Report - styleftwr.com/

Report Overview

Visited public
2023-11-28 15:37:32
Tags
URL
styleftwr.com/
Finishing URL
styleftwr.com/
IP / ASN
85.187.128.61
#55293 A2HOSTING
Title
Mpo Slot : Situs Judi Online Link Slot Gacor Resmi Deposit Dana 5000 Terbaru

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
styleftwr.com	unknown	2023-08-19	2019-05-19 19:51:45	2023-09-30 15:57:38	1.3 kB	32 kB	85.187.128.61
cdn.ampproject.org	329	2015-08-31	2015-10-09 06:27:01	2023-11-27 18:12:06	3.1 kB	150 kB	142.250.74.33
i.postimg.cc	23840	2016-06-11	2018-04-11 12:01:12	2023-11-27 18:17:12	1.8 kB	1.8 MB	162.19.88.68

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-11-28 15:37:19	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-11-28 15:37:19	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-11-28 15:37:20	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	cdn.ampproject.org/v0/amp-youtube-0.1.js	ScriptElement	37 kB	2023-11-16	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-youtube-0.1.js IP 142.250.74.33 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 17:58 Last Seen2023-11-28 16:37 Times Seen15 Hash 5eaaf358615421a63277019dce62299c da3f4e0b92aec0dbb60ba6c5ed8a7cba2d736059 71891f70cbee99e4fdb9c858f4fc218bd48307dbb8616bd34a454ccb7332b752 Loading...

	cdn.ampproject.org/v0.js	ScriptElement	284 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/v0.js IP 142.250.74.33 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 20:16 Times Seen145 Hash f0365608b7ed1b269e0f9c1c12069b1b 37fc08e32173f6c1a674d90f18d5c56801c8b5f2 908a935e15d34ec51aa5d98fb7c9f11b814fac80cc7e1bc32aed903df3754558 Loading...

	cdn.ampproject.org/v0/amp-analytics-0.1.js	ScriptElement	113 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-analytics-0.1.js IP 142.250.74.33 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 19:13 Times Seen148 Hash 801f8606c836a922c9997caab0309e88 85c4be48ecfe63911569ebeb2ff5d9f49f6f283d afe48129d69d1636977964c86ba5a17bc8105402afa294c0a61300f6df050a63 Loading...

	cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js	ScriptElement	13 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js IP 142.250.74.33 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 19:13 Times Seen115 Hash ba715c5679b980da4ecd5c53ba11ca14 8f6893a724c33f5a92893c3f392c6294792dafbd ff65d80be1d7ee6ad9620de618dc1bd3962d81fa505806c02038dd6acc3641b8 Loading...

	cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js	ScriptElement	7.8 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js IP 142.250.74.33 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 19:13 Times Seen117 Hash 50d01f9355b127adcc090233772bbb1c 66e0ee80cc12c71c6dda77255230c7f207538447 22d9dc8a34bcbffe719050b949b9872f9af036a9bbfd3ca2e99165d604acaf24 Loading...

	cdn.ampproject.org/v0/amp-accordion-0.1.js	ScriptElement	18 kB	2023-11-14	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-accordion-0.1.js IP 142.250.74.33 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 22:33 Last Seen2023-11-28 19:13 Times Seen39 Hash 214c62ebd2718f1b051ed848e7e480db 6e0c8367eb724dc24c6c49c2666bf98731550ae9 6b4caba1632ee87c41c4af00f053108b1930cca2f33f249b2e4587e86338ab83 Loading...

	cdn.ampproject.org/v0/amp-sidebar-0.1.js	ScriptElement	31 kB	2023-11-15	2023-11-28
Pretty URL cdn.ampproject.org/v0/amp-sidebar-0.1.js IP 142.250.74.33 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-15 08:53 Last Seen2023-11-28 20:16 Times Seen52 Hash 6536c4e7e1e2b8715a1eec75c3685249 b3f973ad462cb6579d6d08bd9699d257bdbeddcc 4d7ee587b1b2fb177db15824d9de078179371e1068c7d71a7c3941dab2806eba Loading...

HTTP Transactions (14)

	URL	IP	Response	Size
	styleftwr.com/	85.187.128.61	200 OK	10 kB
URL GET HTTP/3 styleftwr.com/ IP 85.187.128.61:443 ASN #55293 A2HOSTING Requested by https://styleftwr.com/ Certificate IssuercPanel, Inc. Subjectstyleftwr.com FingerprintF4:D0:35:43:5A:95:0F:F4:96:81:D8:C3:94:21:8B:E4:5A:62:DC:8C ValidityFri, 03 Nov 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (875), with CRLF line terminators Size 10 kB (10263 bytes) Hash b4e294962bbbf13333ea400da1628939 180510337cbf6126c645be8f0463dc9a8f6b2424 a2605ebde16cf235d21454a4d83174c02a56fb179926272c9cfd40e91b9f79cd HTTP Headers `GET / HTTP/1.1 Host: styleftwr.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/html last-modified: Sat, 19 Aug 2023 11:23:00 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 10263 date: Tue, 28 Nov 2023 15:37:14 GMT server: LiteSpeed strict-transport-security: max-age=63072000; includeSubDomains x-frame-options: SAMEORIGIN x-content-type-options: nosniff cache-control: max-age=3600, must-revalidate alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" X-Firefox-Spdy: h2

	cdn.ampproject.org/v0/amp-accordion-0.1.js	142.250.74.33	200 OK	5.8 kB
URL GET HTTP/2 cdn.ampproject.org/v0/amp-accordion-0.1.js IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://styleftwr.com/ Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT File type ASCII text, with very long lines (17480) Size 5.8 kB (5829 bytes) Hash 214c62ebd2718f1b051ed848e7e480db 6e0c8367eb724dc24c6c49c2666bf98731550ae9 6b4caba1632ee87c41c4af00f053108b1930cca2f33f249b2e4587e86338ab83 HTTP Headers `GET /v0/amp-accordion-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-type: text/javascript; charset=UTF-8 access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 5829 date: Tue, 28 Nov 2023 15:37:15 GMT expires: Tue, 28 Nov 2023 15:37:15 GMT cache-control: private, max-age=604800, stale-while-revalidate=604800 etag: "d5c10f6b1d53ea05" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.ampproject.org/v0/amp-sidebar-0.1.js	142.250.74.33	200 OK	9.7 kB
URL GET HTTP/2 cdn.ampproject.org/v0/amp-sidebar-0.1.js IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://styleftwr.com/ Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT File type ASCII text, with very long lines (31248) Size 9.7 kB (9651 bytes) Hash 6536c4e7e1e2b8715a1eec75c3685249 b3f973ad462cb6579d6d08bd9699d257bdbeddcc 4d7ee587b1b2fb177db15824d9de078179371e1068c7d71a7c3941dab2806eba HTTP Headers `GET /v0/amp-sidebar-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-type: text/javascript; charset=UTF-8 access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 9651 date: Tue, 28 Nov 2023 15:37:15 GMT expires: Tue, 28 Nov 2023 15:37:15 GMT cache-control: private, max-age=604800, stale-while-revalidate=604800 etag: "e5d8e2e1a4e85f74" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.ampproject.org/v0/amp-youtube-0.1.js	142.250.74.33	200 OK	11 kB
URL GET HTTP/2 cdn.ampproject.org/v0/amp-youtube-0.1.js IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://styleftwr.com/ Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT File type ASCII text, with very long lines (36458) Size 11 kB (11216 bytes) Hash 5eaaf358615421a63277019dce62299c da3f4e0b92aec0dbb60ba6c5ed8a7cba2d736059 71891f70cbee99e4fdb9c858f4fc218bd48307dbb8616bd34a454ccb7332b752 HTTP Headers `GET /v0/amp-youtube-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-type: text/javascript; charset=UTF-8 access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 11216 date: Tue, 28 Nov 2023 15:37:15 GMT expires: Tue, 28 Nov 2023 15:37:15 GMT cache-control: private, max-age=604800, stale-while-revalidate=604800 etag: "a6a0484c07369c3e" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.ampproject.org/v0.js	142.250.74.33	200 OK	73 kB
URL GET HTTP/2 cdn.ampproject.org/v0.js IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://styleftwr.com/ Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT File type Unicode text, UTF-8 text, with very long lines (64684) Size 73 kB (73200 bytes) Hash f0365608b7ed1b269e0f9c1c12069b1b 37fc08e32173f6c1a674d90f18d5c56801c8b5f2 908a935e15d34ec51aa5d98fb7c9f11b814fac80cc7e1bc32aed903df3754558 HTTP Headers `GET /v0.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-type: text/javascript; charset=UTF-8 access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 73200 date: Tue, 28 Nov 2023 15:37:15 GMT expires: Tue, 28 Nov 2023 15:37:15 GMT cache-control: private, max-age=3000, stale-while-revalidate=1206600 etag: "b209cac081bc437c" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.ampproject.org/v0/amp-analytics-0.1.js	142.250.74.33	200 OK	32 kB
URL GET HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://styleftwr.com/ Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT File type ASCII text, with very long lines (65534) Size 32 kB (32227 bytes) Hash 801f8606c836a922c9997caab0309e88 85c4be48ecfe63911569ebeb2ff5d9f49f6f283d afe48129d69d1636977964c86ba5a17bc8105402afa294c0a61300f6df050a63 HTTP Headers `GET /v0/amp-analytics-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://styleftwr.com DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: br content-type: text/javascript; charset=UTF-8 access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 32227 date: Tue, 28 Nov 2023 15:37:15 GMT expires: Tue, 28 Nov 2023 15:37:15 GMT cache-control: private, max-age=604800, stale-while-revalidate=604800 etag: "705776dc36d17428" strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	i.postimg.cc/qRhjBV2B/background-slot.jpg	162.19.88.68	200 OK	124 kB
URL GET HTTP/2 i.postimg.cc/qRhjBV2B/background-slot.jpg IP 162.19.88.68:443 ASN #16276 OVH SAS Requested by https://styleftwr.com/ Certificate IssuerLet's Encrypt Subjectpostimg.cc FingerprintA5:BC:82:6C:AF:0C:87:E6:4B:2F:B4:1A:26:A9:BB:4B:55:67:EA:1F ValidityTue, 24 Oct 2023 07:31:42 GMT - Mon, 22 Jan 2024 07:31:41 GMT File type JPEG image data, progressive, precision 8, 1280x720, components 3\012- data Size 124 kB (123745 bytes) Hash 09f57e5b110e8692b96404ed803712f0 2c32390743c68c76f3d61c2dacac3c88ca0380d3 72295c42eacaf4cc292489f17e55eb4691abe71148612e0e9fd0a846ceb3c095 HTTP Headers `GET /qRhjBV2B/background-slot.jpg HTTP/1.1 Host: i.postimg.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Tue, 28 Nov 2023 15:37:15 GMT content-type: image/jpeg content-length: 123745 last-modified: Sat, 19 Aug 2023 04:20:15 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	i.postimg.cc/FKbWmGKg/Mpo-play-slot-5000.png	162.19.88.68	200 OK	1.2 MB
URL GET HTTP/2 i.postimg.cc/FKbWmGKg/Mpo-play-slot-5000.png IP 162.19.88.68:443 ASN #16276 OVH SAS Requested by https://styleftwr.com/ Certificate IssuerLet's Encrypt Subjectpostimg.cc FingerprintA5:BC:82:6C:AF:0C:87:E6:4B:2F:B4:1A:26:A9:BB:4B:55:67:EA:1F ValidityTue, 24 Oct 2023 07:31:42 GMT - Mon, 22 Jan 2024 07:31:41 GMT File type PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced\012- data Size 1.2 MB (1178979 bytes) Hash fc8a30308bfe794d662d00073d8b469f 00760c088e319d659f161756eb0506f32ef8ac19 45e83d30b8be68f972be307356eb973e09a7d3d2d5df906663b96a1962df31c8 HTTP Headers `GET /FKbWmGKg/Mpo-play-slot-5000.png HTTP/1.1 Host: i.postimg.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Tue, 28 Nov 2023 15:37:15 GMT content-type: image/png content-length: 1178979 last-modified: Sun, 06 Aug 2023 06:22:13 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js	142.250.74.33	200 OK	3.9 kB
URL GET HTTP/2 cdn.ampproject.org/rtv/012310301456000/v0/amp-loader-0.1.js IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://styleftwr.com/ Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT File type ASCII text, with very long lines (12615) Size 3.9 kB (3938 bytes) Hash ba715c5679b980da4ecd5c53ba11ca14 8f6893a724c33f5a92893c3f392c6294792dafbd ff65d80be1d7ee6ad9620de618dc1bd3962d81fa505806c02038dd6acc3641b8 HTTP Headers `GET /rtv/012310301456000/v0/amp-loader-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://styleftwr.com DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-encoding: br access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 3938 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 21 Nov 2023 21:07:07 GMT expires: Wed, 20 Nov 2024 21:07:07 GMT cache-control: public, max-age=31536000 age: 585009 etag: "3c281510b2fc8bce" content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js	142.250.74.33	200 OK	3.0 kB
URL GET HTTP/2 cdn.ampproject.org/rtv/012310301456000/v0/amp-auto-lightbox-0.1.js IP 142.250.74.33:443 ASN #15169 GOOGLE Requested by https://styleftwr.com/ Certificate IssuerGoogle Trust Services LLC Subjectmisc-sni.google.com FingerprintE4:33:2C:42:1C:4F:E6:01:93:AD:F1:5F:70:4D:33:1F:3B:5F:AB:DE ValidityMon, 23 Oct 2023 11:20:02 GMT - Mon, 15 Jan 2024 11:20:01 GMT File type ASCII text, with very long lines (7690) Size 3.0 kB (2975 bytes) Hash 50d01f9355b127adcc090233772bbb1c 66e0ee80cc12c71c6dda77255230c7f207538447 22d9dc8a34bcbffe719050b949b9872f9af036a9bbfd3ca2e99165d604acaf24 HTTP Headers `GET /rtv/012310301456000/v0/amp-auto-lightbox-0.1.js HTTP/1.1 Host: cdn.ampproject.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://styleftwr.com DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-encoding: br access-control-allow-origin: * content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available" report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]} timing-allow-origin: * content-length: 2975 strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 23 Nov 2023 04:48:18 GMT expires: Fri, 22 Nov 2024 04:48:18 GMT cache-control: public, max-age=31536000 age: 470938 etag: "ebb1be4e47c7faed" content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	i.postimg.cc/9Qm2DrD8/Jackpot-Slot-Gacor.png	162.19.88.68	200 OK	448 kB
URL GET HTTP/2 i.postimg.cc/9Qm2DrD8/Jackpot-Slot-Gacor.png IP 162.19.88.68:443 ASN #16276 OVH SAS Requested by https://styleftwr.com/ Certificate IssuerLet's Encrypt Subjectpostimg.cc FingerprintA5:BC:82:6C:AF:0C:87:E6:4B:2F:B4:1A:26:A9:BB:4B:55:67:EA:1F ValidityTue, 24 Oct 2023 07:31:42 GMT - Mon, 22 Jan 2024 07:31:41 GMT File type PNG image data, 530 x 415, 8-bit/color RGBA, non-interlaced\012- data Size 448 kB (447959 bytes) Hash 9d2808ebe28c57d651895034780fa4a9 db97a74060674c91cab050a5b61745e1e958e34b cf6a1ae76e6567333156f3b80c36433beceb4edce2e2518e07f5bb63aa27c195 HTTP Headers `GET /9Qm2DrD8/Jackpot-Slot-Gacor.png HTTP/1.1 Host: i.postimg.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 28 Nov 2023 15:37:16 GMT content-type: image/png content-length: 447959 last-modified: Sat, 19 Aug 2023 03:09:12 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	i.postimg.cc/Znsg7FP0/logo-style.png	162.19.88.68	200 OK	94 kB
URL GET HTTP/2 i.postimg.cc/Znsg7FP0/logo-style.png IP 162.19.88.68:443 ASN #16276 OVH SAS Requested by https://styleftwr.com/ Certificate IssuerLet's Encrypt Subjectpostimg.cc FingerprintA5:BC:82:6C:AF:0C:87:E6:4B:2F:B4:1A:26:A9:BB:4B:55:67:EA:1F ValidityTue, 24 Oct 2023 07:31:42 GMT - Mon, 22 Jan 2024 07:31:41 GMT File type PNG image data, 800 x 204, 8-bit/color RGBA, non-interlaced\012- data Size 94 kB (93709 bytes) Hash 37f652c69ca96176239290e9f67c0ff6 f17bd3c1a2816b4165b2d23e4ebbf6cc9a8ad130 4d1728754ddafc1fb22e6a68c1edf6f3d75c894e0bd1d3a86d148c638c1d56c5 HTTP Headers `GET /Znsg7FP0/logo-style.png HTTP/1.1 Host: i.postimg.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Tue, 28 Nov 2023 15:37:16 GMT content-type: image/png content-length: 93709 last-modified: Sat, 19 Aug 2023 04:17:59 GMT expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public access-control-allow-origin: * access-control-allow-methods: GET, OPTIONS accept-ranges: bytes X-Firefox-Spdy: h2`

	styleftwr.com/	85.187.128.61	200 OK	10 kB
URL GET HTTP/3 styleftwr.com/ IP 85.187.128.61:443 ASN #55293 A2HOSTING Requested by https://styleftwr.com/ Certificate IssuercPanel, Inc. Subjectstyleftwr.com FingerprintF4:D0:35:43:5A:95:0F:F4:96:81:D8:C3:94:21:8B:E4:5A:62:DC:8C ValidityFri, 03 Nov 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (875), with CRLF line terminators Size 10 kB (10263 bytes) Hash b4e294962bbbf13333ea400da1628939 180510337cbf6126c645be8f0463dc9a8f6b2424 a2605ebde16cf235d21454a4d83174c02a56fb179926272c9cfd40e91b9f79cd HTTP Headers `GET / HTTP/1.1 Host: styleftwr.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: text/html last-modified: Sat, 19 Aug 2023 11:23:00 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 10263 date: Tue, 28 Nov 2023 15:37:16 GMT server: LiteSpeed strict-transport-security: max-age=63072000; includeSubDomains x-frame-options: SAMEORIGIN x-content-type-options: nosniff cache-control: max-age=3600, must-revalidate alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

	styleftwr.com/	85.187.128.61	200 OK	10 kB
URL GET HTTP/3 styleftwr.com/ IP 85.187.128.61:443 ASN #55293 A2HOSTING Requested by https://styleftwr.com/ Certificate IssuercPanel, Inc. Subjectstyleftwr.com FingerprintF4:D0:35:43:5A:95:0F:F4:96:81:D8:C3:94:21:8B:E4:5A:62:DC:8C ValidityFri, 03 Nov 2023 00:00:00 GMT - Thu, 01 Feb 2024 23:59:59 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (875), with CRLF line terminators Size 10 kB (10263 bytes) Hash b4e294962bbbf13333ea400da1628939 180510337cbf6126c645be8f0463dc9a8f6b2424 a2605ebde16cf235d21454a4d83174c02a56fb179926272c9cfd40e91b9f79cd HTTP Headers `GET / HTTP/1.1 Host: styleftwr.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://styleftwr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/3 200 OK content-type: text/html last-modified: Sat, 19 Aug 2023 11:23:00 GMT accept-ranges: bytes content-encoding: br vary: Accept-Encoding content-length: 10263 date: Tue, 28 Nov 2023 15:37:16 GMT server: LiteSpeed strict-transport-security: max-age=63072000; includeSubDomains x-frame-options: SAMEORIGIN x-content-type-options: nosniff cache-control: max-age=3600, must-revalidate`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (14)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash