| cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js | 104.17.25.14 | 200 OK | 6.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP104.17.25.14:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19015) Hash70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2862431
expires: Tue, 08 Apr 2025 05:19:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vmw5Btli6tAAjZK9GXAbR%2FLnwIgvYX5MCPW7rgSrGg5FaBNqrF15BoEKph2QCwUIXaXqyevzR8nv3bJcBHV7I0NAbaogNpkY8783permMHHL6KJlF0VdpEDEZU0bWwIu2dNhsmbE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876232b92994569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css | 104.17.25.14 | 200 OK | 5.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP104.17.25.14:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:07 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 211032
expires: Tue, 08 Apr 2025 05:19:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6nZmIRIECPivRtgXREztxcgjbRrXCAubwWNWza21LSxFUsTUFmiA0kLNCsXsKYzjtevleDWuS5SYJ6%2FIKoE7WX4JdTATJDidZsII9cbntMsJmw7qxfo3yZM32L7D3X4biw%2Brg0At"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876232b92e20b4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/ | 104.17.96.13 | | 27 kB |
URL bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/ IP104.17.96.13:0
File typeJavaScript source, ASCII text, with very long lines (1305), with CRLF line terminators Hashbc0b2bbf33597bd95aeaf418574e6c0e b152c4f70df69d5201a829c9c2130bd18782ed08 fd8853d5b2db1accd2f04c0f650354e12c8a7e76130b8feb30b951b2af670275
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET / HTTP/1.1
Host: bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:07 GMT
content-type: text/html
cf-ray: 876232b3dc115693-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou/
x-ipfs-roots: bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou
set-cookie: __cf_bm=SCBDQGBRWH38Y7nYHRvD4pEvW9lKmA_f2aOlW5BLZYc-1713417547-1.0.1.1-SDKB5lw9AAy3XlZkvnOLlZK95QffLd8jH07hltdXDqK7gKoU41WqyzlbkAzRQbTSHc_4Kn15JsXbgoEA2pHM4g; path=/; expires=Thu, 18-Apr-24 05:49:07 GMT; domain=.bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/jquery.session@1.0.0/jquery.session.min.js | 151.101.1.229 | 200 OK | 983 B |
URL GET HTTP/2cdn.jsdelivr.net/npm/jquery.session@1.0.0/jquery.session.min.js IP151.101.1.229:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (1993) Hashc0ac9c9487d60de96dc68dbb25bd8dd6 99419b0be4b85422ff84870e54dbd8a52dc6dab1 76ad6584ac5bdd459939dc7532fae7c2bdd8e22d773ff16d2306f42a1ffc569c
GET /npm/jquery.session@1.0.0/jquery.session.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.0.0
x-jsd-version-type: version
etag: W/"91d-mUGbC+S4VCL/hIcOVNvYpS3G2rE"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 Apr 2024 05:19:07 GMT
age: 3811250
x-served-by: cache-fra-eddf8230025-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 983
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.74 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.74:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 13 Apr 2024 13:58:13 GMT
expires: Sun, 13 Apr 2025 13:58:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 400854
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 | 104.17.25.14 | 200 OK | 77 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 IP104.17.25.14:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:07 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4276763
expires: Tue, 08 Apr 2025 05:19:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DD7KHJtzHcaTNo4qDN0nuhcZ%2BahWcg8M1Gf2RCHoZRZsS68i4G2U6TC0PZIXXbG5%2BEmcqsqoNYQU%2BqxPA7FX0KKF6JdsOBetTbxOJ7LoAKDsKrVdLVYxIt8KtRg9L4uvTftyQ5BY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 876232ba6ab5569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.2.1.slim.min.js | 151.101.2.137 | 200 OK | 70 kB |
URL GET HTTP/2code.jquery.com/jquery-3.2.1.slim.min.js IP151.101.2.137:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32012) Hash5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 18 Apr 2024 05:19:07 GMT
age: 887681
x-served-by: cache-lga21963-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 40, 92549
x-timer: S1713417548.756724,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 49 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (48664) Hash14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:07 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:46:36
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 262d342378fbee6f475f736cabf3d508
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876232b93878b4f9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| logo.clearbit.com/google.com | 54.230.111.35 | 200 OK | 5.6 kB |
URL GET HTTP/2logo.clearbit.com/google.com IP54.230.111.35:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerAmazon Subjectclearbit.com FingerprintCE:16:94:BB:21:1F:D1:5C:C5:B1:B0:D0:51:6C:C5:26:30:0D:59:72 ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 18 Feb 2025 23:59:59 GMT
File typePNG image data, 125 x 128, 8-bit/color RGBA, non-interlaced Hashdb758b257c360266b742d0a8f09ffba4 b224cd1758e1339781188997c858df755caf47c7 e517b004537e2485bcd2dffac8846db446ace766224d7cecec24602437a8950a
GET /google.com HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
cache-control: public, max-age=2592000
date: Mon, 08 Apr 2024 06:03:12 GMT
x-envoy-response-flags: -
server: Clearbit
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jGjY9izhretJEwYSW6fdNcb326upMFpjWPwn0E05giuNIOToCg7r0g==
age: 861356
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 51 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:07 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 1332148
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 876232b969ba1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/favicons.png | 104.17.96.13 | 404 Not Found | 193 B |
URL GET HTTP/2bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/favicons.png IP104.17.96.13:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerLet's Encrypt Subjectcf-ipfs.com Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14 ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT
File typeASCII text, with no line terminators Hash4e0689b99031fe3780e119eb5f95a886 f4ddf77fd8d1a9be6168f14c2b84d2c3c210b9e0 91b4457a2bd46a2226227584c6a3c2747a1815703d022ace74d00d23295a8fa4
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /favicons.png HTTP/1.1
Host: bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Cookie: __cf_bm=SCBDQGBRWH38Y7nYHRvD4pEvW9lKmA_f2aOlW5BLZYc-1713417547-1.0.1.1-SDKB5lw9AAy3XlZkvnOLlZK95QffLd8jH07hltdXDqK7gKoU41WqyzlbkAzRQbTSHc_4Kn15JsXbgoEA2pHM4g; __session:0.8571160793760002:=https:
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Thu, 18 Apr 2024 05:19:08 GMT
content-type: text/plain; charset=utf-8
cf-ray: 876232bacb435693-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: no-store
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-content-type-options: nosniff
x-ipfs-path: /ipfs/bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou/favicons.png
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/ | 104.17.96.13 | 200 OK | 10 kB |
URL User Request GET HTTP/2bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/ IP104.17.96.13:443
CertificateIssuerLet's Encrypt Subjectcf-ipfs.com Fingerprint46:AD:9B:E1:02:E3:A8:FE:9B:E2:86:B5:A1:5C:07:B9:B7:3B:17:14 ValiditySat, 16 Mar 2024 23:28:47 GMT - Fri, 14 Jun 2024 23:28:46 GMT
File typeJavaScript source, ASCII text, with very long lines (1305), with CRLF line terminators Hashbc0b2bbf33597bd95aeaf418574e6c0e b152c4f70df69d5201a829c9c2130bd18782ed08 fd8853d5b2db1accd2f04c0f650354e12c8a7e76130b8feb30b951b2af670275
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET / HTTP/1.1
Host: bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:07 GMT
content-type: text/html
cf-ray: 876232b3dc115693-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou/
x-ipfs-roots: bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou
set-cookie: __cf_bm=SCBDQGBRWH38Y7nYHRvD4pEvW9lKmA_f2aOlW5BLZYc-1713417547-1.0.1.1-SDKB5lw9AAy3XlZkvnOLlZK95QffLd8jH07hltdXDqK7gKoU41WqyzlbkAzRQbTSHc_4Kn15JsXbgoEA2pHM4g; path=/; expires=Thu, 18-Apr-24 05:49:07 GMT; domain=.bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google.com/ | 142.250.74.164 | 200 OK | 0 B |
IP142.250.74.164:443
Requested byhttps://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/#google@google.com CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafkreih5rbj5lmw3dlgnf4cmb5sqgvhbfsfh45qtboh6wmfzkgzk6zycou.ipfs.cf-ipfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:19:08 GMT
expires: -1
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
content-security-policy-report-only: object-src 'none';base-uri 'self';script-src 'nonce-bG4g_BtiwT2ULQ9UoNiO5g' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other-hp
cross-origin-opener-policy: same-origin-allow-popups; report-to="gws"
report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]}
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-encoding: br
server: gws
content-length: 72174
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: AEC=AQTF6Hzsar8cND_lQND93ELX2DVWjIB05emcG90uuRbpmAu5TBTh37WhAGs; expires=Tue, 15-Oct-2024 05:19:08 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
__Secure-ENID=19.SE=rrtWx910BWtL4iXc-ocGgq7wP7nxYk3H6or7TFIyfPyHUvFQ8ZOWhh82zmU5T6PcFqoxHy-nPqOPFj4I7-AfoeSfseV8fkXn9pHUjC3H6IhrknMiVjRfIlhJeasmn4v8qOZrgPsAZzDQCzXvY0ZpRsTpynrATnVmWjC8vNHehPlY9cTz1SA; expires=Sun, 18-May-2025 21:37:26 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|