Report - blockinsta.pages.dev/

Report Overview

Submitted URL
blockinsta.pages.dev/
IP
172.66.47.26
ASN
#13335 CLOUDFLARENET
Submitted
2023-12-05 09:06:51
Access
public
Website Title
Who Blocked you on Instagram
Final URL
blockinsta.pages.dev/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
kit.fontawesome.com	1868	2012-10-18	2019-12-16	2023-12-04	461 B	12 kB	104.18.40.68
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-12-05	911 B	8.2 kB	142.250.74.106
dby7kx9z9yzse.cloudfront.net	unknown	2008-04-25	2022-05-28	2023-11-16	432 B	27 kB	54.230.241.197
blockinsta.pages.dev	unknown	unknown	No data	No data	5.9 kB	898 kB	172.66.44.230
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2023-12-05	448 B	29 kB	104.17.25.14
unpkg.com	11693	2016-01-06	2016-01-08	2023-12-05	856 B	419 kB	104.16.126.175
ka-f.fontawesome.com	3598	2012-10-18	2019-12-17	2023-12-04	2.0 kB	121 kB	172.64.204.20
d2yc1amd5aqnhl.cloudfront.net	unknown	2008-04-25	2023-10-02	2023-11-25	1.9 kB	22 kB	54.230.241.62

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram
2023-12-03	medium	blockinsta.pages.dev/	Instagram

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	kit.fontawesome.com/8493700253.js	12 kB	2023-12-04	2024-03-25
Pretty URL kit.fontawesome.com/8493700253.js IP 104.18.40.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 02:47:45 Last Seen2024-03-25 04:50:30 Times Seen29 Hash f9c880f6392103b5226119021cda8306 2a28ecb1be52d2c667e5dea7ca15f9eb68626525 4249c18e1d0580442af3e998733f1d5c35c085ccee7a34c803ddcdc65917a861 Loading...

	unpkg.com/axios/dist/axios.min.js	34 kB	2023-11-14	2024-07-22
Pretty URL unpkg.com/axios/dist/axios.min.js IP 104.16.126.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-14 21:38:37 Last Seen2024-07-22 12:01:34 Times Seen13295 Hash a68c57e04fd79331988c16fc3585405d 413c97b8c8ba0be18c36a65a5be940239c5956c2 550f26d03776c62d33e90b8028c6b4e2e7d1301c6ff769cff94592a93df71c68 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-07-27
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-07-27 02:55:32 Times Seen109632 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	blockinsta.pages.dev/	64 B	2023-03-07	2024-04-24
Pretty URL blockinsta.pages.dev/ IP 172.66.44.230 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:36 Last Seen2024-04-24 08:28:11 Times Seen45 Hash cac371c5f1fa982230ebd6a7c694df09 daa9afcf894730b61ccd25a039dc18d8fcd5925d 7ee7de859a85bf474f12ac7db04a246dea634c7e0137a7365e88e692adef0e11 Loading...

	dby7kx9z9yzse.cloudfront.net/5b1744a.js	27 kB	2023-10-05	2024-02-20
Pretty URL dby7kx9z9yzse.cloudfront.net/5b1744a.js IP 54.230.241.197 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-05 03:27:43 Last Seen2024-02-20 23:38:05 Times Seen297 Hash 1d4bf449a445ba3f51ddbb265bb20a66 776c9032ba78f5e4e5bee3c84ef435f79d9db4c6 f2c83aa51a9a14329803e75c79a3ef8727216c8a7f4614db3258237442b95db2 Loading...

	d2yc1amd5aqnhl.cloudfront.net/public/external/v2/htmlxf.2131664.27eca.0.js	13 kB	2023-10-14	2023-12-05
Pretty URL d2yc1amd5aqnhl.cloudfront.net/public/external/v2/htmlxf.2131664.27eca.0.js IP 54.230.241.62 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-14 15:12:33 Last Seen2023-12-05 10:06:58 Times Seen9 Hash 3965ccb21f3d7d0f3e44597d6bbe1282 d43c8a49784e128da61f0a3ba5bab7fae7d35434 64a246b8309f471a9eaaa3ed4011f9f600ee9a301da695806d63edeb6e061d5f Loading...

	blockinsta.pages.dev/src/cDg-min.js	339 B	2023-03-07	2024-04-24
Pretty URL blockinsta.pages.dev/src/cDg-min.js IP 172.66.44.230 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:36 Last Seen2024-04-24 08:28:11 Times Seen52 Hash 0432a28d2866927cc06604ea078acd0d 6c0cb9dc21a5bb8dad6776cc94d0b3d04ca7d203 c8e4bd11bcb018fb25d2e6db0ded4e5b7201e7f59ef7d2338960ea9f9ba36b42 Loading...

	blockinsta.pages.dev/	12 kB	2023-12-04	2024-03-01
Pretty URL blockinsta.pages.dev/ IP 172.66.44.230 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-04 02:47:45 Last Seen2024-03-01 18:41:59 Times Seen5 Hash ae6094927c73fcef8780c1203be7983c c380cadab369a96bc32d5cf31df8cc11bf07a440 6ff6046f6686e422f1b010566871f498dc24f5c45999c2d522b2b4db54c141e6 Loading...

	d2yc1amd5aqnhl.cloudfront.net/public/external/check.php?it=2131664&time=1701767202954	72 B	2023-08-12	2024-07-26
Pretty URL d2yc1amd5aqnhl.cloudfront.net/public/external/check.php?it=2131664&time=1701767202954 IP 54.230.241.62 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-12 16:35:44 Last Seen2024-07-26 11:57:26 Times Seen1045 Hash 69d77690ed201acd0627e99dd35c96eb 05ffc794be6dae3836ee5df72d82d917323b2941 577d248638c57941b7e35d9a19ef4b5d88d52482f6e59254142d4266c57bad38 Loading...

HTTP Transactions (28)

URL IP Response Size

blockinsta.pages.dev/img/menu.png

172.66.44.230

200 OK

1.3 kB

URL GET HTTP/3
blockinsta.pages.dev/img/menu.png
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
PNG image data, 82 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1255 bytes)
Hash
579d48db9ec97dde9cae51924612fbe9
c9bc0617a5d1b23f73828f21d534afcdd007551b
468fa718d9bd09dbb42e483507865d2faf36d474901f010e05087e1aad0dcaa6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/menu.png HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: image/png
content-length: 1255
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "137d1286fcbcaed4167b43e17831114a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dyKZxhHR8lFxofuatby0XljJ0fp7MjGxrJftViy5thsTKKY5vg3BypmobOeUyhY3l%2FlhzFqxa6OxMrxPmahD1xbCDvlGIdD77%2BQuwTttMsAMq036TBuIUy90mgxIBLYQVOl3rRQK8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22418939568f-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 696054
expires: Sun, 24 Nov 2024 09:06:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U5es4DWjre1bNaF2PzWgXI2%2BMPF9iCdXs2OdoxkTG9IFPO1u5M%2FYqofuRBp2r%2BiaoVi7G9DytSdyrhjzIkrYmeW6x2GMSEkX%2F6AyPEJgCUsZlCI804i0Ajb6XJXWXc8Dh6KN8n71"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 830b2241beb2569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

blockinsta.pages.dev/img/wig.png

172.66.44.230

200 OK

211 kB

URL GET HTTP/3
blockinsta.pages.dev/img/wig.png
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
PNG image data, 4500 x 4500, 8-bit/color RGBA, non-interlaced\012- data
Size
211 kB (210574 bytes)
Hash
8b1ccf1bc154ed976d5f38e16d1a0a91
4963601be5d4c5d9f4885fbfda1ccdd28c36d403
f786287e3d9bc2b2bf4418f0ffdc9432bf40cbd5077ece97b7bde037ad0ce597

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/wig.png HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: image/png
content-length: 210574
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "26959a384eda47f780afe9b1f3bf1ae6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fxwn60%2BRSOZxJEbLMXQuOdqq0dkMBuXTIl1QnOpkc85y8P7i9RLsW7apqo6lwGoLlAX3e2oHIKvhLY7ZABRj463S6VCRWZNAtePusM%2FANl8SVpNt%2BJGHldAI8XOhKO5q6Ku3bZZYWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22418952568f-OSL
alt-svc: h3=":443"; ma=86400

blockinsta.pages.dev/img/loadercr.gif

172.66.44.230

200 OK

220 kB

URL GET HTTP/3
blockinsta.pages.dev/img/loadercr.gif
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
GIF image data, version 89a, 146 x 146\012- data
Size
220 kB (219813 bytes)
Hash
75dac2aa5f448ddba938ebb784077224
c0515516309e317bc6e7754c2995b96c7789cf09
3af49083959404c8b4de27de90f6b5145b3430322a8b8b15300eb6e558aad38e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/loadercr.gif HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: image/gif
content-length: 219813
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "31a19fd587b87ba2b262ad2cd34f423f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vSWOGt9LJKTsfDDtuvozAqdmrvp7paMsUxQzLpO%2BuozEz5qA6DU%2Bl0wWRsO163AEZ134IfJdUnr1OVISOncMNgG%2FN%2F0bjCXAidbqoe7ShGG5YyumncNWFIfuKo4j9DVz15RSd9z1pw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22418957568f-OSL
alt-svc: h3=":443"; ma=86400

blockinsta.pages.dev/img/ihpne.png

172.66.44.230

200 OK

32 kB

URL GET HTTP/3
blockinsta.pages.dev/img/ihpne.png
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
PNG image data, 1200 x 1200, 8-bit colormap, non-interlaced\012- data
Size
32 kB (31620 bytes)
Hash
9c09eee3daebc943fb6966eaddd0b1f2
71b7d6ce3cef5751369f974b4254f9e0e221a34a
3274b0721cc0970b2cc977647a7daa2b4351b2ab305ebd9da0365586d9fe9431

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/ihpne.png HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: image/png
content-length: 31620
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "97fcde8e9186f98feae26ae3f6ebaa72"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BwNBoyVMiN%2FhFlpaVjmAXHo0gSjkjmSu1P2PlJPELM17CIuMGaWoKAJtJMH6y2%2BftV7sY5VlMB4wVX%2BS%2FKweJwxzzBaXIThcxIfqHc9Pm9qQop1VBFyOMde6q2SiR5RphLg5KznJmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b2241895d568f-OSL
alt-svc: h3=":443"; ma=86400

unpkg.com/axios/dist/axios.min.js

104.16.126.175

302 Found

384 kB

URL GET HTTP/2
unpkg.com/axios/dist/axios.min.js
IP
104.16.126.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
data
Size
384 kB (384482 bytes)
Hash
34a4bfd5accab09de66c0131198343d9
513fb38e03c584c5a601a77f07c1863f8f3f0f2b
4100649d02f56ac2d667f6c3b4f894c0c11b4ab33ee746b98fec2550eacbfeef

HTTP Headers

GET /axios/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /axios@1.6.2/dist/axios.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HGWK605YBA6CVH5QTAXKPSYK-arn
cf-cache-status: HIT
age: 500
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b2241bd5d712f-OSL
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=8493700253

172.64.204.20

200 OK

10 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-shims.min.css?token=8493700253
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (27377)
Size
10 kB (10466 bytes)
Hash
604d6da359831b0dc67e0f522f1ff94d
48b776b939a780fde0270dedf7cc163d25e28bb1
5031c11dd77875afefe4eeddfaa320af07fdccea327f7416a5ee8980674c9c76

HTTP Headers

GET /releases/v6.5.1/css/free-v4-shims.min.css?token=8493700253 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
Origin: https://blockinsta.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"604d6da359831b0dc67e0f522f1ff94d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2fe8f7f5aca4ab098dc7bad8e97a06dc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: hA0iM3dv2dCnFpkYImplxxa69sybRvCfgvpAPKYHxYb8UXYLMjTr4g==
age: 135048
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hDFxAB0yzWgagn7tDrj7NAkttTipbdZEmMgV50rUdcdJwatGEsRlgEIkfk1ujSeKdDqs0JxmFVxeyZOrHpxJHuJruzQo%2Bf0hCQInVJrKZTj4XQTu0l26B%2FFRqU0Nz1%2Fftnle5UDNVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830b22443f124164-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

d2yc1amd5aqnhl.cloudfront.net/public/clockers/CustomButton/cssXF.css

54.230.241.62

200 OK

896 B

URL GET HTTP/2
d2yc1amd5aqnhl.cloudfront.net/public/clockers/CustomButton/cssXF.css
IP
54.230.241.62:443
ASN
#16509 AMAZON-02

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
896 B (896 bytes)
Hash
4c31e2e879fda3248e38f318494d6676
9f74294ca7491752f72ea705e6fc992549e1ade9
01054ae4581776870b0514bfb9607e8764927456f14d8eb6de6ba84f12f9c3d6

HTTP Headers

GET /public/clockers/CustomButton/cssXF.css HTTP/1.1
Host: d2yc1amd5aqnhl.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 896
date: Tue, 05 Dec 2023 09:06:35 GMT
server: Apache/2.4.41 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Thu, 17 Aug 2023 03:34:30 GMT
etag: "380-6031617008ead"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9pfjfapeuz0eSrCg8luI04tjJc3Cqy-TvcSnlXdA85X9dfOQvNCTSw==
X-Firefox-Spdy: h2

d2yc1amd5aqnhl.cloudfront.net/public/external/check.php?it=2131664&time=1701767202954

54.230.241.62

200 OK

72 B

URL GET HTTP/2
d2yc1amd5aqnhl.cloudfront.net/public/external/check.php?it=2131664&time=1701767202954
IP
54.230.241.62:443
ASN
#16509 AMAZON-02

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text
Size
72 B (72 bytes)
Hash
69d77690ed201acd0627e99dd35c96eb
05ffc794be6dae3836ee5df72d82d917323b2941
577d248638c57941b7e35d9a19ef4b5d88d52482f6e59254142d4266c57bad38

HTTP Headers

GET /public/external/check.php?it=2131664&time=1701767202954 HTTP/1.1
Host: d2yc1amd5aqnhl.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 72
date: Tue, 05 Dec 2023 09:06:37 GMT
server: Apache/2.4.41 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NtepoIUsVu6ddS3NaJm4txgb5jMHzOruuTA3vrmOp3v5ZmhGpzNbGQ==
X-Firefox-Spdy: h2

kit.fontawesome.com/8493700253.js

104.18.40.68

200 OK

12 kB

URL GET HTTP/2
kit.fontawesome.com/8493700253.js
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
ASCII text, with very long lines (11461)
Size
12 kB (11890 bytes)
Hash
f9c880f6392103b5226119021cda8306
2a28ecb1be52d2c667e5dea7ca15f9eb68626525
4249c18e1d0580442af3e998733f1d5c35c085ccee7a34c803ddcdc65917a861

HTTP Headers

GET /8493700253.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
Origin: https://blockinsta.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F519souUTRNr0a59oW0C
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 830b2241ac2d56cc-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=8493700253

172.64.204.20

200 OK

103 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.5.1/css/free.min.css?token=8493700253
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (65321)
Size
103 kB (103173 bytes)
Hash
edc53d8d44037708e54122b9e30bb2a1
7210b158d88b1e463ba0b08d26835a9fd4e6c57e
b2bfe99e2e78f71c88eb00c49e1392a15531fb6486d0d0c2ea71937dda34deab

HTTP Headers

GET /releases/v6.5.1/css/free.min.css?token=8493700253 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
Origin: https://blockinsta.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:52 GMT
etag: W/"edc53d8d44037708e54122b9e30bb2a1"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 17a77a72dc1e9981253a822e540e37c2.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: dRPG1lJELnQ_Yh9xcPR81geiECVc7Cq3BnXPzEFnXFL_NmPpbmSJXA==
age: 135048
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AYjS9bJydxPH8Qr1%2B0t8cyHYntCs6HZH0pywo8Ojrk%2BXawXx2w%2BLoLLP6eTstJuvZmoLZov7LZFWwO4rW5vJlvSfV0SgvM1qTuEtMdJcVLXRi%2BOayaD%2F%2BVE5N%2FkrxYYRaGWUxKHrDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830b22443f104164-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

d2yc1amd5aqnhl.cloudfront.net/public/external/v2/htmlxf.2131664.27eca.0.js

54.230.241.62

200 OK

13 kB

URL GET HTTP/2
d2yc1amd5aqnhl.cloudfront.net/public/external/v2/htmlxf.2131664.27eca.0.js
IP
54.230.241.62:443
ASN
#16509 AMAZON-02

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11943), with CRLF line terminators
Size
13 kB (13228 bytes)
Hash
3965ccb21f3d7d0f3e44597d6bbe1282
d43c8a49784e128da61f0a3ba5bab7fae7d35434
64a246b8309f471a9eaaa3ed4011f9f600ee9a301da695806d63edeb6e061d5f

HTTP Headers

GET /public/external/v2/htmlxf.2131664.27eca.0.js HTTP/1.1
Host: d2yc1amd5aqnhl.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 05 Dec 2023 09:06:34 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: estzMcpAdCA3qYQzYEgqFkAxGnE6V-oATfR67y56Bhp1eFsP3V6dqg==
X-Firefox-Spdy: h2

fonts.googleapis.com/icon?family=Material+Icons

142.250.74.106

200 OK

565 B

URL GET HTTP/2
fonts.googleapis.com/icon?family=Material+Icons
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (588), with no line terminators
Size
565 B (565 bytes)
Hash
bdcf60bde5544e1017e1f2e60888a9c7
6fb24309b7ff90c1c99d19c0c7a127a16508840e
d701601406acfca6bfc0c58b411446e3e0e96c659f35c143355d3dd72c390952

HTTP Headers

GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 09:06:34 GMT
date: Tue, 05 Dec 2023 09:06:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blockinsta.pages.dev/img/ig.svg

172.66.44.230

200 OK

5.7 kB

URL GET HTTP/3
blockinsta.pages.dev/img/ig.svg
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (5759), with no line terminators
Size
5.7 kB (5741 bytes)
Hash
9670afb71679cfbdd58c35e37c35802f
55cd596f3ad9f99d2f435665fa65822241a3fe97
72532cce93d41b04d8c2ccaafe89d70dc2a277398088563ac524e0c273bdee6b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/ig.svg HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d988cfc8cf7a06749cbac0fa92f059d1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jcbArPA9m7G%2BvIUsCPy5JP5Bur0t5ys8CDIIzVpVwRV%2F7D51NeBjFxhyzKfrpQbo7cqJgajmY%2FyCqF4PLTW%2B2tfz6waP0%2B81WT68897h61EKb0cmh3GGaByyqYlnJ5Y4avUGkTflRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22417913568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blockinsta.pages.dev/img/pc.svg

172.66.44.230

200 OK

634 B

URL GET HTTP/3
blockinsta.pages.dev/img/pc.svg
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (675), with no line terminators
Size
634 B (634 bytes)
Hash
198635f3a8a5b82a7e02b160f0e4f128
ff818965beac93c748cae0bd689f4798502af9f9
b543b783344fb04d24ac85c564e5e994b537debf9a1e640d8fa7974d93e1c143

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/pc.svg HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"11550f2328f258b82398cd014b2c952a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n0xNcCaemZ4tdn7Su4sOldZxn0xQdfmKFZ%2BAv21bRGDyPwozlyP0%2Fe6FXIVzfXyWUmvHF4912LbrtAVWZpf5114z79tn%2Fs8hJ3Fhdi187Ohgqxec3DOQ0wx9EFlamS9g1GcgZiWLQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22418963568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blockinsta.pages.dev/img/android.svg

172.66.44.230

200 OK

1.5 kB

URL GET HTTP/3
blockinsta.pages.dev/img/android.svg
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1616), with no line terminators
Size
1.5 kB (1548 bytes)
Hash
e3bd1ae7b6fb23b46841dd43238771cf
e32fae3b38b03e39a6a74003beee32ad78c0eaa6
9cc5982e828bcc3993658cac49f5080f844c36a76e3aecab705b895189959132

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/android.svg HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"081d21a567403e791ff46bf2a7c17f80"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4TfO9Rm62yLpWfTsrhSB0sEwkIj9EX4CxUfuozi%2FKsBQJORmnE3RfGanCqxjP08ARENpWsVCpTmoq0mstI0fJmepJCMiB1QkwLzr5cDq8GXwMqwFhi%2FsJTdrzoeSyY4vBPNzxmiffQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b2241895e568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

unpkg.com/axios@1.6.2/dist/axios.min.js

104.16.126.175

200 OK

34 kB

URL GET HTTP/2
unpkg.com/axios@1.6.2/dist/axios.min.js
IP
104.16.126.175:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (33582)
Size
34 kB (33621 bytes)
Hash
a68c57e04fd79331988c16fc3585405d
413c97b8c8ba0be18c36a65a5be940239c5956c2
550f26d03776c62d33e90b8028c6b4e2e7d1301c6ff769cff94592a93df71c68

HTTP Headers

GET /axios@1.6.2/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"8355-QTyXuMi6C+GMNqZaW+lAI5xZVsI"
via: 1.1 fly.io
fly-request-id: 01HGCN3VFCPPSGV0YWPCZJNHHR-arn
cf-cache-status: HIT
age: 535345
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830b22435ef9712f-OSL
content-encoding: br
X-Firefox-Spdy: h2

d2yc1amd5aqnhl.cloudfront.net/public/external/css_frontXF.css

54.230.241.62

200 OK

6.1 kB

URL GET HTTP/2
d2yc1amd5aqnhl.cloudfront.net/public/external/css_frontXF.css
IP
54.230.241.62:443
ASN
#16509 AMAZON-02

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (6540), with no line terminators
Size
6.1 kB (6134 bytes)
Hash
c1801db5f380073be5f2b95a315f147c
5f7aa5f52f6a21580c29809d13f2f71baf9b1e4b
33234f8b457d3bf112bc9dcbeb6fdd4ec18f6f6e1f38d6ad71f56f8b00c25b73

HTTP Headers

GET /public/external/css_frontXF.css HTTP/1.1
Host: d2yc1amd5aqnhl.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
content-length: 6134
date: Tue, 05 Dec 2023 09:06:34 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Thu, 17 Aug 2023 03:23:55 GMT
etag: "17f6-60315f12e3b62"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KNbB6vkbJmbCyF2HVuUUZMZ52SihpA8lKmj83kOfYa5-qO7u8PMHVQ==
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:100,300,400

142.250.74.106

200 OK

6.4 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:100,300,400
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (6523), with no line terminators
Size
6.4 kB (6355 bytes)
Hash
01cb5697003980c614f58682ccebe2e0
fcd8645e5db98c7c717a1026c31adddc89d7cf2d
2996533be05f508533215a6bb14b19d031bf466e476a0b5f9ff2fac44b9e34fb

HTTP Headers

GET /css?family=Roboto:100,300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 09:06:34 GMT
date: Tue, 05 Dec 2023 09:06:34 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blockinsta.pages.dev/

172.66.44.230

200 OK

18 kB

URL User Request GET HTTP/2
blockinsta.pages.dev/
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type

Size
18 kB (17547 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET / HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"103f1f8372be55a66cca56df093e719e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aYT8T3%2F98JK%2B50L41fB85Zw6azLWKDqoIjrSol0yw0EQ%2Bv30DzgIKQnvqlarsf4OooeeuBw6KgWaKYPC6pRn7RY2ooAWkrFmAy0MfiyI74bq6wMQeuEuO%2BNiIiRxrRrhux1wN3RXMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b223f4d117129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

blockinsta.pages.dev/css/style.css

172.66.44.230

200 OK

7.5 kB

URL GET HTTP/3
blockinsta.pages.dev/css/style.css
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
ASCII text, with very long lines (7958), with no line terminators
Size
7.5 kB (7480 bytes)
Hash
15ac193fe3429df6455d159c36a9dc33
e39a5823589f9cefffde9ac4578bd2d9ca9f0580
feac6906f6907cc3927598515ade5e0cc78b5a198aefcd743c8a0449e7cd8be0

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /css/style.css HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"af89ce26f7092a177e95f20638541cd9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w7CzzD6dvj8pt%2B%2FB8zQ2RwEev9BPxNBCuOIToum9iuQ73vrnUfOcldNo5lohTnmC4LGW1IIr6yHh0%2FxpA34S4d9uZ4fEZaGNAHWV29Id1LJ%2BGbmippdjUntZqlMZ%2FKqj4ElTEdSfbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22415903568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ka-f.fontawesome.com/releases/v6.5.1/css/free-v5-font-face.min.css?token=8493700253

172.64.204.20

200 OK

823 B

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.5.1/css/free-v5-font-face.min.css?token=8493700253
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (845), with no line terminators
Size
823 B (823 bytes)
Hash
e6d3783736d2fad2b606057fbb27accf
42a95cbe55b5192414282a64e5f0a106ebd0cfcd
428e4fa90d3cad30b14fe0c63a3a23e6487de4dad755477a33a385844e5a91a7

HTTP Headers

GET /releases/v6.5.1/css/free-v5-font-face.min.css?token=8493700253 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
Origin: https://blockinsta.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"496965a55b1faa4d5c41073ef276afc0"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 728b6476f3e2317ec8044d22806d4f94.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: JNqkn4YjQzEB6o8fkoCXD7qJrJGlIXZqRNpDfR_3qDyQNUzEq2Nhug==
age: 135048
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VoiAhdiqmOhxDLw8Sg2yZEBdTSdmjCXImN5IlK5vhN4Z5%2BFbnVt7L0Qyl2n9gn5eqyB96RiIjOxyxL5H8ooMUp%2BNbjcZt0%2FQjcDtB1tH%2BqSzMpIkGcY%2FJlK%2BvUE921DmQV0YZQbshQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22443f0e4164-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

blockinsta.pages.dev/img/igicon.png

172.66.44.230

200 OK

384 kB

URL GET HTTP/3
blockinsta.pages.dev/img/igicon.png
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Size
384 kB (384430 bytes)
Hash
a11315201911a2d50acb12f211af971d
d9040ab32ed1da500c94ca06a3e42fa6d60da81d
3906a915835476abc70cf1cf63ec02271d46a690fe1603750c3bffee8f99b32a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/igicon.png HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: image/png
content-length: 384430
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5983c45272feb2d00f92a8613e91b2aa"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fIX2f7yoi%2BIlC1is5NBXlSEiAif4os8zdh%2BZLFwZrXLzMdeuxwLd1dLm3nP5hGt5ki5OPp15VnxYJj426Pz5w8uHeM7DhhPPfhJVyjPPVBBiPo138NOGgPvvxNpKE77HIG0fqrUdkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22463e13568f-OSL
alt-svc: h3=":443"; ma=86400

blockinsta.pages.dev/src/cDg-min.js

172.66.44.230

200 OK

339 B

URL GET HTTP/3
blockinsta.pages.dev/src/cDg-min.js
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (359), with no line terminators
Size
339 B (339 bytes)
Hash
88449e4a0de3aa447aadc11ba4179de2
77cb520b19beb6d20c31abcf425073aec47c4b86
13015e846f589f133fb33cadb0a39e5bb8a64e0425a507a924461255a80732ae

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /src/cDg-min.js HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7dbeab961f348fe3f59d5b8417f5070e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HT6skrdEw%2F7hj%2B2qeVoCMIbSufbD8LZxXlo7B%2FxI%2BEWiPPHCF2MWn0tPK0slPb%2BxpmdWK6J9CjEaasHQZT1Vs1fgnNwGH3pHg6lmd4ZCvseZeHmzqB25x7%2Fy%2BqroAR8w0%2FSVWOxIEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22415905568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

blockinsta.pages.dev/css/st.css

172.66.44.230

200 OK

6.2 kB

URL GET HTTP/3
blockinsta.pages.dev/css/st.css
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
ASCII text, with very long lines (6569), with no line terminators
Size
6.2 kB (6165 bytes)
Hash
ba92c0ca9758fb1224944914244bb7d2
52fe5ede4a10d093e2cdaf23b109e2056d5798bc
012bad790f0aeae7733b80de30930e6dacddd82c36a883990da6147733b79f27

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /css/st.css HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"84733894b611d2b77a7b0ddf2d9b0799"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3cALyzjPWk5q%2Fkvm34TsqAL1xmQb9WwCjED6GmjqS%2BaHk%2FViaYS6AZJn46MyBBVnAIo%2F0k5rYqd6GVK9Lpc4pNRKhU0IiVco0KaXbl3%2FQDTCAOJ23lP9l6%2Bs1sfMWxne3uNT5xdjnA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b22415906568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dby7kx9z9yzse.cloudfront.net/5b1744a.js

54.230.241.197

200 OK

27 kB

URL GET HTTP/2
dby7kx9z9yzse.cloudfront.net/5b1744a.js
IP
54.230.241.197:443
ASN
#16509 AMAZON-02

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
C source, ASCII text, with very long lines (1637), with CRLF line terminators
Size
27 kB (26922 bytes)
Hash
1d4bf449a445ba3f51ddbb265bb20a66
776c9032ba78f5e4e5bee3c84ef435f79d9db4c6
f2c83aa51a9a14329803e75c79a3ef8727216c8a7f4614db3258237442b95db2

HTTP Headers

GET /5b1744a.js HTTP/1.1
Host: dby7kx9z9yzse.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Tue, 05 Dec 2023 03:09:22 GMT
last-modified: Wed, 04 Oct 2023 02:19:24 GMT
etag: W/"1d4bf449a445ba3f51ddbb265bb20a66"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _gD2lLX9kbmg1vpJZFJAVi5d9mqae1stVfNltx_fJtHIz5n99k2gxg==
age: 21433
X-Firefox-Spdy: h2

blockinsta.pages.dev/img/apple.svg

172.66.44.230

200 OK

828 B

URL GET HTTP/3
blockinsta.pages.dev/img/apple.svg
IP
172.66.44.230:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectblockinsta.pages.dev
FingerprintB4:7B:30:65:E3:53:3B:54:1C:3E:D3:6C:B1:E0:22:34:82:46:CC:48
ValiditySun, 03 Dec 2023 16:10:56 GMT - Sat, 02 Mar 2024 16:10:55 GMT

File type
SVG Scalable Vector Graphics image\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (873), with no line terminators
Size
828 B (828 bytes)
Hash
2b97862e900c78261d3400640f163065
e4ef33b368dfa479702b228ab2f27e8b412aa4bc
dbe2c2a5ad104153468d563ab073b7e3683cf4c964550725ccd9f531a67b48ba

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Instagram

HTTP Headers

GET /img/apple.svg HTTP/1.1
Host: blockinsta.pages.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 09:06:33 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"a0f5764eb46f4b717f4a1948712b5366"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d19%2F8qplojihv3rd0%2Fh4LZlINFw4XfZdHwUPBritgXNPKuafYw%2FhTk7h71p%2BkDCI0JMa83oIZc1R9lwihuMlaMVxOIaLfU3sWsFcMLwh5j8NIsnE5QvaYdRwIeir8OslPsxnCFbDVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830b2241895f568f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-font-face.min.css?token=8493700253

172.64.204.20

200 OK

1.8 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v6.5.1/css/free-v4-font-face.min.css?token=8493700253
IP
172.64.204.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://blockinsta.pages.dev/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (1803), with no line terminators
Size
1.8 kB (1775 bytes)
Hash
b0e7ed6622101ceea9a31043809aabaf
22fefad8852cf1d903fc7d99970d572ddc6b613c
5f9c11fbca88fe6e6e8ce0de6c76eaca7b8c258572153af5ff88c831316347d0

HTTP Headers

GET /releases/v6.5.1/css/free-v4-font-face.min.css?token=8493700253 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://blockinsta.pages.dev/
Origin: https://blockinsta.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 09:06:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 30 Nov 2023 17:25:51 GMT
etag: W/"cc84affe95dbdd9726525f57d20b4ea6"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f73d71dfa047571774d2c0460e5108ec.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: xkIXQ-MJ2OSFMfYmZA1uaY7_65WJFVS7QTJ8as02K4XMXzhGCimWqA==
age: 135048
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xSePuscl5vc731UBuPEIPCKR7NAehI7XCE57ID51HzJqiUgXyEVV6Wgui5%2FHfNhVQOUopT%2ByJ8yvf0ozlrG6TSiO4ttlBHyFLUW9%2F921vPcbJz3cWLh3cMjYzfuPEQe4CLioi9z3sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830b22443f0f4164-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by