Report - maksmata.com/

Report Overview

Submitted URL
maksmata.com/
IP
162.241.85.131
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2023-02-26 17:13:14
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
76

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
rpc.ankr.com	538448	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	924 B	925 B	104.18.35.56
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	8.0 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	32 kB	69.16.175.42
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.200.77.111
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	2.4 kB	104.16.126.175
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
maksmata.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	1.0 MB	162.241.85.131
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	140 kB	104.17.24.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet
2023-02-26	medium	maksmata.com/	Crypto/Wallet

PhishTank

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	maksmata.com/	Other
2023-02-05	medium	maksmata.com/toastify.css	Other
2023-02-05	medium	maksmata.com/styles.css	Other
2023-02-05	medium	maksmata.com/toastify.js	Other
2023-02-05	medium	maksmata.com/fonts/EuclidCircularB-Regular-WebXL.woff2	Other
2023-02-05	medium	maksmata.com/fonts/EuclidCircularB-Bold-WebXL.woff2	Other
2023-02-05	medium	maksmata.com/assets/7203967.svg	Other
2023-02-05	medium	maksmata.com/index.js	Other
2023-02-05	medium	maksmata.com/seaport.js	Other
2023-02-05	medium	maksmata.com/assets/icon-48x48.png	Other

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-26	medium	maksmata.com/	Phishing
2023-02-26	medium	maksmata.com/toastify.js	Phishing
2023-02-26	medium	maksmata.com/fonts/EuclidCircularB-Regular-WebXL.woff2	Phishing
2023-02-26	medium	maksmata.com/fonts/EuclidCircularB-Bold-WebXL.woff2	Phishing
2023-02-26	medium	maksmata.com/assets/7203967.svg	Phishing
2023-02-26	medium	maksmata.com/index.js	Phishing
2023-02-26	medium	maksmata.com/seaport.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed
2023-02-26	medium	maksmata.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	unpkg.com/web3modal@1.9.0/dist/index.js	428 kB	2023-03-07	2024-04-18
Pretty URL unpkg.com/web3modal@1.9.0/dist/index.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:42:34 Last Seen2024-04-18 16:44:26 Times Seen263 Hash e0c60891548d18f595484a212aac9bd7 b66eefc0f6f622aac0da81034d8ca596d3b4339e 67ad2454feca6eb213f4a70cc588137e6bd21ad95c0eda2709faa2317ff90359 Loading...

	unpkg.com/@walletconnect/web3-provider@1.8.0/dist/umd/index.min.js	747 kB	2023-03-07	2024-04-24
Pretty URL unpkg.com/@walletconnect/web3-provider@1.8.0/dist/umd/index.min.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:37:40 Last Seen2024-04-24 01:22:00 Times Seen754 Hash 47f795b848c217887b6b777101941080 e35aedb35e68be3a777324fd92adf7396132b7b2 39f201db3b9481261cc1660c3c2f9880fb09ef44c1e5fe5d9e2fd9deb818bd10 Loading...

	maksmata.com/index.js	556 kB	2023-03-13	2023-03-26
Pretty URL maksmata.com/index.js IP 162.241.85.131 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:05:56 Last Seen2023-03-26 05:15:12 Times Seen2 Hash 28394f94dee4588af5b91f39a87323d7 56ea1b3397ed35eca73b3467181cdf50821430cd ae003ff54be251ba4854034cf674c46537df911933dc9f19dfbe287d2a59def6 Loading...

	cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js	760 kB	2023-03-13	2024-04-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:48:53 Last Seen2024-04-25 08:35:15 Times Seen896 Hash 71f8c498e792c6179d4e2840228f777a b651545587f6257345dc3de9ddaa444b10dedf3e a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73 Loading...

	code.jquery.com/jquery-3.6.3.min.js	90 kB	2023-03-10	2024-04-25
Pretty URL code.jquery.com/jquery-3.6.3.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 04:24:46 Last Seen2024-04-25 16:08:59 Times Seen17451 Hash cf2fbbf84281d9ecbffb4993203d543b 832a6a4e86daf38b1975d705c5de5d9e5f5844bc a6f3f0faea4b3d48e03176341bef0ed3151ffbf226d4c6635f1c6039c0500575 Loading...

	maksmata.com/seaport.js	2.1 MB	2023-03-09	2023-07-02
Pretty URL maksmata.com/seaport.js IP 162.241.85.131 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 08:50:45 Last Seen2023-07-02 01:32:35 Times Seen24 Hash 05f2e1b18c5375d1ed01d2007829b4b5 0df09b0ce086be45469eb6850b91d047413b4663 a981fc16317378ef7be6ccd4ab6d31d3a752e715345f06f174eda1674d82cfc3 Loading...

	unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js	23 kB	2023-03-07	2024-04-18
Pretty URL unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:55 Last Seen2024-04-18 16:44:25 Times Seen352 Hash 103cf7a3766e010c9499d24721aaf984 ca4e27f04aa5be91c32e0942583f39bca5277a1f d93c05813c158faf533a332c1b49f2a9f0432e0454fdefd1a2c9f11428b7a4e9 Loading...

	maksmata.com/toastify.js	15 kB	2023-03-12	2024-01-09
Pretty URL maksmata.com/toastify.js IP 162.241.85.131 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 14:21:57 Last Seen2024-01-09 15:44:57 Times Seen8 Hash d151ad1e1a2f51b747350b2901e33506 24161b18185c5d2339470a1909c638fa110517c0 42dd6d2bfdd7153d1a702b2b45e468b7c85eec7426bb1e72938397d9a5db396e Loading...

HTTP Transactions (39)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc3cacbc6c565bf2955b507302b8fb41
7b773e19aff1d4904cec328c456513e80f917ba4
b45c582b42efef5e8bd5744333a137f13e94a93cafbaace39b36cfa1eeb041bd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B45C582B42EFEF5E8BD5744333A137F13E94A93CAFBAACE39B36CFA1EEB041BD"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7268
Expires: Sun, 26 Feb 2023 19:14:10 GMT
Date: Sun, 26 Feb 2023 17:13:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8083775b7a6637d27672cc4a2581fa2d
023420d026fbf2cd0f69d5606524094011375202
66664ed1d36948fe99498950e3525d03c1797689c9186c4cd0bd5ded531b3bac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66664ED1D36948FE99498950E3525D03C1797689C9186C4CD0BD5DED531B3BAC"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4505
Expires: Sun, 26 Feb 2023 18:28:07 GMT
Date: Sun, 26 Feb 2023 17:13:02 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 26 Feb 2023 17:07:53 GMT
content-type: application/json
age: 309
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
955732a866f4168dcaaa1dbcfb06e776
24161b6d53bbf84abc87c943f67daadd7fbcc9f4
ac3d306cc00fcafe5d6fadd5bc1c4398ca87dec499fd0e4ffe60d0e1c3535578

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC3D306CC00FCAFE5D6FADD5BC1C4398CA87DEC499FD0E4FFE60D0E1C3535578"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12021
Expires: Sun, 26 Feb 2023 20:33:23 GMT
Date: Sun, 26 Feb 2023 17:13:02 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: glhfQeaFAVS4/V2IfsYimQsJi2NadFHJn2tVEBzxG5Xku/Psv4owgq/jwAidqmTAFKzR4/Pkb5o=
x-amz-request-id: YGBQ891RSJWWBQ9A
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 26 Feb 2023 16:13:46 GMT
age: 3556
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 26 Feb 2023 17:13:02 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

maksmata.com/

162.241.85.131

200 OK

50 kB

URL HTTP/1.1
maksmata.com/
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2581)
Size
50 kB (50400 bytes)
Hash
e72a1aac13c0c30691bb5f7365b55e5d
44da804a4f8cc93b9a828a386f7ac6a7165eea8f
174f07399b55d6735affac81f528259aea83dc31e7df770e0318cf3b53bc8f51

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 05 Feb 2023 00:20:38 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html

cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js

104.17.24.14

200 OK

139 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
139 kB (139139 bytes)
Hash
09ea829ceaa5e5bd0ce776bfff315286
3b93a01dadab732d49a221ab519e00d6608e065d
bdd377fbaeb04e130b326927598b3a02b997bf514b159972ea1f57e5dfa79e95

HTTP Headers

GET /ajax/libs/ethers/5.7.2/ethers.umd.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maksmata.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 139139
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6350cee7-21f83"
last-modified: Thu, 20 Oct 2022 04:30:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 26793
expires: Fri, 16 Feb 2024 17:13:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l%2Btn2UvdKMqE8968zEcjFTK3hJVUZZypYtYE%2FCtIOSU7LdJnyx17eKM5Dm2M3aO69%2Fjj7%2Bo9Sfl49jshu32Be9dmeUd6q3r%2B8wEbQfYO5SIqSJ9%2FselDJdC02niYH5CQ5aipcSsm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79fa4f1f9baf0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.3.min.js

69.16.175.42

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.6.3.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
31 kB (31046 bytes)
Hash
a71ad7930d64f2c3ba0835c7cd47b127
da5a3d35151275d4e31132881848a70826936790
3cd2a0d43f92f7bb32238e74d409c7661a6ad19d12908cd82d01291c0999610b

HTTP Headers

GET /jquery-3.6.3.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://maksmata.com
Connection: keep-alive
Referer: http://maksmata.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:02 GMT
content-encoding: gzip
content-length: 31046
content-type: application/javascript; charset=utf-8
last-modified: Tue, 20 Dec 2022 21:10:40 GMT
accept-ranges: bytes
server: nginx
etag: W/"63a224d0-15f5b"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1677431582.dop016.sk1.t,1677431582.cds264.sk1.hn,1677431582.cds262.sk1.c
X-Firefox-Spdy: h2

maksmata.com/toastify.css

162.241.85.131

200 OK

668 B

URL HTTP/1.1
maksmata.com/toastify.css
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
668 B (668 bytes)
Hash
55f6d91ca36b75ee552dd348702139c5
bc5cbe0f8b5c7d0c0f41b5a5f61565de99f4b627
57965e6554d2949a6d539f1ac69b0046c44ae3d5e8a7635ab84e2a924cd3375a

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /toastify.css HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Last-Modified: Sat, 30 Jul 2022 05:44:04 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 668
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Last-Modified, Backoff, Alert, Cache-Control, ETag, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 26 Feb 2023 17:03:35 GMT
age: 567
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b1d73c7d1e3e594a7be10b7ac62176ac
46105f3b581c409f00524674825c08343e4d71d1
7b31674705946d30e1822ddca8008520258d81a32cb11fadeded012dac2b0d13

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B31674705946D30E1822DDCA8008520258D81A32CB11FADEDED012DAC2B0D13"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11070
Expires: Sun, 26 Feb 2023 20:17:32 GMT
Date: Sun, 26 Feb 2023 17:13:02 GMT
Connection: keep-alive

maksmata.com/styles.css

162.241.85.131

200 OK

168 B

URL HTTP/1.1
maksmata.com/styles.css
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
168 B (168 bytes)
Hash
3698ae37d807cd63a5baf49d0c1f1f63
1d16016e72cc578e2f12d98980b5fdc3940d6f07
43ae94d13b5b91508a30d8db71fa43ed4e983728868b5816b1a187d3c27ed7a9

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /styles.css HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 23 Jan 2023 22:27:16 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 168
Keep-Alive: timeout=5, max=75
Content-Type: text/css

maksmata.com/toastify.js

162.241.85.131

200 OK

4.8 kB

URL HTTP/1.1
maksmata.com/toastify.js
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
4.8 kB (4755 bytes)
Hash
25ef483070b2fa3fa6e7bcd4c9a42ae5
148cddb9de8969028ec7bc4e84cbeae3c399480c
53928b0ee3388c49d3adbe886df2f3b7586c1c85d75ebc743b3d158fe2d079af

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /toastify.js HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 30 Jul 2022 05:44:04 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4755
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript

maksmata.com/fonts/EuclidCircularB-Regular-WebXL.woff2

162.241.85.131

200 OK

45 kB

URL HTTP/1.1
maksmata.com/fonts/EuclidCircularB-Regular-WebXL.woff2
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 45196, version 3.66\012- data
Size
45 kB (45196 bytes)
Hash
2d75957df3bb3aa6ed84f6591b0d5a1a
906424e75625f63b0188471067065794d0348536
8ff3b303322168b49a14878f195dbaf76d9da16e35094d1f83fa23245450155b

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 23 Jan 2023 22:15:08 GMT
Accept-Ranges: bytes
Content-Length: 45196
Keep-Alive: timeout=5, max=75
Content-Type: font/woff2

maksmata.com/fonts/EuclidCircularB-Bold-WebXL.woff2

162.241.85.131

200 OK

44 kB

URL HTTP/1.1
maksmata.com/fonts/EuclidCircularB-Bold-WebXL.woff2
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 44544, version 3.66\012- data
Size
44 kB (44544 bytes)
Hash
9024d0bf73943172297c4628d0054e20
36c3795e7b297d06589e15ef59592683d9ed0974
88fad87880ae6bb0d733c967419d5f0d68da547a88ad67e7af41f18dae2e20df

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 23 Jan 2023 22:15:18 GMT
Accept-Ranges: bytes
Content-Length: 44544
Keep-Alive: timeout=5, max=75
Content-Type: font/woff2

maksmata.com/assets/7203967.svg

162.241.85.131

200 OK

28 kB

URL HTTP/1.1
maksmata.com/assets/7203967.svg
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (28329), with no line terminators
Size
28 kB (28329 bytes)
Hash
fb30936937b2f325a2127bf7bfadc079
ff6d6e0f1e977b8adb45475a91c24cf7ddc58ea1
f5c276911335d626c1e2a814a84d423354e7a32bb827e87868cb0bf14fdb4e6a

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /assets/7203967.svg HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:03 GMT
Server: Apache
Last-Modified: Mon, 23 Jan 2023 22:44:02 GMT
Accept-Ranges: bytes
Content-Length: 28329
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/svg+xml

push.services.mozilla.com/

54.200.77.111

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.200.77.111:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ohwff8JLw1FEWI9l+tutpg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rShYzpzG/mUcYflDfDqM0Il/3K8=

maksmata.com/index.js

162.241.85.131

200 OK

213 kB

URL HTTP/1.1
maksmata.com/index.js
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
213 kB (213224 bytes)
Hash
636cd23d92a2080276e8cf44efa9734c
cb1a06248d6c2c249c19dce13c1bcc4ff52cf7f0
4e5216be17eb75a8c78e7c2b7fb602eeecef257be03fef6f733e9ef08de59f89

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /index.js HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Last-Modified: Sun, 05 Feb 2023 00:16:48 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

maksmata.com/seaport.js

162.241.85.131

200 OK

618 kB

URL HTTP/1.1
maksmata.com/seaport.js
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (864)
Size
618 kB (618226 bytes)
Hash
1c8bbed4c0e75458796251edff724b3b
7e80b4a951da253572ac14ae2fd6f45937debe98
71f4a100b0400df4371957802cd3e72960876c187b9f42a2b886a1671b37150b

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /seaport.js HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 04 Feb 2023 17:40:38 GMT
Accept-Ranges: none
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de315d5092d50613845991919aa00211
ff3ff5b0a51fd00d785d1738f15533acbe6136ec
861874ede499ee00cde4dcc5eef4b0a854432ea092553fb3032b3398596509de

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "861874EDE499EE00CDE4DCC5EEF4B0A854432EA092553FB3032B3398596509DE"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10823
Expires: Sun, 26 Feb 2023 20:13:27 GMT
Date: Sun, 26 Feb 2023 17:13:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
de315d5092d50613845991919aa00211
ff3ff5b0a51fd00d785d1738f15533acbe6136ec
861874ede499ee00cde4dcc5eef4b0a854432ea092553fb3032b3398596509de

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "861874EDE499EE00CDE4DCC5EEF4B0A854432EA092553FB3032B3398596509DE"
Last-Modified: Sat, 25 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10823
Expires: Sun, 26 Feb 2023 20:13:27 GMT
Date: Sun, 26 Feb 2023 17:13:04 GMT
Connection: keep-alive

rpc.ankr.com/eth

104.18.35.56

200 OK

0 B

URL HTTP/2
rpc.ankr.com/eth
IP
104.18.35.56:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /eth HTTP/1.1
Host: rpc.ankr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://maksmata.com/
Origin: http://maksmata.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:04 GMT
content-type: application/json
content-length: 0
access-control-allow-origin: http://maksmata.com
access-control-allow-headers: content-type
access-control-allow-methods: GET,POST,DELETE,OPTIONS
access-control-max-age: 86400
x-multirpc-response-type: 0
vary: Accept-Encoding
server: cloudflare
cf-ray: 79fa4f29fe7cfabc-OSL
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7661
Expires: Sun, 26 Feb 2023 19:20:45 GMT
Date: Sun, 26 Feb 2023 17:13:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7661
Expires: Sun, 26 Feb 2023 19:20:45 GMT
Date: Sun, 26 Feb 2023 17:13:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c930829bdcc2bf23ff3014e5dd21f270
7e175882efd19d1649537da3c2c2e70833558d87
c18c9de6b0d5d2d78d1869d8138a00ef62cbd29a77e7cc2c69d30ad54799dda7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18C9DE6B0D5D2D78D1869D8138A00EF62CBD29A77E7CC2C69D30AD54799DDA7"
Last-Modified: Sat, 25 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7661
Expires: Sun, 26 Feb 2023 19:20:45 GMT
Date: Sun, 26 Feb 2023 17:13:04 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f98177b-c275-4a6b-b962-9ab32af49803.png

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f98177b-c275-4a6b-b962-9ab32af49803.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12088 bytes)
Hash
fc698b1dd0ccb5bc3621d9d45ec217bb
48e953f7189e8b37a933f3fb6be24c67d308484b
130160ed336a6e4927417e094ec79639bbea7538313f780175f8a5b5e9095009

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f98177b-c275-4a6b-b962-9ab32af49803.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12088
x-amzn-requestid: 056c9afd-4245-4aef-8797-74ded6964bc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A6k9sFMloAMFveQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fa81f0-3aa24f1313f08f236ff37a15;Sampled=0
x-amzn-remapped-date: Sat, 25 Feb 2023 21:47:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: JBdW8aVlVX4Jj7ZNVwqMBirmlG6bBfZyut_ITqLsPqK_l989XHBdsw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 21:56:41 GMT
age: 69383
etag: "48e953f7189e8b37a933f3fb6be24c67d308484b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f9dec12-5dfe-426d-81c1-b448af7d92a4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10922 bytes)
Hash
d0cba5c9e3e07db2f8dbdcb15ae7d352
d4cb67ae7d5eebe92b5149b56123b792c62bf916
440fa87101c072f931a38f2cfa08e39de26627333eca9a5fcf126d19cb636248

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f9dec12-5dfe-426d-81c1-b448af7d92a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10922
x-amzn-requestid: 7570e40d-8924-4bec-bbfa-ec21196d61fc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A6k-VGr4oAMFfYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fa81f5-778dfbbb6c0aeadb56585d14;Sampled=0
x-amzn-remapped-date: Sat, 25 Feb 2023 21:47:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: GQb4lWWejrVf_EftwWNniDxI8UAEd_rgPvmsbqXMMJ9ZPNjt4ThX0A==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 22:15:07 GMT
age: 68277
etag: "d4cb67ae7d5eebe92b5149b56123b792c62bf916"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9093 bytes)
Hash
2a5f3d376fe6a3a78a5d1fe136f962fb
3e9b03cc296e954d63526a4e7e75beea3130fc3b
c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGDTF9U77Y1pmqtYk-yDa2GsiRraTcwCOBV-yAzDPT2PvS89NeCtZg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 21:35:01 GMT
age: 70683
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F475b1534-7068-4e8f-b3cf-2b8383c868c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10195 bytes)
Hash
1a071a3ba84b6fa6254044ab8378a2a0
5d9d0c12c4b9bcdac503d9089c158ea1281644fb
557c482e3f008a13dc0821d2dddd59d6d352672f9afab2d2c42b15d4ab256b08

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F475b1534-7068-4e8f-b3cf-2b8383c868c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10195
x-amzn-requestid: a9b85d09-7704-4d07-bcc0-4e8b2db6f94e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A6jiaE_aoAMFjJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fa7fa8-6caf97ad35b0949f7cda0c10;Sampled=0
x-amzn-remapped-date: Sat, 25 Feb 2023 21:37:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: tUzVVz2Otd77Q8FGmm7SwXxMgqQBSzpWNmfXu2Ug8kkvedqfaKx3_Q==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 22:03:16 GMT
age: 68988
etag: "5d9d0c12c4b9bcdac503d9089c158ea1281644fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97a100f5-572c-40d6-8b55-faec200f25c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5874 bytes)
Hash
c25f9df9d87b9608ccf4f6fdfca5cfcc
449d8e8ed8fef5b707c097c9c5be34cee081a2c8
a8f8b1e6800092e64e3f43fe73a6ed8dcaed508f28a0fd07ceb54e5e345a424c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97a100f5-572c-40d6-8b55-faec200f25c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5874
x-amzn-requestid: 957565fc-c05c-42f5-9f41-bb61e61513df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A6iywGvLIAMFvLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fa7e77-18faffe055ae704c18454ba3;Sampled=0
x-amzn-remapped-date: Sat, 25 Feb 2023 21:32:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: p6r2zWlplug8G9bciyS_kHBYFUpEgukU8XzXNaGsFXcRvg25UgKASA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 22:02:33 GMT
age: 69031
etag: "449d8e8ed8fef5b707c097c9c5be34cee081a2c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F016462a1-fadc-4180-93f8-995cab0e1395.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8170 bytes)
Hash
32d08a3dc7c1e88313f487d74babdfe5
12f4693c36cb8980a5c740b735b7cf64542734e4
ae717a6760a0a6c179b950643eb3590c0ab5ec6cf159061246c6e8fc38a7ae89

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F016462a1-fadc-4180-93f8-995cab0e1395.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8170
x-amzn-requestid: bd3ecc5c-1efc-4589-8789-48693fbfa6d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: A6i2sGKkIAMFXtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63fa7e90-7acdeb5b05f8bcf726309125;Sampled=0
x-amzn-remapped-date: Sat, 25 Feb 2023 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: OIer9IgcIIbMg6EdrYFpojiEtN5oxPBijKFbX4UzURWTKha09i8NcQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 1d0860167e2100a6d1cd9c0213c2b8e8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Feb 2023 21:53:01 GMT
age: 69603
etag: "12f4693c36cb8980a5c740b735b7cf64542734e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

maksmata.com/assets/icon-48x48.png

162.241.85.131

200 OK

4.2 kB

URL HTTP/1.1
maksmata.com/assets/icon-48x48.png
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4210 bytes)
Hash
7688ebe09d93b68eb4a23536f7b7aefb
5b33f4a405eb2f178146d1016fbf2046c1c77866
918a76a5bebc21af888b92725ad9207b7c6886f6035d5b5115999251b58ba9e8

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
phishtank	Other
quad9	Sinkholed

HTTP Headers

GET /assets/icon-48x48.png HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 200 OK
Date: Sun, 26 Feb 2023 17:13:04 GMT
Server: Apache
Last-Modified: Mon, 23 Jan 2023 22:20:04 GMT
Accept-Ranges: bytes
Content-Length: 4210
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

maksmata.com/icons/icon-512x512.png?v=48400a28770e10dd52a8c0e539aeb282

162.241.85.131

404 Not Found

358 B

URL HTTP/1.1
maksmata.com/icons/icon-512x512.png?v=48400a28770e10dd52a8c0e539aeb282
IP
162.241.85.131:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
358 B (358 bytes)
Hash
e6380e0c65d744670ca2bdfdebf952e7
72010e09611689dba83d615d7d4e14525584f574
a5a070dc995c94a5ecc33cec32455618639d9ea695e8a58df9bb22eee7e9ab09

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /icons/icon-512x512.png?v=48400a28770e10dd52a8c0e539aeb282 HTTP/1.1
Host: maksmata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://maksmata.com/

HTTP/1.1 404 Not Found
Date: Sun, 26 Feb 2023 17:13:04 GMT
Server: Apache
Last-Modified: Wed, 10 Aug 2022 21:53:15 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 358
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/html

rpc.ankr.com/eth

104.18.35.56

200 OK

40 B

URL HTTP/2
rpc.ankr.com/eth
IP
104.18.35.56:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
e9b93c5eac6b3df9660330580d31345f
77b32dc9a945b563c741d53cc40ddff3d2d42b47
232d3c5ffae1c27fcf2ee357eafeabae4064d579ef40673d047b7c4cabd30406

HTTP Headers

POST /eth HTTP/1.1
Host: rpc.ankr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://maksmata.com/
content-type: application/json
Origin: http://maksmata.com
Content-Length: 60
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:04 GMT
content-type: application/json
content-length: 40
access-control-allow-origin: http://maksmata.com
cache-control: public, max-age=2
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type,Authorization
access-control-allow-methods: GET,POST,DELETE,OPTIONS
access-control-max-age: 86400
x-multirpc-response-type: 1
vary: Accept-Encoding
server: cloudflare
cf-ray: 79fa4f2a0ea2fabc-OSL
X-Firefox-Spdy: h2

unpkg.com/@walletconnect/web3-provider@1.8.0/dist/umd/index.min.js

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/@walletconnect/web3-provider@1.8.0/dist/umd/index.min.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@walletconnect/web3-provider@1.8.0/dist/umd/index.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maksmata.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:02 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"b676a-41rts15ovjp3cyT9kq33OWEyt7I"
via: 1.1 fly.io
fly-request-id: 01GQ48SJQNRYN8765ZE1C178K8-fra
cf-cache-status: HIT
age: 3324633
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79fa4f200efeb509-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/web3@1.2.11/dist/web3.min.js

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/web3@1.2.11/dist/web3.min.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web3@1.2.11/dist/web3.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maksmata.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:02 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"11c1e2-CBKBj3aedzOyuXE1C535ub1XCzM"
via: 1.1 fly.io
fly-request-id: 01G4XHM42X0JVS1XGA34G5AG9K-fra
cf-cache-status: HIT
age: 22877712
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79fa4f1f7e17b509-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /evm-chains@0.2.0/dist/umd/index.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maksmata.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:02 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 02 Nov 2020 20:31:28 GMT
etag: W/"5881-yk4n8EqlvpHDLglCWD85vKUneh8"
via: 1.1 fly.io
fly-request-id: 01G3YDPBXRA18B04P0CD7HWFWJ-fra
cf-cache-status: HIT
age: 23921982
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79fa4f1f9e30b509-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/web3modal@1.9.0/dist/index.js

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/web3modal@1.9.0/dist/index.js
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web3modal@1.9.0/dist/index.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://maksmata.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 26 Feb 2023 17:13:02 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"68879-tm7vwPb2IqrA2oEDTYylltO0M54"
via: 1.1 fly.io
fly-request-id: 01GQ4JECARFY4085G41QARNATK-fra
cf-cache-status: HIT
age: 3314513
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79fa4f1f8e29b509-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML