| barkingspainc.com/.Mtree34$/ahjvsyiizn/Z2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw== | 66.115.166.230 | | 3.3 kB |
URL barkingspainc.com/.Mtree34$/ahjvsyiizn/Z2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw== IP66.115.166.230:0
File typeHTML document, ASCII text, with very long lines (3255), with no line terminators Hashde36ef21134c251ca8a57344f4c88db3 15fb351f668a920785d857aa5cff2475ca17ffd7 91a24adff2044b3fec12bb024b72c30c1e7268f45a4e22521607b6572b9ea925
GET /.Mtree34$/ahjvsyiizn/Z2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw== HTTP/1.1
Host: barkingspainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 07:13:10 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=4c9302031b2a7e1dbfbcbcf75dd404bf; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback | 104.17.2.184 | | 0 B |
URL challenges.cloudflare.com/turnstile/v0/api.js?onload=onloadTurnstileCallback IP104.17.2.184:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?onload=onloadTurnstileCallback HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://barkingspainc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 07:13:10 GMT
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: max-age=300, public
location: /turnstile/v0/g/1b3559406bc8/api.js
vary: Accept-Encoding
server: cloudflare
cf-ray: 8818200a7f69b4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.2.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/iu4un/0x4AAAAAAAYWZ7jnOwhz49Mp/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:11 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8818200c1c685690-OSL
alt-svc: h3=":443"; ma=86400
|
|
| barkingspainc.com/favicon.ico | 66.115.166.230 | | 894 B |
URL barkingspainc.com/favicon.ico IP66.115.166.230:0
File typeMS Windows icon resource - 1 icon, 16x16, 24 bits/pixel Hashaae46f43c8e2ec36658384b87b2680df cd2b0f0e0d052004e77dd34db75213d66c2442b9 349f38e6df0d6c1e30f2c870b1b294eea13e2fec31c6b525e4572b851f9060c1
GET /favicon.ico HTTP/1.1
Host: barkingspainc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://barkingspainc.com/.Mtree34$/ahjvsyiizn/Z2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw==
Cookie: PHPSESSID=4c9302031b2a7e1dbfbcbcf75dd404bf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 10 May 2024 07:13:11 GMT
Server: Apache
Last-Modified: Fri, 12 Oct 2012 17:38:23 GMT
Accept-Ranges: bytes
Content-Length: 894
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/iu4un/0x4AAAAAAAYWZ7jnOwhz49Mp/auto/normal | 104.17.2.184 | | 22 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/iu4un/0x4AAAAAAAYWZ7jnOwhz49Mp/auto/normal IP104.17.2.184:0
File typeHTML document, ASCII text, with very long lines (42150) Hashc5463e8f20f0d930a335b7fb3ac0e774 bdff1dda2d8a141291a1296c102d5b3e8b001e66 c160e75af15f34683de34969a42efd333f1e4650687046a7bbd20dcf6c66a373
GET /cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/iu4un/0x4AAAAAAAYWZ7jnOwhz49Mp/auto/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://barkingspainc.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:10 GMT
content-type: text/html; charset=UTF-8
content-security-policy: frame-src https://challenges.cloudflare.com/; base-uri 'self'
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
document-policy: js-profiling
cross-origin-embedder-policy: require-corp
origin-agent-cluster: ?1
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 8818200b9b745690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8818200b9b745690/1715325191371/32fd521f2410e470f2bcdfe9aa56d9fe56a448b40ff18a6b47f7c5904db385c4/oUWuq6MKZSwR8jR | 104.17.2.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8818200b9b745690/1715325191371/32fd521f2410e470f2bcdfe9aa56d9fe56a448b40ff18a6b47f7c5904db385c4/oUWuq6MKZSwR8jR IP104.17.2.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/8818200b9b745690/1715325191371/32fd521f2410e470f2bcdfe9aa56d9fe56a448b40ff18a6b47f7c5904db385c4/oUWuq6MKZSwR8jR HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/iu4un/0x4AAAAAAAYWZ7jnOwhz49Mp/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Fri, 10 May 2024 07:13:12 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gMv1SHyQQ5HDyvN_pqlbZ_lakSLQP8YprR_fFkE2zhcQAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAwJNLx-F--HQ4G6w81Lqhm55Wqle9iE4E64E37YL7QkK_ylJ-Dsmf1v3knq_MpBi8JncpUaWMssdL2Aha6xVtTuit-n3zEDZCW0VR_73N-Mc6DxdptQ_jsmIxis7apwux2f5L0gN0Z4K9C36tRcIL-chm-gijHvxrbhcCYusNwrgAlFaiqNWBqxKTiuPduHX4CNzNb7BAiNPz7ppY7Xn1WjmxSB-BaqSVLCYtDy-Mw41UBzE3QEcVUcRH9er-MksFvohzvhlnTTonFaMyAUYx3d_uCdDannmVQhRsm-aJs_P_GGe1TX3e9g5Sy-NmhGrro0kncbPlfTwFxa8SwJ5-8QIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIDL9Uh8kEORw8rzf6apW2f5WpEi0D_GKa0f3xZBNs4XEABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 881820146c455690-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8818200b9b745690/1715325191380/CNSBgL3yNTW-p6y | 104.17.2.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8818200b9b745690/1715325191380/CNSBgL3yNTW-p6y IP104.17.2.184:0
File typePNG image data, 45 x 96, 8-bit/color RGB, non-interlaced Hash491c46ed02e18320c3e248357537d1b9 d15ca58277299b5d8d7bbecbc2b2289c4b5e623a 968334fb2a6780b66ceaa0858d16e7f9886c46da328ff1e904d03cc9efdae312
GET /cdn-cgi/challenge-platform/h/g/i/8818200b9b745690/1715325191380/CNSBgL3yNTW-p6y HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/iu4un/0x4AAAAAAAYWZ7jnOwhz49Mp/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:13 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8818201a7e315690-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1848467371:1715321417:pLrXcWYBi3RAyRjT4fob6NFOWqv1hRL5TkGG86p9Vo4/8818200b9b745690/5eb4b83c7257025 | 104.17.2.184 | | 23 kB |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/1848467371:1715321417:pLrXcWYBi3RAyRjT4fob6NFOWqv1hRL5TkGG86p9Vo4/8818200b9b745690/5eb4b83c7257025 IP104.17.2.184:0
File typeASCII text, with very long lines (22332), with no line terminators Hashbaae293bac5027b1e374d07e412bed32 12932f418096b39d5a53bb7bf0279d15b18c84a1 221ee9037bbda72d7367e2d761f026bd6a9cefcf83fbed0f38ba4a3b45922069
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/1848467371:1715321417:pLrXcWYBi3RAyRjT4fob6NFOWqv1hRL5TkGG86p9Vo4/8818200b9b745690/5eb4b83c7257025 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/iu4un/0x4AAAAAAAYWZ7jnOwhz49Mp/auto/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: 5eb4b83c7257025
Content-Length: 27646
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:13 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: yed6xdw1CjyLU0Cfg26avc62oHkif+nQn/yY3ndDhLEQkvFAfrwcQXU/PKxv5P4m$SmRI+wBj2Y7xSiiZ3vqh/Q==
server: cloudflare
cf-ray: 8818201bb8415690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/turnstile/v0/api.js?render=explicit | 104.17.3.184 | | 0 B |
URL challenges.cloudflare.com/turnstile/v0/api.js?render=explicit IP104.17.3.184:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /turnstile/v0/api.js?render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 07:13:19 GMT
content-length: 0
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
location: /turnstile/v0/g/1b3559406bc8/api.js
cache-control: max-age=300, public
vary: Accept-Encoding
server: cloudflare
cf-ray: 8818203dea15b509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.0.min.js | 151.101.2.137 | | 31 kB |
URL code.jquery.com/jquery-3.6.0.min.js IP151.101.2.137:0
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 10 May 2024 07:13:19 GMT
age: 1181380
x-served-by: cache-lga21931-LGA, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 3, 919806
x-timer: S1715325199.085339,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D IP104.17.3.184:0
File typePNG image data, 2 x 2, 8-bit/color RGB, non-interlaced Hash9246cca8fc3c00f50035f28e9f6b7f7d 3aa538440f70873b574f40cd793060f53ec17a5d c07d7d29e3c20fa6ca4c5d20663688d52bad13e129ad82ce06b80eb187d9dc84
GET /cdn-cgi/challenge-platform/h/g/cmg/1/GLhOioXg0bs57t4qPrORXFsL1%2BWig2mIKbgpVPMu7ZQ%3D HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qk8ot/0x4AAAAAAAYyyzKdy90xOrWT/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:19 GMT
content-type: image/png
content-length: 61
cache-control: max-age=2629800, public
server: cloudflare
cf-ray: 8818203fbff30b41-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8818203f1eea0b41/1715325199626/16028f85583233fb4a1c1eb6ee8d5b5eec6bbc0fc251711c46fee59a13212d25/z7ohU-7YeWKOkuF | 104.17.3.184 | | 1 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/8818203f1eea0b41/1715325199626/16028f85583233fb4a1c1eb6ee8d5b5eec6bbc0fc251711c46fee59a13212d25/z7ohU-7YeWKOkuF IP104.17.3.184:0
File typevery short file (no magic) Hashff44570aca8241914870afbc310cdb85 58668e7669fd564d99db5d581fcdb6a5618440b5 6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/g/pat/8818203f1eea0b41/1715325199626/16028f85583233fb4a1c1eb6ee8d5b5eec6bbc0fc251711c46fee59a13212d25/z7ohU-7YeWKOkuF HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qk8ot/0x4AAAAAAAYyyzKdy90xOrWT/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Fri, 10 May 2024 07:13:20 GMT
content-type: text/plain; charset=UTF-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gFgKPhVgyM_tKHB627o1bXuxrvA_CUXEcRv7lmhMhLSUAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAwJNLx-F--HQ4G6w81Lqhm55Wqle9iE4E64E37YL7QkK_ylJ-Dsmf1v3knq_MpBi8JncpUaWMssdL2Aha6xVtTuit-n3zEDZCW0VR_73N-Mc6DxdptQ_jsmIxis7apwux2f5L0gN0Z4K9C36tRcIL-chm-gijHvxrbhcCYusNwrgAlFaiqNWBqxKTiuPduHX4CNzNb7BAiNPz7ppY7Xn1WjmxSB-BaqSVLCYtDy-Mw41UBzE3QEcVUcRH9er-MksFvohzvhlnTTonFaMyAUYx3d_uCdDannmVQhRsm-aJs_P_GGe1TX3e9g5Sy-NmhGrro0kncbPlfTwFxa8SwJ5-8QIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIBYCj4VYMjP7Shwetu6NW17sa7wPwlFxHEb-5ZoTIS0lABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAi_Bv1vvWWnyuOfVJgRV-AQLxEJECUUmMRrMnYz-gJA-oMd79ajvP3atoTZqB_EsZIq7SMmpbCRFhPolqzIrtXh7AF1Q-ZWY2RoRVRgKr7d6iJMZ49iZUmbz837eqBZJrEMuXftZmY35str5sb0GjzklF8z_hcQJC9vancYXncsYoiMDaROW0tLwSQA9BGfbmA6GlbVj4XH8DH19cKifxmO6RlIPPKlL1KmZbrRakkpuqvJO2-x1Zc2S5GCpponuvQTqJQH8Ud9loZLI75e-Xa9KAUNtBTM0t9WSEsv8cSJLV1BPBVTy1lOnwghofw4fqmlYv6CXClzAUqWouSTJ7uwIDAQAB", max-age=20
server: cloudflare
cf-ray: 88182045a98f0b41-OSL
alt-svc: h3=":443"; ma=86400
|
|
| challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8818203f1eea0b41/1715325199634/JFr8gy7iHO7kK5Z | 104.17.3.184 | | 61 B |
URL challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/8818203f1eea0b41/1715325199634/JFr8gy7iHO7kK5Z IP104.17.3.184:0
File typePNG image data, 18 x 53, 8-bit/color RGB, non-interlaced Hash4ec931fb35bfdf44ce90c7a8bcf4e30f e1c2c5cb231c2e541f4168a6b62fd431b218dcb9 e9790cdf0a05d70a696d322fadd89cf1ce0b29132d9de5c51594e21e7c656425
GET /cdn-cgi/challenge-platform/h/g/i/8818203f1eea0b41/1715325199634/JFr8gy7iHO7kK5Z HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/qk8ot/0x4AAAAAAAYyyzKdy90xOrWT/auto/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:21 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 8818204a88af0b41-OSL
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/captcha/style.css | 188.114.97.1 | | 148 kB |
URL abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/captcha/style.css IP188.114.97.1:0
File typeASCII text, with very long lines (3379) Size148 kB (148107 bytes) Hash59087d72eedcb7650c9d5d6088440dd3 97b607fce11f640e5764699038e50a76eb98944b e0e3fb0fe5ca541950cf8dd213fbe9e8957a3db0010b515ad01adff6ca908a3e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /captcha/style.css HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/MZ2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw==
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:19 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 06:29:49 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aOVRYp61o9w1TmEYdpt5moJRWXS4k1UGwoIWgRaWFGP2zMgBa2Iv85nFVa0Xio%2F1%2FCgpozths9akcYrvq2bDDxt%2BnnV9qQKv3jwAWrUm7%2BEGpLk7tAJhEmXu%2Bn%2Fxgx5QineYGauWpaT5A9WOi1k%2F5v3jIJnpIwqBLeVmNb9rK2McJ%2Fah90jSvmVl6VYaf6s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8818203dc94356a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/cdn-cgi/challenge-platform/h/g/rc/8818203f1eea0b41 | 188.114.97.1 | | 21 B |
URL abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/cdn-cgi/challenge-platform/h/g/rc/8818203f1eea0b41 IP188.114.97.1:0
Hash018598ff9794435b440d1bbf293cc10f 9129b0ca1a4febdf97636946a1fe7be8abf11890 898a24300baa285e173627eb7801c18db52748bb2119f56a71dcce0a5f8c8063
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/g/rc/8818203f1eea0b41 HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/MZ2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw==
Content-Type: application/json
Content-Length: 639
Origin: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:28 GMT
content-type: application/json
content-length: 21
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
set-cookie: cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q; Path=/; Expires=Sat, 10-May-25 07:13:28 GMT; Domain=.abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ca2rrZe48V7pYq7AO%2B8eag%2B%2FQaKoyfYZduCeIZQmVsGW0pPSujdlTX1gVW5LElncTdkbTwAWypm1QaOmy2V4fCCRQdQ8p5SZ88FrICoydsqWoBC9aQENaLpexrQN%2Baygj%2Fj%2Frz12%2BUHNbALOOoRHi85JzN6kozT74v%2Bai%2FdbXXdshl8DblwF%2FZbNBV4ii48%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8818207b4eea56a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/boot/3210d08531aa51db03362d1529fa32c2663dc919c48bb | 188.114.97.1 | 200 OK | 20 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/boot/3210d08531aa51db03362d1529fa32c2663dc919c48bb IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /boot/3210d08531aa51db03362d1529fa32c2663dc919c48bb HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:29 GMT
content-type: text/javascript
last-modified: Fri, 10 May 2024 06:29:49 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f5q5ARzMkcnMSyBd7AYd9FkyREHGU6AyOWG3ieMTGJ0pZnuFYb51QC%2B4XsAqVCCLKKCOYlId22qoWGHYkMc0Ddu4WB76ofVU5GzfW4YQsLXPw6PXQhYZHSs2uYnVbjspBwwSIYcnFBZBrOLPVsLN%2FuiTPOBpDImnYw6eCEJSH1gDGcWpdKdWq00qhZi37HY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88182081ba5d56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/jm/3210d08531aa51db03362d1529fa32c2663dc919c48bc | 188.114.97.1 | 200 OK | 2.5 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/jm/3210d08531aa51db03362d1529fa32c2663dc919c48bc IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeJavaScript source, ASCII text, with very long lines (6357), with no line terminators Hash82ff6e77e3b8f004b23294185e108264 03c685b50fd4587427495348cd1231882a8c48d0 0e230a53a5d5abd125c2a8e1cdd97b32ddd84a9f7fd07c23bff95413886b05fa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jm/3210d08531aa51db03362d1529fa32c2663dc919c48bc HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:29 GMT
content-type: text/javascript
last-modified: Fri, 10 May 2024 06:29:49 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sf8ZQScJtSQQBVmx6Q80K%2BGZMKoK7l6Vl2U%2ByXOqNP07IvjWP5nrkBW8lYZREvZZyxC4FlowFtnS0zt%2Fmz2ipRTYgHtKM1ueA48aUNx6KcBGA4oN42%2BDZXsMJFGvjXRyWAUSNhhMDsVtApLL3jnisj2fEoMVXWFkgrWo5hLCfJZPd8xLO5ksc0GSCUvVA2k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88182081ca6056a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aadcdn.msauthimages.net/c1c6b6c8-suwtkglyzppgl8n-2nvpjfkko7xqwyoq1yikdpwnjha/logintenantbranding/0/bannerlogo?ts=637413805618451123 | 152.199.21.175 | 200 OK | 6.0 kB |
URL GET HTTP/2aadcdn.msauthimages.net/c1c6b6c8-suwtkglyzppgl8n-2nvpjfkko7xqwyoq1yikdpwnjha/logintenantbranding/0/bannerlogo?ts=637413805618451123 IP152.199.21.175:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerMicrosoft Corporation Subjectaadcdn.msauthimages.net Fingerprint3B:14:C7:84:64:65:A8:46:3C:B4:7E:B7:F2:A1:AF:6B:8F:EF:17:E5 ValidityThu, 11 Jan 2024 12:14:02 GMT - Sun, 05 Jan 2025 12:14:02 GMT
File typePNG image data, 262 x 72, 8-bit/color RGBA, non-interlaced Hash3ad3277f427672de4d1dc416a5941a21 fcc2f19673c2042dad98e551db59a75cec774dcc c2ca300326f6fc1004d1e85fae158447bdb662b1df92e1ead31ba134b8d38ebf
GET /c1c6b6c8-suwtkglyzppgl8n-2nvpjfkko7xqwyoq1yikdpwnjha/logintenantbranding/0/bannerlogo?ts=637413805618451123 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=86400
content-md5: OtMnf0J2ct5NHcQWpZQaIQ==
content-type: image/*
date: Fri, 10 May 2024 07:13:30 GMT
etag: 0x8D88C7AA2FF0A91
last-modified: Thu, 19 Nov 2020 11:02:42 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 78fc0e6d-201e-0057-73a9-a2c5bf000000
x-ms-version: 2009-09-19
content-length: 6048
X-Firefox-Spdy: h2
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/ic/3210d08531aa51db03362d1529fa32c2663dc91a29ea9 | 188.114.97.1 | 200 OK | 540 B |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/ic/3210d08531aa51db03362d1529fa32c2663dc91a29ea9 IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ic/3210d08531aa51db03362d1529fa32c2663dc91a29ea9 HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:30 GMT
content-type: image/x-icon
content-length: 540
last-modified: Fri, 10 May 2024 06:29:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NC6xVs%2BxMgnjjDlOYDPGSF5aJz8NzqsGqF2wmoYTDow%2BBgDuLQ9nM1CpEPGx4W9tKPy8JWfQHiQLAzMyahs5uwhcg3wH1%2FnXfG2AxTiefwESCpTQ4iLnRX2CeWPvvTNS4trty8KekToJbruuMYhoqnf6K08UaLL6PoBPG%2FVu9wBym9lwPb1eSeqhAeYXw1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88182087fd5856a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| aadcdn.msauthimages.net/c1c6b6c8-suwtkglyzppgl8n-2nvpjfkko7xqwyoq1yikdpwnjha/logintenantbranding/0/illustration?ts=637413805609340180 | 152.199.21.175 | 200 OK | 226 kB |
URL GET HTTP/2aadcdn.msauthimages.net/c1c6b6c8-suwtkglyzppgl8n-2nvpjfkko7xqwyoq1yikdpwnjha/logintenantbranding/0/illustration?ts=637413805609340180 IP152.199.21.175:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerMicrosoft Corporation Subjectaadcdn.msauthimages.net Fingerprint3B:14:C7:84:64:65:A8:46:3C:B4:7E:B7:F2:A1:AF:6B:8F:EF:17:E5 ValidityThu, 11 Jan 2024 12:14:02 GMT - Sun, 05 Jan 2025 12:14:02 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=2848, bps=0, PhotometricInterpretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D300, orientation=upper-left, width=4288], baseline, precision 8, 1600x1063, components 3 Size226 kB (225636 bytes) Hash904dd4d3228e29470aa317523dbc7ac5 fc148615910b26b0803e490bc6c26a83edd900c8 3dfacea09a026a3276cdb4bb632a7ba4ca104ddf70ebe2597f5dc1d2bd86930f
GET /c1c6b6c8-suwtkglyzppgl8n-2nvpjfkko7xqwyoq1yikdpwnjha/logintenantbranding/0/illustration?ts=637413805609340180 HTTP/1.1
Host: aadcdn.msauthimages.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
cache-control: public, max-age=86400
content-md5: kE3U0yKOKUcKoxdSPbx6xQ==
content-type: image/*
date: Fri, 10 May 2024 07:13:30 GMT
etag: 0x8D88C7AA27CE954
last-modified: Thu, 19 Nov 2020 11:02:41 GMT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 183e8551-601e-003d-2ba9-a29914000000
x-ms-version: 2009-09-19
content-length: 225636
X-Firefox-Spdy: h2
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/MZ2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw== | 188.114.97.1 | 302 Found | 5.5 kB |
URL User Request GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/MZ2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw== IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /MZ2J6ZmUuZmJ2ZUBwaWNvLmNvbS5lZw== HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://barkingspainc.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Fri, 10 May 2024 07:13:29 GMT
content-type: text/html; charset=UTF-8
location: ./beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0VKwBlR%2FNOp1nShHEUypm5rhrQHpdID9haDVvlLXWzWu6JFH2p7VmouUT8EWIVxknX0irYEBX93i9WMSAbDAj8XJTvkpPiNhVkkwwnxxyzsQu885gHlcjt82qOl%2BOrH9Fqm1szdgtwxXYAJNIK%2FSIysNqMYQZbL81g8rRkdxrfK1OCtyqi06GriE0yxrZXI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8818207eed1956a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| unpkg.com/axios@1.6.8/dist/axios.min.js | 104.17.245.203 | 200 OK | 42 kB |
URL GET HTTP/2unpkg.com/axios@1.6.8/dist/axios.min.js IP104.17.245.203:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File typeJavaScript source, ASCII text, with very long lines (41442) Hash3b5b3d36fde8ffe8ed76b1efbfc65410 d63107d0912fdb387530d5ce2d512c928d73d122 29d600462a30694efd15b9848b4ca42d178cd067009275c35a30580121114304
GET /axios@1.6.8/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 07:13:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "a209-1jEH0JEv2zh1MNXOLVEsko1z0SI"
via: 1.1 fly.io
fly-request-id: 01HWR4SQ10CZK3T39W1B2GFCAN-arn
cf-cache-status: HIT
age: 822915
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 88182081fc10b518-OSL
X-Firefox-Spdy: h2
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/o/3210d08531aa51db03362d1529fa32c2663dc91a29ee2 | 188.114.97.1 | 200 OK | 3.7 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/o/3210d08531aa51db03362d1529fa32c2663dc91a29ee2 IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeSVG Scalable Vector Graphics image Hashd633a913e6f3b1f45774b9874dfc85e0 5ba1344048578062c93cfddfdf8458477eaca476 c1fbfbd9a81fc4d9c9539a65bdfb4c6738926b8d4681b0346706196413e92714
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /o/3210d08531aa51db03362d1529fa32c2663dc91a29ee2 HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:30 GMT
content-type: image/svg+xml
content-length: 1435
last-modified: Fri, 10 May 2024 06:29:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lmefYxdyQmomFvIz4fiNVxUIpbTvf1V3dmAhBhIrZwgyErg203VfOuOYB1YyhOHoHfzbaTrLp83C8BcCPawelNBXdzYyyeg25lmEVX6Iku7d6KJ6zgKVMr2UejXIxLY7MXe3D%2BFt5X6rdifXSYb74GaRxlSEka44jNQWjMwcxahA3ciu8hoETCBdg4jXZ78%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881820845ef456a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/api-as1f?email=gbzfe.fbve@pico.com.eg&data=logo | 188.114.97.1 | 200 OK | 168 B |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/api-as1f?email=gbzfe.fbve@pico.com.eg&data=logo IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashd78b75cc9003ac946efc861e28a298d9 337b611743325adfd2c1918c786dedead9244d5a dd0f71832ec3d0d5d638b8a1497935d2abd7ca97ba9ef518ace827a39b7c1264
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook | Quad9 DNS | malicious | Sinkholed |
GET /api-as1f?email=gbzfe.fbve@pico.com.eg&data=logo HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:30 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=odrjFUSwg2lwEpbpD2ZW5OD3379QRG7QYePV2gfxQZU9piphYz9WGrz%2Bg7%2F7w3M2IPPjHN2UbZdiNvLd1VPCd%2FqTtlF1O1mksyouQYubZrM4v3cPchiyEs3NJKmUTTw5EA4kwCOgCuKWJuxdrhGXiafmBUvpFKlkFLHud0Xbsz1mZ4%2FTT9P%2FgNDZVlII3Jk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881820845f0756a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/api-as1f?email=gbzfe.fbve@pico.com.eg&data=background | 188.114.97.1 | 200 OK | 176 B |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/api-as1f?email=gbzfe.fbve@pico.com.eg&data=background IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash75be29418b42734be066c4eb1257f0b1 a903c576c38fd7454fd25748d28ec5ddb231983f d4a600d997cf84dde2bfaed217dabb3f29fb9e0b6b71f7b079c31415c9943c10
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft Outlook | Quad9 DNS | malicious | Sinkholed |
GET /api-as1f?email=gbzfe.fbve@pico.com.eg&data=background HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:30 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U7rKwcc%2BIzCt3rvMcvvkJarG0iuEMaCAdPt1F%2FAvqIGJJMkXRdAjWyNO4mYTM0N1K2ZKo7zpyWl0cGSNQLr%2FmqH3RusXF9%2BMFWHHOz%2FkVJHIHzuMYV2U5P%2FfpWLeJ87xwvgeeBPvrX9WovOPJU9Ott%2Biec6507lsZ0AkEfwNECJhbEw3Kb10SnwT%2F%2BPAJ0E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881820846f1156a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 | 188.114.97.1 | 200 OK | 5.5 kB |
URL User Request GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeHTML document, ASCII text, with very long lines (5541), with no line terminators Hash361b4bd026ae143f8d02021273d64a96 69c5264bfe331572f3cde8e509ec7ededd0094cc 21206d32eee11f03cebf9a2325136518de6afcb0e866e270e862b6b5a3f8236c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://barkingspainc.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:29 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q7qoYYtLcjyr4klmSq%2BpQ6qBs5%2FIrZHAAp1NYu%2BF7noBDyayaSXjgLosnm6NIILn5YeIL9mCo77bcNH2dvbnjQNoGvf36mxO2zeTpwi0MUf2ecKYQ7JJm9obQm1uIrrf8BzorEtzlazpYPGn19glIiKKhWe%2F4TmVz%2F9a4E4tn0k3CDOZeBWmYeNrV95LjWU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8818208118ee56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/e/3210d08531aa51db03362d1529fa32c2663dc91a29ee9 | 188.114.97.1 | 200 OK | 513 B |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/e/3210d08531aa51db03362d1529fa32c2663dc91a29ee9 IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeSVG Scalable Vector Graphics image Hashadc405f5fd089662209870ca5d2106f7 3a8b776df84bf251afc6ddd802cc5bbeddfb0e36 e7bacc97751689afaae192e103fe9851664365c57c7d783560860ad456db7e49
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /e/3210d08531aa51db03362d1529fa32c2663dc91a29ee9 HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:30 GMT
content-type: image/svg+xml
content-length: 276
last-modified: Fri, 10 May 2024 06:29:49 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pZILJqbClN3jyGSeV0Gsulpc32qiFtZZ5Mz4DqVK4loajghOGCC%2FFCtpeHlR%2FciLqcbQfRyili54Qywtfiy5W6sA7KNt7Uzjxhq6sugNnBTrGIN9QYpiLRch44c9lu15O8csQJnO0BcV%2BpVVEkojTv8DdF3sf%2F13JbDj1p9W7xTi59DPqUdjBkMyYkM4r%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881820845ef856a9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/APP-6CSS4J/3210d08531aa51db03362d1529fa32c2663dc91a29eaf | 188.114.97.1 | 200 OK | 105 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/APP-6CSS4J/3210d08531aa51db03362d1529fa32c2663dc91a29eaf IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size105 kB (105369 bytes) Hash8e6b0f88563f9c33f78bce65cf287df7 ef7765cd2a7d64ed27dd7344702597aff6f8c397 a7057bebfff43e7281ca31da00d40bd88c8d02d1576b9c45891dd56a3853269a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /APP-6CSS4J/3210d08531aa51db03362d1529fa32c2663dc91a29eaf HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:30 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 06:29:49 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EDf58KdNPAFmN%2FBeDuITFciGcKFLZNka5mMnLPqKB53wa9TvyTPnRYOqymFp99Yl4t8E7LxH1tGLmN5XnyePojKL%2BPVwfiDBXzcjaIOaFoFxnTEl8OuUXFOi9jQTcFeaK34gBLVyIDy66Dk3x4uu9oACrLL4LdTMpHVeRuapERxRRq8tJx7UglFSEOyazCc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881820846f1f56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/jq/3210d08531aa51db03362d1529fa32c2663dc919c48b8 | 188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/jq/3210d08531aa51db03362d1529fa32c2663dc919c48b8 IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /jq/3210d08531aa51db03362d1529fa32c2663dc919c48b8 HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:29 GMT
content-type: text/javascript
last-modified: Fri, 10 May 2024 06:29:49 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SB4Mii065z%2Bj7Shtyo7vBdjC7%2F2LEhrtGx7Ovj7oBiS1kSNEGSvOm0vE7koSbKZlg5J8iK%2FuKiv%2F1Wlg4k8qkglU7Fhcu5BwTbttl%2Bs1ssTGhpvJNpaO1p1EgooKFPyAe8e4%2BYy0AwXpuUdCVgnyQc81M%2FBF6ixfMaUeHsatuLTTO9p5sG%2F6tPo3LTZBdGQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88182081ba5956a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| unpkg.com/axios/dist/axios.min.js | 104.17.245.203 | 302 Found | 42 kB |
URL GET HTTP/2unpkg.com/axios/dist/axios.min.js IP104.17.245.203:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerGoogle Trust Services LLC Subjectunpkg.com Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3 ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 07:13:29 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.6.8/dist/axios.min.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01HXGNE3GWRBFS2SKRPHTYN1NH-arn
cf-cache-status: HIT
age: 163
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 88182081dbe5b518-OSL
X-Firefox-Spdy: h2
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/2 | 188.114.97.1 | 200 OK | 37 kB |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/2 IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /2 HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 07:13:30 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BUl5b59VnrrlkYD7SWaGLrUO5B%2BcKmjiKk%2F9XU%2B65RpGPyM1dOoDw7kBaiw5gxQGfz2oY29gEkBb36YKD7TYxQufbJ2sDABqkgRjKUngLRZ4RA9R38%2FoMJcd1UzAZ0mpr19vNjOx8BFmxx4UsglCc7LIRrGf0KthizZk%2FYrd7yn7bbmbf82KnpIfOFAx7Nc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881820835d4b56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/favicon.ico | 188.114.97.1 | 404 Not Found | 315 B |
URL GET HTTP/3abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/favicon.ico IP188.114.97.1:443
Requested byhttps://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662 CertificateIssuerLet's Encrypt Subjectabcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng FingerprintA3:67:4B:FB:FF:54:5A:90:CD:51:08:38:6B:3F:76:A6:9D:D2:81:F0 ValidityWed, 17 Apr 2024 06:02:02 GMT - Tue, 16 Jul 2024 06:02:01 GMT
File typeHTML document, ASCII text, with very long lines (326), with no line terminators Hash97ef40509b73c101d6815511c3adf98d a4242322497ea630ea72e26ba297a95a2bbe5ccd 322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://abcdfbfgjfgrjghj4644545mnnfghgirhdfgroupinternational.net.ng/beebb091955c06fa68b3eb8afc0bae51663dc919b5661PASbeebb091955c06fa68b3eb8afc0bae51663dc919b5662
Cookie: PHPSESSID=adcabfdfbdb5720fe886351e9ffc8141; cf_clearance=vG6MFHKrq4T5WPFSviYyLA9CV5JpASHX4wKzqKpLLbs-1715325208-1.0.1.1-.aA8FUSLHhTu_hj47gia5QxF4KqQ2_9pWsjGzqrTOJQFqmnVyOCuN.j4jqG4CyrtIzOAgu73Lqvm8kOwJTKb3Q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 10 May 2024 07:13:30 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rzEXgYKnXokEwapJoPUHRdM8p0p1Dc09%2FUtruXRy2BXxvKWiV8%2FlC1jTS85lt%2FNGCM2g2sK8FWnrh5l%2BOF2Ts2HRrKiXEz3KoyxJAtE79c4vOJKkExSIYiMi%2BLuFCZsCPTqDVQvDSQCcsXzOEdV%2FinulLxMIV4TuvJgzYZbOYxYBAFAhfVXD7lCN5vfLoqA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881820840e7056a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|