| aucospa.cl/ioiet/esign/doc-online/asdhgjasdkhgfcbgdhjgcbsdhgjxghksdzycgfedsgkchdsgzjhckjgdsbucghsdgukcvjygsdghcsagcsjdhgcsdsdkyg/a2V2aW4uZGFyZ29zQHVicy5jb20= | 177.221.140.240 | | 0 B |
URL aucospa.cl/ioiet/esign/doc-online/asdhgjasdkhgfcbgdhjgcbsdhgjxghksdzycgfedsgkchdsgzjhckjgdsbucghsdgukcvjygsdghcsagcsjdhgcsdsdkyg/a2V2aW4uZGFyZ29zQHVicy5jb20= IP177.221.140.240:0 ASN#270014 GRUPO CG LIMITADA
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Generic/Spear Phishing |
GET /ioiet/esign/doc-online/asdhgjasdkhgfcbgdhjgcbsdhgjxghksdzycgfedsgkchdsgzjhckjgdsbucghsdgukcvjygsdghcsagcsjdhgcsdsdkyg/a2V2aW4uZGFyZ29zQHVicy5jb20= HTTP/1.1
Host: aucospa.cl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 19 Apr 2024 00:08:59 GMT
Server: Apache
refresh: 0;url=https://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.25.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.25.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:00 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 194103
expires: Wed, 09 Apr 2025 00:09:00 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YBhqG%2BPKh1yiyxQHBgOiwPOR60vnEr4M%2FmnXV%2BymIknHZr%2B4ox1kSqVr6XQkOMwMpr7kyXvP6Y5UJuRZckW3Em1KlDCPBJRND4GsR6WMMOqiypoPXCeeyrjFH1zGjxCuo8uWeeyU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8768a9d26db256b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.w3schools.com/w3css/4/w3.css | 192.229.133.221 | 200 OK | 5.3 kB |
URL GET HTTP/2www.w3schools.com/w3css/4/w3.css IP192.229.133.221:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerDigiCert Inc Subject*.w3schools.com Fingerprint20:AF:FF:E1:FC:DB:58:C8:05:B7:D2:97:1F:8F:A1:C6:AD:ED:59:3A ValidityWed, 03 Apr 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT
File typeUnicode text, UTF-8 (with BOM) text Hashba0537e9574725096af97c27d7e54f76 bd46b47d74d344f435b5805114559d45979762d5 4a7611bc677873a0f87fe21727bc3a2a43f57a5ded3b10ce33a0f371a2e6030f
GET /w3css/4/w3.css HTTP/1.1
Host: www.w3schools.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 6683
cache-control: public,max-age=14400,public
content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com;
content-type: text/css
date: Fri, 19 Apr 2024 00:09:00 GMT
etag: "076f6bb690da1:0+gzip"
last-modified: Wed, 17 Apr 2024 10:57:32 GMT
server: ECS (ska/F716)
vary: Accept-Encoding
x-cache: HIT
x-content-security-policy: frame-ancestors 'self' https://mycourses.w3schools.com;
x-powered-by: ASP.NET
content-length: 5256
X-Firefox-Spdy: h2
|
|
| ppdefmonument.com/OIP.jpeg | 104.21.81.122 | 200 OK | 9.2 kB |
URL GET HTTP/2ppdefmonument.com/OIP.jpeg IP104.21.81.122:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerLet's Encrypt Subjectppdefmonument.com FingerprintD7:02:17:C5:DD:2B:0E:B2:07:4D:C4:3D:00:F8:48:7D:82:0B:B1:B8 ValiditySun, 24 Mar 2024 13:16:31 GMT - Sat, 22 Jun 2024 13:16:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2], baseline, precision 8, 474x149, components 3 Hashb7fd0fd9175f4c7bb9e52ae5334719ca b4f9f020180d3231fb7fc2fcf7f27890e2b904f8 9696d7c05deee6bede02feda9d259d55180cf2facdb14e7f942727e6eea8f476
GET /OIP.jpeg HTTP/1.1
Host: ppdefmonument.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:00 GMT
content-type: image/jpeg
content-length: 9219
cache-control: public, max-age=604800
expires: Tue, 23 Apr 2024 22:10:28 GMT
last-modified: Thu, 28 Sep 2023 03:22:07 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 179911
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bVeAp09U14ByPJ2Ddowk4zNCvnOpOuGq0s2rPfZyT1gGZHbm93Yae%2BozGsjeJ7NzyzPHfhknqVpTU%2BVCvz6hBiLzn%2FrIxLnziXs5gxXgK852elXtgMr8rRLqFsgQHsmU9A3NfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a9d2fa90b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ppdefmonument.com/bg1.png | 104.21.81.122 | 200 OK | 51 kB |
URL GET HTTP/2ppdefmonument.com/bg1.png IP104.21.81.122:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerLet's Encrypt Subjectppdefmonument.com FingerprintD7:02:17:C5:DD:2B:0E:B2:07:4D:C4:3D:00:F8:48:7D:82:0B:B1:B8 ValiditySun, 24 Mar 2024 13:16:31 GMT - Sat, 22 Jun 2024 13:16:30 GMT
File typePNG image data, 3456 x 104, 8-bit/color RGBA, non-interlaced Hashe18251482b0cf3bb399ec3f878b46d8e 567c2238bbee3df74355dbe2ff622a9ccf3daa67 bc19ae80c5e1137d3e2c7a2b282748349de1c74f5d16713c15c57e2975fad3d1
GET /bg1.png HTTP/1.1
Host: ppdefmonument.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:00 GMT
content-type: image/png
content-length: 50895
cache-control: public, max-age=604800
expires: Tue, 23 Apr 2024 22:10:28 GMT
last-modified: Thu, 28 Sep 2023 03:29:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 179911
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FjTxIhE1OQZBo13O5yNPdHkFjLd%2BGjZK7xo6MKeWH8s1m95syO1n92ibE7xQuXLwobbxo3yQ4WEyR1Bb8MURtqtKTV%2BLawtwrQ8ldZwbuMEQAcKZkW0r0TNN%2BcBJ%2BAldJAxBsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a9d2fa91b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ppdefmonument.com/pdf.jpeg | 104.21.81.122 | 200 OK | 626 kB |
URL GET HTTP/2ppdefmonument.com/pdf.jpeg IP104.21.81.122:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerLet's Encrypt Subjectppdefmonument.com FingerprintD7:02:17:C5:DD:2B:0E:B2:07:4D:C4:3D:00:F8:48:7D:82:0B:B1:B8 ValiditySun, 24 Mar 2024 13:16:31 GMT - Sat, 22 Jun 2024 13:16:30 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=2], baseline, precision 8, 3366x4456, components 3 Size626 kB (626024 bytes) Hash2d284de97cd8b6444e4d65c00aa77a69 5b734639fb67766332e1672a5c292d8367d8cf82 39b78e0420ac5ba5e334ab88dc949fa61c47058d35a0c276aa95ecdfad491373
GET /pdf.jpeg HTTP/1.1
Host: ppdefmonument.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:00 GMT
content-type: image/jpeg
content-length: 626024
cache-control: public, max-age=604800
expires: Tue, 23 Apr 2024 22:10:28 GMT
last-modified: Thu, 28 Sep 2023 03:22:08 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 179911
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PJUeeJokTrM96nBp96S7hO9Z4RMeLPkRmgLbHf5Y8vcoTKgiKe20OcUhMdQ6ANa6sHNxqpzFmFeAkmmxF5JFTmOhckNCQ5b1XuIQgwZwa08WHoO6pWER3mdaMXNIyL9qkPZv8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a9d2fa8db4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ppdefmonument.com/bg3.png | 104.21.81.122 | 200 OK | 862 kB |
URL GET HTTP/2ppdefmonument.com/bg3.png IP104.21.81.122:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerLet's Encrypt Subjectppdefmonument.com FingerprintD7:02:17:C5:DD:2B:0E:B2:07:4D:C4:3D:00:F8:48:7D:82:0B:B1:B8 ValiditySun, 24 Mar 2024 13:16:31 GMT - Sat, 22 Jun 2024 13:16:30 GMT
File typePNG image data, 2590 x 1888, 8-bit/color RGBA, non-interlaced Size862 kB (862354 bytes) Hash3dd4d5f82f3c5f5e8354c92e1f1d0caf 80d3f09c700f7c20beee4a7e53e6b39f4276da86 7221912111074029ad7527854c033d301d915f753886c34a7b2dd8cb70c550a2
GET /bg3.png HTTP/1.1
Host: ppdefmonument.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:00 GMT
content-type: image/png
content-length: 862354
cache-control: public, max-age=604800
expires: Tue, 23 Apr 2024 22:10:28 GMT
last-modified: Thu, 28 Sep 2023 03:29:27 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 179911
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OzS0qtQYp0bESUzJtDSHf1xjqGpgsKW0ImgLlEnBCH45k%2BVZuuEIps3b9lVU3y%2FqpGjRiQmQ5AHKTReLucYjhCmg6vkDjobEsxTJHpkEZGxUiphB%2FcQpWRvIXasfP62E3sqd9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a9d33aaab4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue | 104.17.64.14 | | 33 kB |
URL cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue IP104.17.64.14:0
File typeHTML document, ASCII text, with very long lines (15198), with CRLF line terminators Hashf07862edd092e4a719ab520861c808f1 c430b354cf2586da49717d4efc2aaf9d7e771d33 6a72ba8d6bb9643ff808389328d84a6ee7a555caef7ab15c9cde6751ef20a8a1
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:00 GMT
content-type: text/html
cf-ray: 8768a9d0df4056c4-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue
x-ipfs-roots: bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue
set-cookie: __cf_bm=VlcBPtnwrPBdfou7p4TPeofJCgGT396chRO.kMekSXg-1713485340-1.0.1.1-yzXTMNa1e8ZbNNHwmrueRS404is.US9o35gOOtyKDyJl0PWC5zSu8Ja7WLby8wflbDeP4KXnvqLF1IwwPATt_w; path=/; expires=Fri, 19-Apr-24 00:39:00 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/favicon.ico | 104.17.64.14 | 404 Not Found | 14 B |
URL GET HTTP/3cloudflare-ipfs.com/favicon.ico IP104.17.64.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com Fingerprint18:E5:C9:71:96:8A:A9:48:E2:79:2A:29:91:D2:4E:46:90:B7:5D:9F ValiditySun, 25 Feb 2024 02:55:05 GMT - Sat, 25 May 2024 02:55:04 GMT
File typeASCII text, with no line terminators Hashd0fbda9855d118740f1105334305c126 bc3023b36063a7681db24681472b54fa11f0d4ec a469ab4ca4e55bf547566e9ebfa1b809c933207e9d558156bc0c4252b17533fe
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /favicon.ico HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue
Cookie: __cf_bm=VlcBPtnwrPBdfou7p4TPeofJCgGT396chRO.kMekSXg-1713485340-1.0.1.1-yzXTMNa1e8ZbNNHwmrueRS404is.US9o35gOOtyKDyJl0PWC5zSu8Ja7WLby8wflbDeP4KXnvqLF1IwwPATt_w
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 00:09:01 GMT
content-type: text/plain;charset=UTF-8
content-length: 14
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a9d52a9056bb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ppdefmonument.com/bg2.png | 104.21.81.122 | 200 OK | 106 kB |
URL GET HTTP/2ppdefmonument.com/bg2.png IP104.21.81.122:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerLet's Encrypt Subjectppdefmonument.com FingerprintD7:02:17:C5:DD:2B:0E:B2:07:4D:C4:3D:00:F8:48:7D:82:0B:B1:B8 ValiditySun, 24 Mar 2024 13:16:31 GMT - Sat, 22 Jun 2024 13:16:30 GMT
File typePNG image data, 870 x 1892, 8-bit/color RGBA, non-interlaced Size106 kB (106138 bytes) Hash912e4ccbee71aeada31e08b2a92bba8b 1059e84b80bd6b983601cd35967d9959af7b0475 8df560bde491345d7fe862f2ffbc1c751e4838c25ca6155bc8a78b817b9b5cbf
GET /bg2.png HTTP/1.1
Host: ppdefmonument.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:01 GMT
content-type: image/png
content-length: 106138
cache-control: public, max-age=604800
expires: Fri, 26 Apr 2024 00:09:00 GMT
last-modified: Thu, 28 Sep 2023 03:29:26 GMT
x-turbo-charged-by: LiteSpeed
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nC%2Bu6f9kSgxLu9CqG5wjvt219hLZynddIJAUkgtlAOO9ePySsjVpDAMHftC99Nldno1dODuE18%2Blpe4u4zKFvajaVaCjVWfJIQ4jAwvqHKHnf0H35hhCAPorOal5gNHOsmqh1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8768a9d2fa95b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:01 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 193996
expires: Wed, 09 Apr 2025 00:09:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GNNvIsKxyDRHcZOk6QVTW0Lcbv7BEUA1nbMGtLUdTCbEoq5RzDwtpPW1zlG1kOtYfrTrQsJ46mCqviXqulY0hH%2BOxjwioyy4NNCBpVYvtsas%2BoJtDCW4SZhW4ayLmsdwhpgO1Wev"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8768a9d89fef56b7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://ubs.com&size=32 | 142.250.74.100 | | 621 B |
URL t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://ubs.com&size=32 IP142.250.74.100:0
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hashbe9b5d3e9d8f46c9e5bfb2bd3af8739c 85dd6dac636f68a61a0f4ed8e2e8424c509021ba 4b890aa778a3ec9e36a6777d7701ad916632f7cb5dd1608a7f1364e1a97c7383
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://ubs.com&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.ubs.com/etc/designs/fit/img/favicons/favicon-16x16.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 621
date: Fri, 19 Apr 2024 00:09:01 GMT
expires: Fri, 26 Apr 2024 00:09:01 GMT
cache-control: public, max-age=604800
last-modified: Fri, 22 Dec 2023 15:36:01 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ppdefmonument.com/?getemailinfo=kevin.dargos@ubs.com&url=https://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue&rbox=thinkmei&dq=null | 104.21.81.122 | 200 OK | 20 kB |
URL GET HTTP/2ppdefmonument.com/?getemailinfo=kevin.dargos@ubs.com&url=https://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue&rbox=thinkmei&dq=null IP104.21.81.122:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerLet's Encrypt Subjectppdefmonument.com FingerprintD7:02:17:C5:DD:2B:0E:B2:07:4D:C4:3D:00:F8:48:7D:82:0B:B1:B8 ValiditySun, 24 Mar 2024 13:16:31 GMT - Sat, 22 Jun 2024 13:16:30 GMT
Hasha321b24cc124f43e80716a52c1bcdaa5 b4b4458f72e052b0c656d4daf5654f271478e8d2 0fad06fc7da614a05cda7f1ddea2876da895cd2fae8d1df1d83450a5094d06b8
GET /?getemailinfo=kevin.dargos@ubs.com&url=https://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue&rbox=thinkmei&dq=null HTTP/1.1
Host: ppdefmonument.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:01 GMT
content-type: application/json; charset=utf-8
x-powered-by: PHP/8.0.30
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Origin, Content-Type, Accept, Authorization, X-Request-With
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BouTr5M1EmdraDxnMDdwl3E944EtmR8qZEwtR0L2vJHvQbDn%2BADpfNwUodyuct0E4e3iBowxm%2B8z%2FaiuiLcv2dBvlQpjZlB4lCw1dwNaNYV1teZjtwgB0AOVxt9R%2Fpc%2B7FjEJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8768a9d2ff7db4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue | 104.17.64.14 | 200 OK | 148 kB |
URL User Request GET HTTP/2cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue IP104.17.64.14:443
CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com Fingerprint18:E5:C9:71:96:8A:A9:48:E2:79:2A:29:91:D2:4E:46:90:B7:5D:9F ValiditySun, 25 Feb 2024 02:55:05 GMT - Sat, 25 May 2024 02:55:04 GMT
Size148 kB (147758 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 00:09:00 GMT
content-type: text/html
cf-ray: 8768a9d0df4056c4-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue
x-ipfs-roots: bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue
set-cookie: __cf_bm=VlcBPtnwrPBdfou7p4TPeofJCgGT396chRO.kMekSXg-1713485340-1.0.1.1-yzXTMNa1e8ZbNNHwmrueRS404is.US9o35gOOtyKDyJl0PWC5zSu8Ja7WLby8wflbDeP4KXnvqLF1IwwPATt_w; path=/; expires=Fri, 19-Apr-24 00:39:00 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://ubs.com&size=32 | 142.250.74.100 | 200 OK | 621 B |
URL GET HTTP/2t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://ubs.com&size=32 IP142.250.74.100:443
Requested byhttps://cloudflare-ipfs.com/ipfs/bafkreidkok5i225zmq77qcbysmunqsto46svlsxppkyvzhg6m5i66ifiue#kevin.dargos@ubs.com CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hashbe9b5d3e9d8f46c9e5bfb2bd3af8739c 85dd6dac636f68a61a0f4ed8e2e8424c509021ba 4b890aa778a3ec9e36a6777d7701ad916632f7cb5dd1608a7f1364e1a97c7383
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://ubs.com&size=32 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.ubs.com/etc/designs/fit/img/favicons/favicon-16x16.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 621
date: Fri, 19 Apr 2024 00:09:01 GMT
expires: Fri, 26 Apr 2024 00:09:01 GMT
cache-control: public, max-age=604800
last-modified: Fri, 22 Dec 2023 15:36:01 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|