
developers.cloudflare.com	592034	2009-02-17	2012-09-07 18:49:35	2023-12-24 05:12:48	412 B	1.5 kB	104.16.5.189
r2.cloudflarestorage.com	unknown	2018-07-31	2022-02-14 19:32:15	2023-12-27 05:13:33	409 B	313 B	104.18.9.90
i.postimg.cc	23840	2016-06-11	2018-04-11 12:01:12	2023-12-30 14:34:02	898 B	26 kB	162.19.61.80

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-31 04:39:37	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-12-31 04:39:37	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	From	Size	First Seen	Last Seen
	kioskloud.io/js/f97a1c7e.js	ScriptElement	2.2 MB	2023-12-24	2024-08-20
Pretty URL kioskloud.io/js/f97a1c7e.js IP 104.26.5.28 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-24 05:26 Last Seen2024-08-20 15:09 Times Seen12 Hash d7e48403280cee2b07dc0d57cdd34cd3 19d6ea1e8297b4bde9de51f6dbe8cd4fe07b5d8a a9298830ce28f63398e001c83eea9bb510595c7a3cd41032ade0ad906b8dc074 Loading...

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	ScriptElement	20 kB	2023-10-13	2025-05-13
Pretty URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:51 Last Seen2025-05-13 13:37 Times Seen17153 Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Loading...

	kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC	ScriptElement	51 B	2023-12-24	2024-08-20
Pretty URL kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC IP 104.26.5.28 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-24 05:26 Last Seen2024-08-20 15:09 Times Seen12 Hash b3cf1e1f3dcf6a24b79fbcf45b89d084 8d9685573719b071adbfd177035fda22c28b52cc 0e621b6e8c1d74678e44b69a3be3ec7d51045c6007c99a57a2c35582fb8d780e Loading...

	kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC	ScriptElement	105 B	2024-08-20	2024-08-20
Pretty URL kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC IP 104.26.5.28 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 14:31 Last Seen2024-08-20 14:31 Times Seen1 Hash d97512e60100228e7a600e76a027d0a2 aa8136bb1c6ac4b3bdec0db06cbea9f1fd18f530 65e904e02ef47b5a68a8e537dc629a0f40bb00aa12d937ceec0c0ad034426fac Loading...

	kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC	ScriptElement	0 B	0001-01-01	2025-05-14
Pretty URL kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC IP 104.26.5.28 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-14 06:31 Times Seen4677646 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (16)

	URL	IP	Response	Size
	fonts.googleapis.com/icon?family=Material+Icons	142.250.74.106	200 OK	340 B
URL GET HTTP/2 fonts.googleapis.com/icon?family=Material+Icons IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text Size 340 B (340 bytes) Hash 5d4da5ee94d85e6f44b4d919ba7d11a3 fb39946b64093b7cad719f1a00ad798dd6a4f3d9 3bc9eb45e54675f062678c8f05798879ca1a6419f6dd3079279d25d3726fc076 HTTP Headers `GET /icon?family=Material+Icons HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 31 Dec 2023 04:39:37 GMT date: Sun, 31 Dec 2023 04:39:37 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2	216.58.211.3	200 OK	128 kB
URL GET HTTP/2 fonts.gstatic.com/s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP 216.58.211.3:443 ASN #15169 GOOGLE Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0 Size 128 kB (128352 bytes) Hash 53436aca8627a49f4deaaa44dc9e3c05 0bc0c675480d94ec7e8609dda6227f88c5d08d2c 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1 HTTP Headers GET /s/materialicons/v140/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://kioskloud.io DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 128352 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 30 Dec 2023 02:44:42 GMT expires: Sun, 29 Dec 2024 02:44:42 GMT cache-control: public, max-age=31536000 age: 93296 last-modified: Tue, 07 Mar 2023 19:51:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2	216.58.211.3	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP 216.58.211.3:443 ASN #15169 GOOGLE Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0 Size 16 kB (15920 bytes) Hash 3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://kioskloud.io DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15920 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 29 Dec 2023 13:33:04 GMT expires: Sat, 28 Dec 2024 13:33:04 GMT cache-control: public, max-age=31536000 age: 140794 last-modified: Wed, 11 May 2022 19:24:45 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC	104.26.5.28	200 OK	18 kB
URL User Request GET HTTP/2 kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC IP 104.26.5.28:443 ASN #13335 CLOUDFLARENET Certificate IssuerLet's Encrypt Subjectkioskloud.io FingerprintAC:2C:C3:68:FD:98:DB:DF:FA:9F:AD:B0:16:9A:BA:5B:B4:86:6D:EE ValiditySat, 02 Dec 2023 20:07:15 GMT - Fri, 01 Mar 2024 20:07:14 GMT File type HTML document, ASCII text, with very long lines (1749) Size 18 kB (18311 bytes) Hash 11caf3f692cdbb1600cc98846ec30fcd fddb198c66a8738d8d717b4106e18c2dddaf6382 b443142a8eab02e5701ab87f6c47c845bf53d0703463548f9c30f2d4f9879517 HTTP Headers GET /d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC HTTP/1.1 Host: kioskloud.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sun, 31 Dec 2023 04:39:36 GMT content-type: text/html; charset=utf-8 cache-control: private, max-age=100 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z7018vEHXO9nYIoQJQ6A2pcPJIbhuCuf6llUUmhAXtQJTz07rie%2Bp%2FljtERghdO%2FuIkwCebYhfsOH13cOorEj1RgZeu6FcMYECLmNVJKsE2mYJca5OBKnfSX%2BkJ1BA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83dfd6f28f625685-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	kioskloud.io/js/f97a1c7e.js	104.26.5.28	200 OK	583 kB
URL GET HTTP/3 kioskloud.io/js/f97a1c7e.js IP 104.26.5.28:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerLet's Encrypt Subjectkioskloud.io FingerprintAC:2C:C3:68:FD:98:DB:DF:FA:9F:AD:B0:16:9A:BA:5B:B4:86:6D:EE ValiditySat, 02 Dec 2023 20:07:15 GMT - Fri, 01 Mar 2024 20:07:14 GMT File type ASCII text, with very long lines (14870) Size 583 kB (583154 bytes) Hash d7e48403280cee2b07dc0d57cdd34cd3 19d6ea1e8297b4bde9de51f6dbe8cd4fe07b5d8a a9298830ce28f63398e001c83eea9bb510595c7a3cd41032ade0ad906b8dc074 HTTP Headers `GET /js/f97a1c7e.js HTTP/1.1 Host: kioskloud.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Sun, 31 Dec 2023 04:39:38 GMT content-type: text/javascript; charset=utf-8 cache-control: s-maxage=0, max-age=31536000 etag: W/"f97a1c7e" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bskg0keUUb3wzHSuMrtKBH65kc8iLT3Bxs5SrOe4Jg5meUy9XgGO47XI2Y5sSotwX5XNp527GPpGvU45bDfm0CsNynlia3ZK6lwPwkmtnzARNflUBynOxSZJFyp%2FPw%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83dfd6f87b55b4f3-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	104.16.57.101	200 OK	24 kB
URL GET HTTP/2 static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.57.101:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8 ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT File type gzip compressed data, from Unix Size 24 kB (23918 bytes) Hash fe23ee86d1a684b6260a8dbdfc362f52 99f0ec134ddb6e1deb61ed7566fc3b328324864b f6066cb9f7913d909667ec42482c9eada505a272903173efa828cf7606a19b83 HTTP Headers `GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://kioskloud.io DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sun, 31 Dec 2023 04:39:37 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/"2023.10.0" last-modified: Tue, 10 Oct 2023 21:38:13 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 83dfd6f8bd3756a9-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	kioskloud.io/cdn-cgi/rum?	104.26.5.28	204 No Content	0 B
URL POST HTTP/3 kioskloud.io/cdn-cgi/rum? IP 104.26.5.28:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerLet's Encrypt Subjectkioskloud.io FingerprintAC:2C:C3:68:FD:98:DB:DF:FA:9F:AD:B0:16:9A:BA:5B:B4:86:6D:EE ValiditySat, 02 Dec 2023 20:07:15 GMT - Fri, 01 Mar 2024 20:07:14 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: kioskloud.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 3703 Origin: https://kioskloud.io DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Cookie: clientInstallation=true Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 204 No Content date: Sun, 31 Dec 2023 04:39:38 GMT access-control-allow-origin: https://kioskloud.io access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 83dfd704ae7bb4f3-OSL x-frame-options: DENY x-content-type-options: nosniff`

	kioskloud.io/cdn-cgi/rum?	104.26.5.28	204 No Content	0 B
URL POST HTTP/3 kioskloud.io/cdn-cgi/rum? IP 104.26.5.28:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerLet's Encrypt Subjectkioskloud.io FingerprintAC:2C:C3:68:FD:98:DB:DF:FA:9F:AD:B0:16:9A:BA:5B:B4:86:6D:EE ValiditySat, 02 Dec 2023 20:07:15 GMT - Fri, 01 Mar 2024 20:07:14 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: kioskloud.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 674 Origin: https://kioskloud.io DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Cookie: clientInstallation=true Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/3 204 No Content date: Sun, 31 Dec 2023 04:40:00 GMT access-control-allow-origin: https://kioskloud.io access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 83dfd7886911b4f3-OSL x-frame-options: DENY x-content-type-options: nosniff`

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.211.3	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.211.3:443 ASN #15169 GOOGLE Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint5F:60:69:C9:59:6D:F1:B5:87:82:8D:B0:57:3C:D9:24:10:FD:74:D1 ValidityMon, 20 Nov 2023 08:08:49 GMT - Mon, 12 Feb 2024 08:08:48 GMT File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0 Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://kioskloud.io DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 30 Dec 2023 00:53:44 GMT expires: Sun, 29 Dec 2024 00:53:44 GMT cache-control: public, max-age=31536000 age: 99954 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	developers.cloudflare.com/r2	104.16.5.189	200 OK	0 B
URL GET HTTP/2 developers.cloudflare.com/r2 IP 104.16.5.189:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerGoogle Trust Services LLC Subjectdevelopers.cloudflare.com Fingerprint9A:B9:8A:78:CA:60:9E:67:E4:6B:A6:CD:5B:0C:68:DF:C7:11:56:52 ValidityTue, 28 Nov 2023 19:55:52 GMT - Mon, 26 Feb 2024 19:55:51 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /r2 HTTP/1.1 Host: developers.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://kioskloud.io/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 31 Dec 2023 04:39:38 GMT content-type: text/html; charset=utf-8 access-control-allow-origin: * cache-control: public, max-age=0, must-revalidate link: <https://cdn.cookielaw.org/scripttemplates/otSDKStub.js>; rel=preload; as=script, <https://cdn.cookielaw.org/consent/d3bba612-bde9-4daa-93e3-a78dab7d1a86/OtAutoBlock.js>; rel=preload; as=script, <https://cdn.jsdelivr.net/npm/@docsearch/css@3.5.1>; rel=preload; as=style, <https://cdn.jsdelivr.net/npm/@docsearch/js@3.5.1>; rel=preload; as=script, <https://8MU1G3QO9P-dsn.algolia.net>; rel=preconnect; crossorigin referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kIeSRWzG%2BbmGeOFNy4CYPVO0owUxRq9idtDxJbDIcy5k8q4GhEbw3Kx26i8Ijp2vJTpNGDHufRoYcKI15iOhFsoLKhEzUJARNaR57r5G2SW2ZzhxoL8noP9DW0f1zW4TMcnmKtVMKcbQi5e1"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding cf-cache-status: DYNAMIC set-cookie: __cf_bm=JqforJzqyCj4gaVXfx4q1a4Ugphp1fTTTb.CAxMWzHU-1703997578-1-AXL+ZTE+Ms+zGezB621z0ioUhlHHTQ0oN8gmTEZmYvhoROcCEa4GaiNhar+TS6dlQIzFRcMKbQ7P8jCKCxF740Y=; path=/; expires=Sun, 31-Dec-23 05:09:38 GMT; domain=.developers.cloudflare.com; HttpOnly; Secure; SameSite=None strict-transport-security: max-age=15552000; preload server: cloudflare cf-ray: 83dfd703aa89b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Roboto:300,400,500,600,700	142.250.74.106	200 OK	8.5 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,600,700 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint10:D0:ED:9A:F4:53:C8:99:DE:B6:5E:5C:04:E6:20:0B:68:7D:46:EC ValidityMon, 20 Nov 2023 08:08:50 GMT - Mon, 12 Feb 2024 08:08:49 GMT File type ASCII text, with very long lines (8716), with no line terminators Size 8.5 kB (8492 bytes) Hash 1303310bf811cbabe52e473a56247b05 76a5d89fcefb4e769642a6636f439f3f03833429 ccc9d8c0b923b1470e8ddb0309ed98c9419fd7abb32ead3c0dcebbc30ea84778 HTTP Headers `GET /css?family=Roboto:300,400,500,600,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 31 Dec 2023 04:39:37 GMT date: Sun, 31 Dec 2023 04:39:37 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	kioskloud.io/css/6ee931f3.css	104.26.5.28	200 OK	526 kB
URL GET HTTP/3 kioskloud.io/css/6ee931f3.css IP 104.26.5.28:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerLet's Encrypt Subjectkioskloud.io FingerprintAC:2C:C3:68:FD:98:DB:DF:FA:9F:AD:B0:16:9A:BA:5B:B4:86:6D:EE ValiditySat, 02 Dec 2023 20:07:15 GMT - Fri, 01 Mar 2024 20:07:14 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 526 kB (526252 bytes) Hash 82c3c2d832b9d655cddc881b9582f1c1 299b5ddd85f9098dcc30556d86c8e5ca02cf9bd2 6ee931f369b69410637e34aa7e799b2723fef49accbca7b7e06df54eb8043d12 HTTP Headers `GET /css/6ee931f3.css HTTP/1.1 Host: kioskloud.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Sun, 31 Dec 2023 04:39:37 GMT content-type: text/css; charset=utf-8 cache-control: s-maxage=0, max-age=31536000 etag: W/"6ee931f3" report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n9B92l43%2BU5KMbX0dhgwSkgpXF90YWMgowQcXEZY6VRx4NxTU1nLm2D6RT2MLZ1KGZiQIwsv0Brzink%2BYUnXqGIzmmC0CD6wzZ%2BXfXpTYOUa4FLq5KK%2BF6Q2zHX87Q%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83dfd6f87b58b4f3-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	r2.cloudflarestorage.com/	104.18.9.90	301 Moved Permanently	0 B
URL GET HTTP/1.1 r2.cloudflarestorage.com/ IP 104.18.9.90:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerCloudflare, Inc. Subjectr2.cloudflarestorage.com FingerprintC0:3A:4D:23:FB:8C:14:DF:D8:9B:2B:42:A0:56:14:D2:CA:D7:39:7D ValiditySun, 31 Dec 2023 00:00:00 GMT - Sat, 30 Mar 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: r2.cloudflarestorage.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://kioskloud.io/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Sun, 31 Dec 2023 04:39:38 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sun, 31 Dec 2023 05:39:38 GMT Location: https://developers.cloudflare.com/r2 Vary: Accept-Encoding Server: cloudflare CF-RAY: 83dfd701da46b515-OSL`

	i.postimg.cc/XqxdXxyV/file-patreon-logo-icon-147253.png	162.19.61.80	200 OK	17 kB
URL GET HTTP/2 i.postimg.cc/XqxdXxyV/file-patreon-logo-icon-147253.png IP 162.19.61.80:443 ASN #16276 OVH SAS Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerLet's Encrypt Subjectpostimg.cc Fingerprint52:10:45:F0:9A:56:B6:08:FC:57:C5:41:7E:A8:18:09:D1:CD:30:42 ValiditySat, 23 Dec 2023 07:47:58 GMT - Fri, 22 Mar 2024 07:47:57 GMT File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Size 17 kB (17064 bytes) Hash 5e20b3ca9d9e4c82dde62b9524da6236 583ed7d152bf48eb584bf24166da42601ea46715 dfb52f83f966d3320a59f9f192ecd28a92197eb190f0f71d378a01052e219eff HTTP Headers `GET /XqxdXxyV/file-patreon-logo-icon-147253.png HTTP/1.1 Host: i.postimg.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sun, 31 Dec 2023 04:39:38 GMT content-type: image/png content-length: 17064 last-modified: Sat, 23 Jul 2022 08:36:26 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	i.postimg.cc/VkPmd1mk/image.png	162.19.61.80	200 OK	8.3 kB
URL GET HTTP/2 i.postimg.cc/VkPmd1mk/image.png IP 162.19.61.80:443 ASN #16276 OVH SAS Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerLet's Encrypt Subjectpostimg.cc Fingerprint52:10:45:F0:9A:56:B6:08:FC:57:C5:41:7E:A8:18:09:D1:CD:30:42 ValiditySat, 23 Dec 2023 07:47:58 GMT - Fri, 22 Mar 2024 07:47:57 GMT File type PNG image data, 225 x 225, 8-bit/color RGB, non-interlaced Size 8.3 kB (8299 bytes) Hash 79d7218651372ed69afab3d6176895dc 4d113d6000a46b7f6d5ab520857cdf9d6693619d 78186d5e8e2cc9f41f1fac467a5c78126e249b8ecf5d33337f3b72753c268450 HTTP Headers `GET /VkPmd1mk/image.png HTTP/1.1 Host: i.postimg.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://kioskloud.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sun, 31 Dec 2023 04:39:38 GMT content-type: image/png content-length: 8299 last-modified: Sat, 23 Jul 2022 08:37:45 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	kioskloud.io/download/content/data	104.26.5.28	200 OK	899 B
URL POST HTTP/3 kioskloud.io/download/content/data IP 104.26.5.28:443 ASN #13335 CLOUDFLARENET Requested by https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Certificate IssuerLet's Encrypt Subjectkioskloud.io FingerprintAC:2C:C3:68:FD:98:DB:DF:FA:9F:AD:B0:16:9A:BA:5B:B4:86:6D:EE ValiditySat, 02 Dec 2023 20:07:15 GMT - Fri, 01 Mar 2024 20:07:14 GMT File type troff or preprocessor input, ASCII text, with very long lines (921), with no line terminators Size 899 B (899 bytes) Hash b5b15aa21b7cb1316db343f73ac73e63 b53a259b43acbef472d39185e5645345ece57c4c d6b7e0a7cac6b83eb7ffd50638d50a7f0e4a0b99472e7669b7a619dfe35d76c0 HTTP Headers POST /download/content/data HTTP/1.1 Host: kioskloud.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://kioskloud.io/d/658c20c11f9cbd556d39718c-TPYCHCY6H6TRCUT2NZGHORCCG53WY5SC Content-Type: application/json Content-Length: 322 Origin: https://kioskloud.io DNT: 1 Connection: keep-alive Cookie: clientInstallation=true Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Sun, 31 Dec 2023 04:39:39 GMT content-type: application/json report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ef1jIgACJzNpxMGSk62lYMx4vwr4nh4p2h8XedA61hWgFhru1oPoTaBopeLBYm2KcDAYb8mrY5szioip8l5GBcxNvkdqctj0z5ZMsU%2F3OMtTLkzn771ZX7jeEy4JQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding strict-transport-security: max-age=15552000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 83dfd703fe53b4f3-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (16)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate