Report - bastplus.com/hgehvanbsbsee/Sba/cHJlc3Nfb2ZmaWNlQHNiYS5nb3Y=

Report Overview

Visitedpublic

2024-02-23 19:51:00

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cloudflare-ipfs.com	75147	2018-05-30	2021-01-20 15:49:19	2024-02-16 18:05:06	1.2 kB	16 kB	104.17.96.13
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2024-02-23 17:43:43	441 B	15 kB	104.17.25.14
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2024-02-23 17:37:45	409 B	80 kB	151.101.66.137
tmg5myixlnm.ioepepw.online	unknown	unknown	No data	No data	458 B	198 kB	104.21.39.188
9zvw8ja80n.flgalgtop.online	unknown	unknown	No data	No data	459 B	198 kB	104.21.77.229
aus5.mozilla.org	2548	1998-01-24	2015-10-27 08:06:24	2024-02-23 17:51:55	511 B	6.5 kB	35.244.181.201
add_shortcut	unknown	unknown	No data	No data	414 B	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-02-22	medium	cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta	Generic/Spear Phishing

PhishTank

Scan Date	Severity	Indicator	Alert
2023-05-02	medium	cloudflare-ipfs.com/favicon.ico	Other
2023-05-02	medium	cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-02-23	medium	add_shortcut	Sinkholed

ThreatFox

No alerts detected

JavaScript (1)

	URL	From	Size	First Seen	Last Seen
	cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov	ScriptElement	14 kB	2024-02-22	2024-08-20
URL cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded true Resource Info First Seen 2024-02-22 Last Seen 2024-08-20 Times Seen 61 Size 14 kB (14515 bytes) MD5 689c0e4eea04b411c90b7530b212fed2 SHA1 1ef40720837e9daa17c8425bb121caba058d0ea0 SHA256 ca53d053f2397d0f853ee2f9f168b397a64e6f5a5f109f4686929e4c9045d658 Format Code Loading...

HTTP Transactions (8)

URL IP Response Size

GET cloudflare-ipfs.com/favicon.ico

104.17.96.13

404 Not Found

14 B

URL

cloudflare-ipfs.com/favicon.ico

IP / ASN

104.17.96.13

#13335 CLOUDFLARENET

Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov

Resource Info

File typeASCII text, with no line terminators

First Seen2023-04-05

Last Seen2025-07-31

Times Seen22087

Size14 B (14 bytes)

MD5d0fbda9855d118740f1105334305c126

SHA1bc3023b36063a7681db24681472b54fa11f0d4ec

SHA256a469ab4ca4e55bf547566e9ebfa1b809c933207e9d558156bc0c4252b17533fe

Certificate Info

IssuerLet's Encrypt

Subjectcloudflare-ipfs.com

FingerprintF9:C4:58:3E:03:45:76:C4:95:63:D6:9A:DE:9B:B6:8B:06:62:E4:DE

ValidityThu, 28 Dec 2023 01:08:05 GMT - Wed, 27 Mar 2024 01:08:04 GMT

Detections

Analyzer	Verdict	Alert
PhishTank	phishing	Other

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta
Cookie: __cf_bm=iXIHsiGwy3FUmiFkk6I65zxrrV1tcxaB63dDzXiQ10Q-1708717836-1.0-AYXbygW3qARrJ9jG+AroZG3dlHaXGqQQxu9CUsuE6Rf8kMAF8UvLjyKRg1lkiboqcpTtqc/+kX/OdrLLA9GJl8k=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Fri, 23 Feb 2024 19:50:36 GMT
content-type: text/plain;charset=UTF-8
content-length: 14
vary: Accept-Encoding
server: cloudflare
cf-ray: 85a1ffae5f575694-OSL
alt-svc: h3=":443"; ma=86400

GET cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js

104.17.25.14

200 OK

14 kB

URL

cdnjs.cloudflare.com/ajax/libs/crypto-js/4.1.1/crypto-js.min.js

IP / ASN

104.17.25.14

#13335 CLOUDFLARENET

Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov

Resource Info

File typeJavaScript source, ASCII text, with very long lines (48316), with no line terminators

First Seen2023-03-07

Last Seen2025-08-02

Times Seen133027

Size14 kB (13972 bytes)

MD52ca03ad87885ab983541092b87adb299

SHA11a17f60bf776a8c468a185c1e8e985c41a50dc27

SHA2568e3b0117f4df4be452c0b6af5b8f0a0acf9d4ade23d08d55d7e312af22077762

Certificate Info

IssuerCloudflare, Inc.

Subjectsni.cloudflaressl.com

Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D

ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

HTTP Headers

GET /ajax/libs/crypto-js/4.1.1/crypto-js.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 23 Feb 2024 19:50:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 13972
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61182885-3694"
last-modified: Sat, 14 Aug 2021 20:33:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 171524
expires: Wed, 12 Feb 2025 19:50:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q1HddqGr4tRVPt7yVprsgfYKWBbEU0ct1VPKRn%2FiaiZc6NRVTQjGOFqbDhv3CDHa1jstmofRd3bii%2FHg1ldB34bmNgtd%2Fc6zO%2BOxGSqjHdlFKHgjsRKc6OwE%2BxlfR0m59lkrHNHx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 85a1ffae9a1d56ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET code.jquery.com/jquery-1.9.1.js

151.101.66.137

200 OK

80 kB

URL

code.jquery.com/jquery-1.9.1.js

IP / ASN

151.101.66.137

#54113 FASTLY

Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov

Resource Info

File typeJavaScript source, ASCII text

First Seen2023-03-07

Last Seen2025-08-01

Times Seen36594

Size80 kB (79506 bytes)

MD508c235d357750c657ac1db7d1cf656a9

SHA19257afd2d46c3a189ec0d40a45722701d47e9ca5

SHA2567bd80d06c01c0340c1b9159b9b4a197db882ca18cbac8e9b9aa025e68f998d40

Certificate Info

IssuerSectigo Limited

Subject*.jquery.com

FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D

ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

HTTP Headers

GET /jquery-1.9.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4185d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 23 Feb 2024 19:50:36 GMT
age: 3293698
x-served-by: cache-lga21952-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 31, 10819
x-timer: S1708717837.626082,VS0,VE0
vary: Accept-Encoding
content-length: 79506
X-Firefox-Spdy: h2

GET tmg5myixlnm.ioepepw.online/static/media/preload-outlook.gif

104.21.39.188

200 OK

197 kB

URL

tmg5myixlnm.ioepepw.online/static/media/preload-outlook.gif

IP / ASN

104.21.39.188

#13335 CLOUDFLARENET

Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov

Resource Info

File typeGIF image data, version 89a, 1580 x 720

First Seen2023-07-05

Last Seen2025-06-17

Times Seen31509

Size197 kB (197044 bytes)

MD55a82b5eee228b42593eb49c3a2d830ea

SHA1a958abaf7781997bfee5cf4a8bca6d3013dbb95a

SHA256c51ecfdbb39612d629bbbfa57896c63dc52971d7bcf78f1795944be16274a8eb

Certificate Info

IssuerGoogle Trust Services LLC

Subjectioepepw.online

Fingerprint53:72:EC:97:7F:0A:97:22:31:39:CE:CC:A7:C8:2D:9B:C6:1E:44:E7

ValidityMon, 19 Feb 2024 11:06:06 GMT - Sun, 19 May 2024 11:06:05 GMT

HTTP Headers

GET /static/media/preload-outlook.gif HTTP/1.1
Host: tmg5myixlnm.ioepepw.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 23 Feb 2024 19:50:37 GMT
content-type: image/gif
content-length: 197044
content-disposition: inline; filename="preload-outlook.gif"
last-modified: Sat, 04 Nov 2023 22:18:46 GMT
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
vary: origin, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8fU%2FDvNKukz5Bwqt2Qk4N4G95EO9ZYo1N39SJa8pOyG4zZN%2B0OPNIOGOUPXZwh5Uaqacys7QWId1RBBKr5JKXy86iL%2BJpX39zq876q4U3XD2S7CZMDMxmp04c7uS7H5aXubrl5HFATH3TxvmMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85a1ffaf3b4a56a9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET 9zvw8ja80n.flgalgtop.online/static/media/preload-outlook.gif

104.21.77.229

200 OK

197 kB

URL

9zvw8ja80n.flgalgtop.online/static/media/preload-outlook.gif

IP / ASN

104.21.77.229

#13335 CLOUDFLARENET

Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov

Resource Info

File typeGIF image data, version 89a, 1580 x 720

First Seen2023-07-05

Last Seen2025-06-17

Times Seen31509

Size197 kB (197044 bytes)

MD55a82b5eee228b42593eb49c3a2d830ea

SHA1a958abaf7781997bfee5cf4a8bca6d3013dbb95a

SHA256c51ecfdbb39612d629bbbfa57896c63dc52971d7bcf78f1795944be16274a8eb

Certificate Info

IssuerGoogle Trust Services LLC

Subjectflgalgtop.online

FingerprintDF:C7:3A:64:61:3C:14:E8:E3:C5:6A:76:B9:01:62:93:13:ED:38:21

ValidityMon, 19 Feb 2024 11:07:10 GMT - Sun, 19 May 2024 11:07:09 GMT

HTTP Headers

GET /static/media/preload-outlook.gif HTTP/1.1
Host: 9zvw8ja80n.flgalgtop.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 23 Feb 2024 19:50:37 GMT
content-type: image/gif
content-length: 197044
content-disposition: inline; filename="preload-outlook.gif"
last-modified: Sat, 04 Nov 2023 22:18:46 GMT
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
vary: origin, Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2bXiSfUOOaiJ9bxRGcohkBhZmq5X1LY%2FwWNusi024BzbyHd6VNxsbGh9BZ7JaNUVpeu2vimHqUh3AKswBVQCaQQxmFzEkaiEUcGtdz1WGtjbSVnL8YPOjtyasV5Qq97RK1XjMKnPKiYPMc6KCsk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85a1ffaf39c156cb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

5.8 kB

URL

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

IP / ASN

35.244.181.201

#396982 GOOGLE-CLOUD-PLATFORM

Requested byN/A

Resource Info

File typegzip compressed data, max speed, from Unix

First Seen2024-02-19

Last Seen2024-08-20

Times Seen1411

Size5.8 kB (5759 bytes)

MD5569b52e6b535fee649c0b43eede1dfaf

SHA1aee5cbc5db15ed926a1b17c90e3a6a0e8da8bdd9

SHA256647a36981580f07eb522b8d7d5e669c9ca8c2cd99c3e9794534b77b1e083b550

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Feb 2024 19:50:54 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-04-09-14-36-40.chain; p384ecdsa=wC38AVUCodaF5dCQ-mNy8jcU0tBqMjDYpeljDtkAfC60jC-2Yo0ttCgGuUQwYTp1r0On0AnbALeCg21TcVQqEz4dFtUSr3LZiKcl1QtDGd5FaYKgFhNn3ug9N5Zi27z9
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

GET cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta

104.17.96.13

200 OK

14 kB

URL

cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta

IP / ASN

104.17.96.13

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeJavaScript source, ASCII text, with very long lines (14532), with no line terminators

First Seen2024-02-22

Last Seen2024-08-20

Times Seen60

Size14 kB (14532 bytes)

MD5d5e6f81b269d24f483c7e81c3b4545a2

SHA1e42c314ea17e7b802952349ad82cbfb90d112479

SHA2567429cd1f06f6ea2a8eed2ee54d70ececd5c805878ce9193692f9e4333048d698

Certificate Info

IssuerLet's Encrypt

Subjectcloudflare-ipfs.com

FingerprintF9:C4:58:3E:03:45:76:C4:95:63:D6:9A:DE:9B:B6:8B:06:62:E4:DE

ValidityThu, 28 Dec 2023 01:08:05 GMT - Wed, 27 Mar 2024 01:08:04 GMT

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Generic/Spear Phishing
PhishTank	phishing	Other

HTTP Headers

GET /ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 23 Feb 2024 19:50:36 GMT
content-type: text/html
cf-ray: 85a1ffacad83b4f9-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta
x-ipfs-roots: bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta
set-cookie: __cf_bm=iXIHsiGwy3FUmiFkk6I65zxrrV1tcxaB63dDzXiQ10Q-1708717836-1.0-AYXbygW3qARrJ9jG+AroZG3dlHaXGqQQxu9CUsuE6Rf8kMAF8UvLjyKRg1lkiboqcpTtqc/+kX/OdrLLA9GJl8k=; path=/; expires=Fri, 23-Feb-24 20:20:36 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET add_shortcut/

0.0.0.0

0 B

URL

add_shortcut/

IP / ASN

0.0.0.0

Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidufhgr6bxw5ivi53jo4vgxb3hm2xealb4m5emtnexz4qztasgwta#press_office@sba.gov

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5605878

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: add_shortcut
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache