| | 41.204.160.15 | 301 Moved Permanently | 0 B |
URL User Request GET HTTP/1.1IP41.204.160.15:443 ASN#36914 Kenya Education Network
CertificateIssuerLet's Encrypt Subjectnrf.go.ke FingerprintBD:8D:C9:62:26:C5:C3:8C:08:CF:83:7D:D7:76:65:5E:54:14:38:CB ValidityTue, 02 Apr 2024 20:57:41 GMT - Mon, 01 Jul 2024 20:57:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /hackthon HTTP/1.1
Host: nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 25 Apr 2024 05:51:41 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.nrf.go.ke/hackthon
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| | 41.204.160.15 | 404 Not Found | 85 kB |
URL User Request GET HTTP/1.1IP41.204.160.15:80 ASN#36914 Kenya Education Network
File typeHTML document, ASCII text, with very long lines (24553), with CRLF, LF line terminators Hashbaa836155c9049bdc4bccd8538ce1b8a 24f22c44c6e578c758266739990233478fa0b0ab 98988d35088fbd2a885029f518f960cfd35712433abeb911449c316ca1680e77
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /hackthon HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 25 Apr 2024 05:51:42 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.nrf.go.ke/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/script.js | 104.22.59.91 | 200 OK | 34 kB |
URL GET HTTP/2cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/script.js IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (37205), with NEL line terminators Hash8c4324e016e8666384437a46ed70f877 a4f5064ac2278392cc82c88bc737d688e8888b53 25895c281988368653b99fcb06c74eed4909e74b9122f64bd2047157e76d995e
GET /client_data/b9efe982e3ea791b39b05b2a/script.js HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:51 GMT
content-type: application/javascript
content-length: 33870
last-modified: Fri, 29 Mar 2024 00:35:29 GMT
etag: "175a3-614c1d1173133-gzip"
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879c104cb9a5b518-OSL
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Lato:wght@300;400;700;900&display=swap | 142.250.74.106 | 200 OK | 429 B |
URL GET HTTP/1.1fonts.googleapis.com/css2?family=Lato:wght@300;400;700;900&display=swap IP142.250.74.106:80
Requested byhttp://www.nrf.go.ke/hackthon
Hash29f4e47ad135e1cc848ac90369e766e3 33420ad859395a919a2d2440f0c9ca7b52e7eea6 3a771d1a4b5f8e741de061004708544fcca896473936aa1990524ba8b89afd34
GET /css2?family=Lato:wght@300;400;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 25 Apr 2024 05:51:51 GMT
Date: Thu, 25 Apr 2024 05:51:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
|
|
| cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/banner.js | 104.22.59.91 | 200 OK | 32 kB |
URL GET HTTP/2cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/banner.js IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators Hash98b11e8601c59fba2f24ecc1ec5b2881 59c435e62b392ad241db1328f1fd18f71f2f23cd cb1925429234a4942a842c9ae6db85dd18031d5da44f6308782c1b8a6e82d794
GET /client_data/b9efe982e3ea791b39b05b2a/banner.js HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:51 GMT
content-type: application/javascript
content-length: 32511
last-modified: Fri, 29 Mar 2024 00:35:29 GMT
etag: "1793d-614c1d1172193-gzip"
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 879c104dba95b518-OSL
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-LLJNNXGKZE | 142.250.74.40 | 200 OK | 101 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-LLJNNXGKZE IP142.250.74.40:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size101 kB (101447 bytes) Hashd3b4375dc47074489e0d4b6264f38e91 7b04ce26c84c5cec30711f2d2832fafa5761d318 5140efd85046ea019309b0151a389eb5e5aa6a558d253c642e311f09ffa363b2
GET /gtag/js?id=G-LLJNNXGKZE HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 05:51:52 GMT
expires: Thu, 25 Apr 2024 05:51:52 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101447
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 41.204.160.15 | 404 Not Found | 85 kB |
URL User Request GET HTTP/1.1IP41.204.160.15:80 ASN#36914 Kenya Education Network
File typeHTML document, ASCII text, with very long lines (24552), with CRLF, LF line terminators Hash06c6d44ae33bbcb2f46d3e67a4d8eea7 dfa5ed47d19db4328b221f81d05ad981e35756c3 71d9459cd22b2188bb89330271136771d5b40db7de4ce6a733884883eb4214cb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /hackthon HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 25 Apr 2024 05:51:43 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.nrf.go.ke/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| log.cookieyes.com/api/v1/log | 54.74.204.68 | 200 OK | 2 B |
URL POST HTTP/2log.cookieyes.com/api/v1/log IP54.74.204.68:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerAmazon Subjectlog.cookieyes.com FingerprintF0:B5:C1:9B:EA:EC:90:DD:B9:F5:9A:0C:8B:70:0D:E7:BC:D3:6E:E4 ValidityTue, 26 Mar 2024 00:00:00 GMT - Fri, 25 Apr 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /api/v1/log HTTP/1.1
Host: log.cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------326755396841388961503314982456
Content-Length: 651
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:52 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0 | 41.204.160.15 | 200 OK | 5.3 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (5254) Hash93a9b128116bbbdb458f9fb370de10e5 a048721c8b527036254da0f55e1dbf9140cbd8fe 30594e52f4572420615094ce1cebfdcf2354b5ddcf878d04b4cd7ac286ced50a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/magnific-popup.min.css?ver=1.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 5279
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4 | 41.204.160.15 | 200 OK | 3.4 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (3184) Hashb2752a850d44f50036628eeaef3bfcfa fba46353cf90450ef3d362a123f1e7af3e8c561e 521410e1fc44780061e09adc980275fb5ea277fd5d9e538454214ec4379ff4bc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/owl.carousel.min.css?ver=2.3.4 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 3351
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/responsive.css?ver=1.0 | 41.204.160.15 | 200 OK | 9.0 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/responsive.css?ver=1.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
Hash8f7cb390e1a4d23132690cb52b982330 1ee0b4017e76bc4119a261134c038f2f4fee6085 59e305961a422c64d33c9ca306c67b3988b737f9d8eea6b70b00adccc0201d31
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/responsive.css?ver=1.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 8971
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1 | 41.204.160.15 | 200 OK | 5.7 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
Hash35d553f7fbce304533867600f2ff0176 037d47a629d1604e022420dc8e73c3996d13a005 50b28d8ed0efade9a28a42de1942ccca8828c17878369fda08397cc2d14de86b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/juxtapose.css?ver=1.2.1 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 5739
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.6 | 41.204.160.15 | 200 OK | 2.9 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.6 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
Hash3fd2afa98866679439097f4ab102fe0a dbc9c4139e49d0d9fb41b7191aad1a2db6c555fd ccd31ffa708d025833f954b3e0560cedd58df9a0d2706b2ccee5f501c5b2467b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.6 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:43:27 GMT
Accept-Ranges: bytes
Content-Length: 2894
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/main.css?ver=2.0 | 41.204.160.15 | 200 OK | 3.9 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/main.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with CRLF line terminators Hash33e26fb310a079e44c905f8c79996f32 af120447028ecee2dd09e5f3f5a5dab7adbb5f32 c0a7d283745875ec65cc6cac4a910c19a3f128b27da95456f9b4ac256b47872b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/css/main.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 3903
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/custom.css?ver=2.0 | 41.204.160.15 | 200 OK | 4.5 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/custom.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with CRLF line terminators Hash4a62f533480b0a0a2d98c4debaac5b24 b16c9f9f468cc5536902f33c925f2341adb3ce5e 88f12df1f0f9db6797f50b4363712dec1ae0b14282ea90a657f89d66f1db58b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/css/custom.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 4538
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 | 41.204.160.15 | 200 OK | 113 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (59701) Size113 kB (113381 bytes) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 05:21:36 GMT
Accept-Ranges: bytes
Content-Length: 113381
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/styles.css?ver=1.2.6 | 41.204.160.15 | 200 OK | 99 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/styles.css?ver=1.2.6 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
Hash45895c75aed50b5d1e5dd8eefd66572a 791878a22c617c9c6d013e87097b9aba8afdf9a2 8793f16be22b4c68864bf11913e1530fb1e8d979f701ec72dade1ce9a63428ef
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/styles.css?ver=1.2.6 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 98649
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0 | 41.204.160.15 | 200 OK | 256 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
Size256 kB (256394 bytes) Hash95cf5a5fb00d9e5e39b0a1f6211e5e76 03346afc060328dd525e655dd0aac448fd1b2806 d00cef70e8ec53cf8f4dc51de458c47e63aecf373cbb22b608ffdc3e012bcb40
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 256394
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/responsive.css?ver=2.0 | 41.204.160.15 | 200 OK | 6.9 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/responsive.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with CRLF line terminators Hash364d73805aae2fb4db9794ef6f652df3 71c49118ef97d767ecb7df5872024e8170ef1d82 f615efe454636b7944cec965a3db3df472dc4a7d814c6abc150ef6b742237703
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/css/responsive.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 6863
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/style.css?ver=2.0 | 41.204.160.15 | 200 OK | 17 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/style.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (744), with CRLF line terminators Hashbb1ff76cd0e027eba09f9475f6433931 be51b607e573089316d66ba59a51a7f11ed5411c 67eaab322cbc43c535a8f96e776a1939cc0fe959890d21f64db8568b8e674c73
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/style.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 16932
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/bootstrap/css/bootstrap.min.css?ver=2.0 | 41.204.160.15 | 200 OK | 122 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/bootstrap/css/bootstrap.min.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (65367), with CRLF line terminators Size122 kB (122232 bytes) Hashea033b140eccf09e5f8ea8c562cb29c3 85e56e3596c06acd99bb6ac383743dabc8b0de77 51d600c6396ced19a3b4fd1535dada4dafc1f68c0ffc5771b2b0a002e622f476
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/bootstrap/css/bootstrap.min.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 122232
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/child-theme/style.css?ver=2.0 | 41.204.160.15 | 200 OK | 3.5 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/child-theme/style.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with CRLF line terminators Hash6c8dd5642973cef34deb91124f07ec1b 89e152bf983b266174dc047be5555ddf487c1f25 eca34a9f4a49e159cbce54c615f55a391f27a2dbaed0c4cc55a63a782e6e63ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/child-theme/style.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 3538
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/pro/assets/css/style.css?ver=6.5.2 | 41.204.160.15 | 200 OK | 476 B |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/pro/assets/css/style.css?ver=6.5.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with CRLF line terminators Hashb9af949629be4a68f80d07d5ec604187 1b0055bfcba677d3ff99a981f2d7dc60386f8276 17dedc02ea93d41e1c5447ba94bdc141297d3eae935ee90fc45e8680c250f2f6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/pro/assets/css/style.css?ver=6.5.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 476
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.27 | 41.204.160.15 | 200 OK | 62 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.27 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (8267), with CRLF line terminators Hashc601d4374bc647b7915ed7371b8de4eb 8b72349cff6ca5508a030925eeabb3c8ce11dd95 a2b510b2021edf1ddc27f7cec931c74484eb5d63444256eff14b449bd8c2d8de
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/css/dflip.min.css?ver=2.2.27 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:43:11 GMT
Accept-Ranges: bytes
Content-Length: 61609
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.0 | 41.204.160.15 | 200 OK | 119 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (65496) Size119 kB (118650 bytes) Hashcab4f87c423b8f468a5465d6947353ad f74fde11973e5863bf39e81f7cfffcdedc14d963 a9641a0a832c182f004429274eaaf7efe35bfad3edf1b3f1c0c1d5e361fedd4a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.19.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:44:11 GMT
Accept-Ranges: bytes
Content-Length: 118650
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.9.8 | 41.204.160.15 | 200 OK | 3.4 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.9.8 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (3442) Hashac793cfd8de80e4763d4f9ded0d96508 49cde1c37571cba1f76f9d038b4670e7f023a3b9 3e584003b5c6df9bc2854b2775e527ef7240f3d1cae4047e9aa504cdfbc109f9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.9.8 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:45:02 GMT
Accept-Ranges: bytes
Content-Length: 3443
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 41.204.160.15 | 200 OK | 88 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 06:17:13 GMT
Accept-Ranges: bytes
Content-Length: 87553
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 41.204.160.15 | 200 OK | 14 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Wed, 09 Aug 2023 06:55:31 GMT
Accept-Ranges: bytes
Content-Length: 13577
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/style.css?ver=2.0 | 41.204.160.15 | 200 OK | 166 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/style.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with CRLF line terminators Size166 kB (166200 bytes) Hash37a1e60bdaee29a2e48661103dfa8b4b 72a35cdf9c6850b4dab7ace5da987df426f711e8 509db0a4d91fcabd9e24e037a184ebcb2b632fc515b5099699d3ce1a96792596
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/css/style.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 166200
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/child-theme/script.js?ver=2.0 | 41.204.160.15 | 200 OK | 0 B |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/child-theme/script.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/child-theme/script.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/bootstrap/js/bootstrap.min.js?ver=2.0 | 41.204.160.15 | 200 OK | 37 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/bootstrap/js/bootstrap.min.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (32034), with CRLF line terminators Hashe7d9a06cf9053c51cd4ad3386da0659a e45bf1054704a1fdfc4ee2713a16bf9283dea995 9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/bootstrap/js/bootstrap.min.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 36822
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/component.css?ver=2.0 | 41.204.160.15 | 200 OK | 154 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/css/component.css?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (51978), with CRLF line terminators Size154 kB (154474 bytes) Hashd572417293fb293097afb91de05678ed 8688121a604c203f50bd4d098abd9e8d4fece272 38231ba9a6feaa2a75b85bddc6038c58de16ed98c3bde004fa7e1cea9355df13
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/css/component.css?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:45 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 154474
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.waypoints.min.js?ver=4.0.1 | 41.204.160.15 | 200 OK | 9.0 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.waypoints.min.js?ver=4.0.1 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8863) Hash7d05f92297dede9ecfe3706efb95677a 56bdb149d9baf64474a4c24ae66445769a28254e 368daab67b1a5b2b2802edbbac79a2aa4ba992a2ebf9c67b98ad784d8004018c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.waypoints.min.js?ver=4.0.1 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 9028
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-includes/js/imagesloaded.min.js?ver=5.0.0 | 41.204.160.15 | 200 OK | 5.5 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/imagesloaded.min.js?ver=5.0.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (4358) Hash6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:46 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 06:17:13 GMT
Accept-Ranges: bytes
Content-Length: 5520
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0 | 41.204.160.15 | 200 OK | 20 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (20087) Hash743ccc438e10ebe7e1def696d7b0884d 4e46db99cb1402bc916cfbd6df6af9519165a229 9cd173d2b12a4a3b2295ae2f67bca95a8916fcfbe8d528a85e8528d6baeca9b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.magnific-popup.min.js?ver=1.1.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 20217
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 | 41.204.160.15 | 200 OK | 31 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (30837) Hash008e0bb5ebfa7bc298a042f95944df25 93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:44:11 GMT
Accept-Ranges: bytes
Content-Length: 30999
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2 | 41.204.160.15 | 200 OK | 58 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (57919) Hashbc1a6a99c43f5ccc97d2d350bde13f74 29a6f54569c193ffd6116f03be3eb42359c60eb7 3c770e90f98eb21b0c042fafb49755af93306fbaf42e449524f94fae9fc83295
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/animate.min.css?ver=3.7.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 58129
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0 | 41.204.160.15 | 200 OK | 14 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (13815) Hashad7c7f40b29d04995819dd78227a7639 659c59b55e80d33300a37e9e09db6d6931b2696e 15d13067ff0abcb3245c913aa97a630e966060366d40dd7e3bd3d1979b692881
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/themify-icons.min.css?ver=1.0.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 13837
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0 | 41.204.160.15 | 200 OK | 40 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (39952) Hashf708578ba985a553e9b199db6b817b24 66112bf73505e90f45e03e316da79b65e86194d3 3032857e796b528377ed2de02872e410b0b204d282b052502b319e669fa1a0ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/css/linea.min.css?ver=1.0.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 39974
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/circle-progress.min.js?ver=1.2.1 | 41.204.160.15 | 200 OK | 4.5 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/circle-progress.min.js?ver=1.2.1 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (4195) Hasha104efbf42a9a5213e38e37c81afad80 1e30b4cfdffa7b99e9c0ebc062cb1aa13b16c877 148483eefa9702392510fcfd3ad5fc5b5af93f89ac5402a5c496570957713c19
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/circle-progress.min.js?ver=1.2.1 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 4454
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1 | 41.204.160.15 | 200 OK | 24 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text Hashefed5240f25f41cd4dfb6e219ec4476b 1fb270f7f817febfe0ab92009bd73ff1b9e78ff1 fdb8cf5c6dbe4018f1679127971826a17d940ea0f5da82f2334cc32231032582
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/juxtapose.js?ver=1.2.1 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 23674
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11 | 41.204.160.15 | 200 OK | 12 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (11506) Hashb05496a9ad4dc2858fd889abed3d1e1a ad8a75bd4743122b5dbf517221506607588ec50b 49b8cd37d709cd17dda686bcd9ba97282e6e320fa8a9b5af540ccf96e6c274d7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/typed.min.js?ver=2.0.11 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 11749
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4 | 41.204.160.15 | 200 OK | 44 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (31997) Hash8a51288159d1d0e507d60cb34b907408 b8e7126888e4d7b0cc8a93689b99de5a23da34cb b4257f1c0bfa190cbd0f2ed3a8a4b02b1e11bfbd73fec2290d7fd6c522445380
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/owl.carousel.min.js?ver=2.3.4 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 44343
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.plugin.min.js?ver=1.0 | 41.204.160.15 | 200 OK | 3.4 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.plugin.min.js?ver=1.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (2373) Hash32e03dd6d4778f1ada9ed90c6a4836c8 4e242c6d6df5332d5b71f74f7500bd35eb522b60 d07f7a681de08532acb98fa6b7d7d75772eba20dfa4dab025d4a168657bf3ec4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.plugin.min.js?ver=1.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 3350
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.countdown.min.js?ver=2.1.0 | 41.204.160.15 | 200 OK | 14 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.countdown.min.js?ver=2.1.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (13345) Hash490ebe2de04e223321c4d21abeab4482 20c962df3f4323307121ff0911c01a1720dcf198 eb0b79c275ebe477b1c98dd02595ac5c8a036193fc4ea6b8f99c911b5839a76f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.countdown.min.js?ver=2.1.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 13607
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2 | 41.204.160.15 | 200 OK | 3.4 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (3278) Hash197a6ec11e0bad27417781b1df3a2baf 3170bb11c04ba935f496a45ae62a06088f092847 0b8528530d0f0403897b1747581fa7ce52bc762c3693949ac42d463839c549cb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/jquery.matchHeight.min.js?ver=0.7.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 3375
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6 | 41.204.160.15 | 200 OK | 35 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (32019) Hash2afcff647ed260006faa71c8e779e8d4 c4e5994f24ee8c8d2cf2d6602f0b56b9096a2e98 081ae9baaacc857c1c2cb51de6dbd0e1eb811c2761ef01a50df373f2f6eefe22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/isotope.min.js?ver=3.0.6 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 35445
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/packery-mode.pkgd.min.js?ver=2.0.1 | 41.204.160.15 | 200 OK | 14 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/packery-mode.pkgd.min.js?ver=2.0.1 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (13554) Hash9c3b0ff14aa599b3f1b007f162b4f5e3 1f64d158685b9f8c2c77909f9ec5401fe200371d c020105220590c021c6ae04c6d6de86141f0bca7838cea004e3535e5e14a5879
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/packery-mode.pkgd.min.js?ver=2.0.1 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 13625
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/scripts.js?ver=1.0 | 41.204.160.15 | 200 OK | 11 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/charity-addon-for-elementor/assets/js/scripts.js?ver=1.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text Hashb2ae68f86056fabce8b519b2518e62d4 35e66b43db5f713bee50e67dd886d8cbc62630d8 ef9ef99c75b08a18637e2dc05946fa60f945d8d99e49e136044ab0be8e698ca6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/charity-addon-for-elementor/assets/js/scripts.js?ver=1.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 17 Oct 2023 13:34:07 GMT
Accept-Ranges: bytes
Content-Length: 11435
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6 | 41.204.160.15 | 200 OK | 11 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (11117), with no line terminators Hasha53a916adf48efefd5a2aa0861ebbc07 46acfa0be9dd623a7aa9bceb1344c152a8adc13b 9c1989ecd392a0c54fb799409154242706940a8e6d800542ba579dfda576bb9d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.6 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:43:27 GMT
Accept-Ranges: bytes
Content-Length: 11117
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6 | 41.204.160.15 | 200 OK | 13 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (13182), with no line terminators Hash83a062cf6545b990c13b4398035a29d0 5cf24bc45fcbc6f416ea9671e089ca00ef0080d2 7ee08c60d39f5712a56938fda3e2ab10fe3ef23ec98aeb3c9a29e54f6f31ffe1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.6 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:43:27 GMT
Accept-Ranges: bytes
Content-Length: 13182
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-includes/js/masonry.min.js?ver=4.2.2 | 41.204.160.15 | 200 OK | 24 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/masonry.min.js?ver=4.2.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (23966) Hash3b3fc826e58fc554108e4a651c9c7848 76778fd446e2ff2377588a7b4ac4d79f258427c9 e00add38134eac2fb8e8e9c09cbfff7bbe57952b210322eb2eecb0a21fc055eb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Sat, 13 Jun 2020 18:53:26 GMT
Accept-Ranges: bytes
Content-Length: 24138
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/smoothscroll.js?ver=2.0 | 41.204.160.15 | 200 OK | 24 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/smoothscroll.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with CRLF line terminators Hash35799fc4af3dba4a7cca295af06e54d2 effb483d5df8fda93a8c930b09f123f5144bbf1a 5a2a8a11b174e639a1358cee8d16b2a1ec75eb625c8432fda11d6f36007f5a51
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/js/smoothscroll.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 23880
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/jquery.inview.min.js?ver=2.0 | 41.204.160.15 | 200 OK | 1.4 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/jquery.inview.min.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (1437), with CRLF line terminators Hash5db0816885c5354ee2fbb0b9e55f4170 560f158cf0779d69ef137e74e8a7606c61775169 a55df02343adab5792a719648a70bd0340ed0361115ab4a778fe89ed7886c39a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/js/jquery.inview.min.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 1439
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/jquery.slicknav.min.js?ver=2.0 | 41.204.160.15 | 200 OK | 6.2 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/jquery.slicknav.min.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (6129), with CRLF line terminators Hash940e6830dd4b2610e5eaffa67c1fee5b f27e1e570be0d4610f5a5af5638a00d58b897960 16cd062e034e6a5022767dd670caa436486b945cc1362d87e92d2d5373749b01
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/js/jquery.slicknav.min.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 6232
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/prognroll.js?ver=2.0 | 41.204.160.15 | 200 OK | 3.0 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/prognroll.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with CRLF line terminators Hash37c44b6d758c2408a076e14f91569ecd 5a3b0c9cc345f78d9611c609b1527fc5b2eedb38 aecccfda550d926d1c5bff6580838e1e4b680ef0f0bb5ab2b6ad02b8648ca4bb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/js/prognroll.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 2994
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/theia-sticky-sidebar.js?ver=2.0 | 41.204.160.15 | 200 OK | 16 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/theia-sticky-sidebar.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with CRLF line terminators Hash09d6e889b96819f227b896eed46d5f6b 5e3977b0724cd91833eda7ef76ae0bed3a5a6c2a 150ea5aad9307b3e71ebec5d35d5b61c4f39a2dfd246408bd0ede4ee28947d27
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/js/theia-sticky-sidebar.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 15877
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/swiper.js?ver=2.0 | 41.204.160.15 | 200 OK | 313 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/swiper.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with CRLF line terminators Size313 kB (313417 bytes) Hash3d29eae52aa25990f50fd7f29043eb80 52e37056061b0a33ee9dcbecdf92ba3454efbd19 05fc0d0dc6f277542770c4f6d8d7a2d0bf19844dfbb83d506cfb1ad291b5abf4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/js/swiper.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 313417
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/custom.js?ver=2.0 | 41.204.160.15 | 200 OK | 23 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/js/custom.js?ver=2.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with CRLF line terminators Hash389e69138323f60fc9dd761ca304429e cbde7f3ee317af79df4a80de6332c11899d186d7 8b1c7763f83d536436b51fbfb2322277606c60d453d0a2c5451e95772f3047ae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/js/custom.js?ver=2.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 22611
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 | 41.204.160.15 | 200 OK | 8.2 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (8171), with no line terminators Hashdda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Mon, 10 Apr 2023 18:02:36 GMT
Accept-Ranges: bytes
Content-Length: 8171
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 | 41.204.160.15 | 200 OK | 6.6 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (6625), with no line terminators Hashfd7ef2e4737acd74fd0dcdc3b515e304 0d792b33f12a48ee8aaaf2560a63a5682470645b 1d52e1ac7d3bc25a8b0ffc257153f9dd50249f96fe9a4df5e0d771241a69062c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.14.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Wed, 08 Nov 2023 06:17:13 GMT
Accept-Ranges: bytes
Content-Length: 6625
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/uploads/2022/03/testimonial.png | 41.204.160.15 | 200 OK | 18 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/uploads/2022/03/testimonial.png IP41.204.160.15:443 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subjectnrf.go.ke FingerprintBD:8D:C9:62:26:C5:C3:8C:08:CF:83:7D:D7:76:65:5E:54:14:38:CB ValidityTue, 02 Apr 2024 20:57:41 GMT - Mon, 01 Jul 2024 20:57:40 GMT
File typePNG image data, 1432 x 700, 4-bit colormap, non-interlaced Hash3f3da6fd9bc2f64930995f00ec0b7fde 0ea004a3554ea69d7895e5129fb3fe00e6f67f15 3d3e27b197b7e8228b1c21185e82683d6246e782a9e94f298bc1721d5bd7a91d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2022/03/testimonial.png HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 17:49:38 GMT
Accept-Ranges: bytes
Content-Length: 17921
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.nrf.go.ke/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 41.204.160.15 | 200 OK | 39 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (38582), with no line terminators Hash92f8c01350c630f414f5d0b015ad6864 eab40ab4e77f92f2fb17684aaf44b579a51b8034 17b79ece7ef9d1454a90156690d33d64387b67a7a7548fc826012512e287a937
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 05:21:36 GMT
Accept-Ranges: bytes
Content-Length: 38590
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6 | 41.204.160.15 | 200 OK | 934 B |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeASCII text, with very long lines (934), with no line terminators Hashec0187677793456f98473f49d9e9b95f 8c55e0f4a29865e871f3d54be8d480a0665891d9 df0ec8330290d184b1084527076cb87d41b33ba706ff5ab579d761f0cb6a744b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.8.6 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:43:27 GMT
Accept-Ranges: bytes
Content-Length: 934
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.27 | 41.204.160.15 | 200 OK | 252 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.27 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size252 kB (252214 bytes) Hash238afa6678257904f543f80d119f1f5d 960e158be84b48801fa8cffd5f9959e7f2ef4fdc 92da6d387d338d42271332b66d33dc9603856a05db38b92aa44c2ca5669f96a6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/3d-flipbook-dflip-lite/assets/js/dflip.min.js?ver=2.2.27 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:43:11 GMT
Accept-Ranges: bytes
Content-Length: 252214
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.9.8 | 41.204.160.15 | 200 OK | 9.2 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.9.8 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (9197), with no line terminators Hash513eadbf49860870633a0b4692cfd9fb f377792757e662ecc050e4b18ffd537b2b1bb11a 1c0a2c226affec64ee7bf92d6b6a5590a219d249c708b2b7f6220f8525e3e030
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.9.8 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:45:02 GMT
Accept-Ranges: bytes
Content-Length: 9197
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/plugins/gtranslate/js/dwf.js?ver=6.5.2 | 41.204.160.15 | 200 OK | 21 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/gtranslate/js/dwf.js?ver=6.5.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (3129) Hash9a3b0be888e016410a2a184d6347e32f ad9c2c85d6a04df9e2b12c331ce22b255130bc56 544278ca9219edd87d53ddeeeb7748488af6cf0fee6d38c118526df9970a1a95
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/gtranslate/js/dwf.js?ver=6.5.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:44:55 GMT
Accept-Ranges: bytes
Content-Length: 20739
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| www.nrf.go.ke/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLDz8Z1xlE92JQEk.woff | 41.204.160.15 | 200 OK | 10 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLDz8Z1xlE92JQEk.woff IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format, TrueType, length 10496, version 1.1 Hash2bf13a8e85c40f663d55577e4cfa6c65 720cbcfdfda09e0dcd4752a640bf6bb62d34c9db fe7e50fee042f6e2066b388bccbb7bf73487efa160101b3cf1f6200c7d188fc4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/fonts/poppins/pxiByp8kv8JHgFVrLDz8Z1xlE92JQEk.woff HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Mon, 01 Apr 2024 11:12:51 GMT
Accept-Ranges: bytes
Content-Length: 10496
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff
|
|
| www.nrf.go.ke/wp-content/uploads/2023/06/NRF-LOGO-LOCKUP-Site-Icon.png | 41.204.160.15 | 200 OK | 332 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/uploads/2023/06/NRF-LOGO-LOCKUP-Site-Icon.png IP41.204.160.15:443 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subjectnrf.go.ke FingerprintBD:8D:C9:62:26:C5:C3:8C:08:CF:83:7D:D7:76:65:5E:54:14:38:CB ValidityTue, 02 Apr 2024 20:57:41 GMT - Mon, 01 Jul 2024 20:57:40 GMT
File typePNG image data, 1600 x 599, 8-bit/color RGBA, non-interlaced Size332 kB (331898 bytes) Hash60d6f261b79003e7ca22bb5f141928a3 1007d072a7fd4549cb663b8091a14fc116eec93b 5e4e779c9ae6f632c4dfb60646db57b02b1f0a6f0f6cb37b024dca356f0f3daf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/06/NRF-LOGO-LOCKUP-Site-Icon.png HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:47 GMT
Server: Apache
Last-Modified: Thu, 01 Jun 2023 09:57:04 GMT
Accept-Ranges: bytes
Content-Length: 331898
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-brands-400-5.8.2.woff2 | 41.204.160.15 | 200 OK | 2.4 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-brands-400-5.8.2.woff2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format (Version 2), TrueType, length 2412, version 331.-31196 Hash714ee8de820748bab5090d91cd5b7690 07f4d4dfe5e3c9045f41996eb1ac8ecbbcc779bf 322c181b1aab5807cd0a7ed9e249ddbd97fa385ca3d338aa59ef1f610ca24601
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-brands-400-5.8.2.woff2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 2412
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| www.nrf.go.ke/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLEj6Z1xlE92JQEk.woff | 41.204.160.15 | 200 OK | 11 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLEj6Z1xlE92JQEk.woff IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format, TrueType, length 10600, version 1.1 Hasheb6945b4340d8e46ffea3efeb8cb6082 a9e8df0c86732c13c125a92ad28f04b25a72c05d 55fffef7b100460605349fa5215eb7dcd6e558e195d08e43eddc64c4b27d43b3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/fonts/poppins/pxiByp8kv8JHgFVrLEj6Z1xlE92JQEk.woff HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Mon, 01 Apr 2024 11:12:52 GMT
Accept-Ranges: bytes
Content-Length: 10600
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-brands-400-5.0.0.woff2 | 41.204.160.15 | 200 OK | 38 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-brands-400-5.0.0.woff2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format (Version 2), TrueType, length 37796, version 331.-31196 Hash6cdf281bc8af0068561fe6aa361a6a0b 4b11f830ee1b852b8aa46ea7e4cfe709a327bf58 49fd3e0c64f247cf56cb828bc37b88cf139df6e5c7bb4c3a4507f740e9a52c17
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-brands-400-5.0.0.woff2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 37796
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.3.0.woff2 | 41.204.160.15 | 200 OK | 11 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.3.0.woff2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format (Version 2), TrueType, length 10992, version 331.-31196 Hash020dcbdbc6c89fe7395e91551deacef9 f7dcf05a014f682326f17ced38206eb1948fe17c 40ebccd8ceceaed567584b9768b10be209699ffddbf85e22f443218f2d358513
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.3.0.woff2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 10992
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.10.1.woff2 | 41.204.160.15 | 200 OK | 10 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.10.1.woff2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format (Version 2), TrueType, length 10412, version 331.-31196 Hash82b2764fcd41e25136e931dd303a29f4 ec11167afa020752f2dcdbeba74c10ee6d9255d6 94db1583c12033a2b06418908eaf13362e9e79e6c4a78e5e8ce608774cf6e512
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.10.1.woff2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 10412
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.0.0.woff2 | 41.204.160.15 | 200 OK | 25 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.0.0.woff2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format (Version 2), TrueType, length 24800, version 331.-31196 Hash4abe94f1746789f39110d3ebac7ebd96 bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91 299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/wp-content/themes/ngo-charity-fundraising-pro/assets/icons/font-awesome-5/css/all.css?ver=2.0
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Tue, 12 Sep 2023 09:07:47 GMT
Accept-Ranges: bytes
Content-Length: 24800
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: font/woff2
|
|
| www.nrf.go.ke/wp-content/fonts/poppins/pxiEyp8kv8JHgFVrJJfedHFHGPc.woff | 41.204.160.15 | 200 OK | 10 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/fonts/poppins/pxiEyp8kv8JHgFVrJJfedHFHGPc.woff IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format, TrueType, length 10532, version 1.1 Hash42d8a788393ad890b3bc30a5a2bdfd6a 96e3c17210b189f43ff685f02b4cf49c2203a0cb 6076b418803564833cde2aece96c51b29927ab0a98dfbe727774d1a6c6e6c445
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/fonts/poppins/pxiEyp8kv8JHgFVrJJfedHFHGPc.woff HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Mon, 01 Apr 2024 11:12:51 GMT
Accept-Ranges: bytes
Content-Length: 10532
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: font/woff
|
|
| www.nrf.go.ke/wp-content/plugins/gtranslate/flags/svg/en.svg | 41.204.160.15 | 200 OK | 862 B |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/plugins/gtranslate/flags/svg/en.svg IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeSVG Scalable Vector Graphics image Hashf9bbc4885a348eff84e4ef4155121fae afaa1646576b96aa105a66c3273f13f0cb30e0c3 de46013c87c1d6b0e4804a6bd8be50f2c5f961c5adbc42ba40b8913af33afe75
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/plugins/gtranslate/flags/svg/en.svg HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Fri, 02 Feb 2024 11:44:55 GMT
Accept-Ranges: bytes
Content-Length: 862
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| www.nrf.go.ke/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 | 41.204.160.15 | 200 OK | 19 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:48 GMT
Server: Apache
Last-Modified: Wed, 03 Apr 2024 05:21:37 GMT
Accept-Ranges: bytes
Content-Length: 18726
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
|
|
| log.cookieyes.com/api/v1/log | 54.74.204.68 | 200 OK | 2 B |
URL POST HTTP/2log.cookieyes.com/api/v1/log IP54.74.204.68:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerAmazon Subjectlog.cookieyes.com FingerprintF0:B5:C1:9B:EA:EC:90:DD:B9:F5:9A:0C:8B:70:0D:E7:BC:D3:6E:E4 ValidityTue, 26 Mar 2024 00:00:00 GMT - Fri, 25 Apr 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /api/v1/log HTTP/1.1
Host: log.cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------12187179742650638409955014991
Content-Length: 654
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2
|
|
| www.nrf.go.ke/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLGT9Z1xlE92JQEk.woff | 41.204.160.15 | 200 OK | 10 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/fonts/poppins/pxiByp8kv8JHgFVrLGT9Z1xlE92JQEk.woff IP41.204.160.15:80 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon
File typeWeb Open Font Format, TrueType, length 10372, version 1.1 Hash8ec288e7f6a51f7cd30ca50a29eade9a 3633b52819308414803ebea177bcabc968871f8e abdc91ec7e4438b1e1d7f808d388614789d69037059b74a9d6166d00eb9b8b04
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/fonts/poppins/pxiByp8kv8JHgFVrLGT9Z1xlE92JQEk.woff HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/hackthon
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:49 GMT
Server: Apache
Last-Modified: Mon, 01 Apr 2024 11:12:52 GMT
Accept-Ranges: bytes
Content-Length: 10372
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: font/woff
|
|
| api.userway.org/api/tunings/7j7sTVXOXH | 52.38.29.163 | 200 OK | 1.3 kB |
URL POST HTTP/2api.userway.org/api/tunings/7j7sTVXOXH IP52.38.29.163:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerAmazon Subjectapi.userway.org FingerprintDE:3E:5B:83:F9:CC:9F:82:52:20:81:0A:0A:63:0D:AC:B7:81:9D:6D ValiditySat, 02 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Hash43da668cc304e2b8c4a5e6d01eadf64c 0934964205a341e27da46bb03324d3eb601052d4 dd47e855b247240537f67722619c9a8020cbc46088978dccc834fa24a27a4c91
POST /api/tunings/7j7sTVXOXH HTTP/1.1
Host: api.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1509
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:56 GMT
content-type: application/json; charset=utf-8
content-length: 1276
x-service-version: uw-pr
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, PATCH, POST, DELETE
access-control-allow-headers: *
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
cache-control: no-cache, no-store, must-revalidate
x-service-request-id: usrecec4bdb2e50415
etag: W/"4fc-CTSWQgWjQeJ9pGuwMyTT62AQUtQ"
X-Firefox-Spdy: h2
|
|
| www.nrf.go.ke/wp-content/uploads/2023/03/nrf-logo.png | 41.204.160.15 | 200 OK | 25 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/uploads/2023/03/nrf-logo.png IP41.204.160.15:443 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subjectnrf.go.ke FingerprintBD:8D:C9:62:26:C5:C3:8C:08:CF:83:7D:D7:76:65:5E:54:14:38:CB ValidityTue, 02 Apr 2024 20:57:41 GMT - Mon, 01 Jul 2024 20:57:40 GMT
File typePNG image data, 150 x 150, 8-bit/color RGB, non-interlaced Hashc7d508a86af63fc36bd6735e858fa44c 087f7aa01a7053b3654cc6c196f0147b5228a284 9f3f1dbbff151b275fbdd53113a62dd15251e1c99ed6ad16b34d316a760a0c52
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/03/nrf-logo.png HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:49 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 17:23:08 GMT
Accept-Ranges: bytes
Content-Length: 25322
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| www.nrf.go.ke/wp-content/uploads/2023/03/nrf-logo.png | 41.204.160.15 | 200 OK | 25 kB |
URL GET HTTP/1.1www.nrf.go.ke/wp-content/uploads/2023/03/nrf-logo.png IP41.204.160.15:443 ASN#36914 Kenya Education Network
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subjectnrf.go.ke FingerprintBD:8D:C9:62:26:C5:C3:8C:08:CF:83:7D:D7:76:65:5E:54:14:38:CB ValidityTue, 02 Apr 2024 20:57:41 GMT - Mon, 01 Jul 2024 20:57:40 GMT
File typePNG image data, 150 x 150, 8-bit/color RGB, non-interlaced Hashc7d508a86af63fc36bd6735e858fa44c 087f7aa01a7053b3654cc6c196f0147b5228a284 9f3f1dbbff151b275fbdd53113a62dd15251e1c99ed6ad16b34d316a760a0c52
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2023/03/nrf-logo.png HTTP/1.1
Host: www.nrf.go.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 05:51:49 GMT
Server: Apache
Last-Modified: Wed, 08 Mar 2023 17:23:08 GMT
Accept-Ranges: bytes
Content-Length: 25322
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
|
|
| cdn.userway.org/remediation/2024-04-23-20-58-34/free/remediation-tool-free.js?ts=1713905914680 | 185.76.9.26 | 200 OK | 22 kB |
URL GET HTTP/2cdn.userway.org/remediation/2024-04-23-20-58-34/free/remediation-tool-free.js?ts=1713905914680 IP185.76.9.26:443 ASN#60068 Datacamp Limited
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subject1667503734.rsc.cdn77.org Fingerprint81:9C:BF:5F:13:EB:44:CF:1C:9A:3B:B3:2A:3E:3D:CB:A9:AE:A2:C7 ValidityTue, 27 Feb 2024 12:39:22 GMT - Mon, 27 May 2024 12:39:21 GMT
File typegzip compressed data, from Unix Hashb3438dc6fac164388ed23a4c30054060 034613e2c90e870f0657c8babf173487b287186a 99be03201f322fb56efdfb06e85f39a1c5d4b3fec637e3c86dca125ea0018562
GET /remediation/2024-04-23-20-58-34/free/remediation-tool-free.js?ts=1713905914680 HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:56 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Tue, 23 Apr 2024 21:00:59 GMT
etag: W/"7a7a132b3e8d36794eaf0a2206499c3a"
x-amz-server-side-encryption: AES256
cache-control: max-age=25920000, public
vary: Accept-Encoding, Accept-Encoding
via: 1.1 cca0e030e1fac6fb27702d182fb6a74a.cloudfront.net (CloudFront)
x-amz-cf-pop: DUS51-P1
x-amz-cf-id: 6yA5Tt_JMh4U0pqL5qOZlXJXrfhg1_nJ6VLFbRCvTnZGOwCce43zdw==
age: 764
x-77-nzt: EwwBuUwJFAH3k8oBAAwBuUwKCQH3CgAAAAwBnJIhJwH3BgAAAA
x-77-nzt-ray: af58563009c88f487cef2966581c012e
x-accel-expires: @1739826905
x-accel-date: 1713906921
x-77-cache: HIT
x-77-age: 117411
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 117395
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| api.userway.org/api/a11y-data/v0/page/http%3A%2F%2Fwww.nrf.go.ke%2Fhackthon/DESKTOP/WIDGET_OFF/status | 52.38.29.163 | 200 OK | 77 B |
URL GET HTTP/2api.userway.org/api/a11y-data/v0/page/http%3A%2F%2Fwww.nrf.go.ke%2Fhackthon/DESKTOP/WIDGET_OFF/status IP52.38.29.163:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerAmazon Subjectapi.userway.org FingerprintDE:3E:5B:83:F9:CC:9F:82:52:20:81:0A:0A:63:0D:AC:B7:81:9D:6D ValiditySat, 02 Sep 2023 00:00:00 GMT - Mon, 30 Sep 2024 23:59:59 GMT
Hashf3b84edcbb7d7e1cf47c38c8fe97788f c182d12eb6d689d4709df844be807e636534e0d6 d2f13447bd89c56bad76bac2e4e551ac6b611f40503104b70ee26812afe5a94c
GET /api/a11y-data/v0/page/http%3A%2F%2Fwww.nrf.go.ke%2Fhackthon/DESKTOP/WIDGET_OFF/status HTTP/1.1
Host: api.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.nrf.go.ke/
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:52:01 GMT
content-type: application/json; charset=utf-8
content-length: 77
x-service-version: seo-w-fa0246c1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, PATCH, POST, DELETE
access-control-allow-headers: *
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
cache-control: no-cache, no-store, must-revalidate
etag: W/"4d-wYLRLrbWidRwnfhEvoB+Y2U04NY"
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/translations/xXRLEOkU.json | 104.22.59.91 | 200 OK | 1.3 kB |
URL GET HTTP/2cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/translations/xXRLEOkU.json IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1348), with no line terminators Hashb9571b72ba04eacd1f5284088f7ec14f 1f29efd111872c6c59f837eaad89d56756a35274 c850ea6532ae7a0464753c6a9f7cf908a9e9a0348a0ac88c34901aabf68ccded
GET /client_data/b9efe982e3ea791b39b05b2a/translations/xXRLEOkU.json HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.nrf.go.ke/
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: application/json
vary: Accept-Encoding
last-modified: Fri, 29 Mar 2024 00:35:29 GMT
etag: W/"4e8-614c1d1173133"
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 879c10651ce1b518-OSL
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?render=6LeXfXwmAAAAADiY4oGkMqEq-ywl5swXvEAbqpu9&ver=3.0 | 216.58.211.4 | 400 Bad Request | 0 B |
URL GET HTTP/3www.google.com/recaptcha/api.js?render=6LeXfXwmAAAAADiY4oGkMqEq-ywl5swXvEAbqpu9&ver=3.0 IP216.58.211.4:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /recaptcha/api.js?render=6LeXfXwmAAAAADiY4oGkMqEq-ywl5swXvEAbqpu9&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 400 Bad Request
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: text/html; charset=utf-8
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn-cookieyes.com/assets/images/close.svg | 104.22.59.91 | 200 OK | 1.3 kB |
URL GET HTTP/2cdn-cookieyes.com/assets/images/close.svg IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typeSVG Scalable Vector Graphics image Hashcfbcf7628b425adb0a55ef223965753e 42469ca151da583cf7c242cc2b62dc446211e8c5 2aa0b7fd5005a2a0cac1a66256cd96fc4e409e0e790ec5235d4819cc9ea0074f
GET /assets/images/close.svg HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 15 Mar 2022 04:40:50 GMT
etag: W/"541-5da3a66c769d4"
access-control-allow-origin: *
cache-control: max-age=0, s-maxage=604800, proxy-revalidate
content-encoding: gzip
cf-cache-status: HIT
age: 431191
server: cloudflare
cf-ray: 879c1065dd89b518-OSL
X-Firefox-Spdy: h2
|
|
| cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/config/390ESHhI.json | 104.22.59.91 | 200 OK | 32 kB |
URL GET HTTP/2cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/config/390ESHhI.json IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
Hash41ac662e33b88b627eee848bb1fafc95 0f6f5f157874b3a9f4b3d8af0f03d3080b462402 cb601bf73f8741903022f56ae6f8191fadecdd42b5a9326d310e8ce467bfd660
GET /client_data/b9efe982e3ea791b39b05b2a/config/390ESHhI.json HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.nrf.go.ke/
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: application/json
vary: Accept-Encoding
last-modified: Fri, 29 Mar 2024 00:35:29 GMT
etag: W/"7b29-614c1d1173133"
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 879c1064dcb7b518-OSL
X-Firefox-Spdy: h2
|
|
| cdn-cookieyes.com/assets/images/poweredbtcky.svg | 104.22.59.91 | 200 OK | 3.8 kB |
URL GET HTTP/2cdn-cookieyes.com/assets/images/poweredbtcky.svg IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typeSVG Scalable Vector Graphics image Hash325fe06fac8a116bc9048282056e97ff 08ccd053e5c6c482caeab30ce8492b0492146d61 cf419a8cb8147aec0ceb2d88f5f2837d3ee031e5f9a57b6e8a059160928abdde
GET /assets/images/poweredbtcky.svg HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 15 Mar 2022 04:41:24 GMT
etag: W/"eb2-5da3a68c50d09"
access-control-allow-origin: *
cache-control: max-age=0, s-maxage=604800, proxy-revalidate
content-encoding: gzip
cf-cache-status: HIT
age: 1629
server: cloudflare
cf-ray: 879c1065ed8cb518-OSL
X-Firefox-Spdy: h2
|
|
| www.google.com/recaptcha/api.js?render=6LeXfXwmAAAAADiY4oGkMqEq-ywl5swXvEAbqpu9&ver=3.0 | 216.58.211.4 | 400 Bad Request | 0 B |
URL GET HTTP/2www.google.com/recaptcha/api.js?render=6LeXfXwmAAAAADiY4oGkMqEq-ywl5swXvEAbqpu9&ver=3.0 IP216.58.211.4:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /recaptcha/api.js?render=6LeXfXwmAAAAADiY4oGkMqEq-ywl5swXvEAbqpu9&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 05:51:52 GMT
content-type: text/html; charset=utf-8
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| localhost:8080/nrf/wp-content/uploads/2023/06/NRF-LOGO-LOCKUP-Site-Icon.png | 0.0.0.0 | | 0 B |
URL GET localhost:8080/nrf/wp-content/uploads/2023/06/NRF-LOGO-LOCKUP-Site-Icon.png IP0.0.0.0:0
Requested byhttp://www.nrf.go.ke/hackthon
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /nrf/wp-content/uploads/2023/06/NRF-LOGO-LOCKUP-Site-Icon.png HTTP/1.1
Host: localhost:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/audit-table/_SU00IN9.json | 104.22.59.91 | 200 OK | 3.4 kB |
URL GET HTTP/2cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/audit-table/_SU00IN9.json IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (3604), with no line terminators Hashae2f568719e0fb43d9bc88015b177ed0 e76d68e0ec25625ae45050e19187d93067690c89 45e78e236ae76530abebbe699284a4a8475e0853ef8365dba43d853b86906e24
GET /client_data/b9efe982e3ea791b39b05b2a/audit-table/_SU00IN9.json HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.nrf.go.ke/
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: application/json
vary: Accept-Encoding
last-modified: Fri, 29 Mar 2024 00:35:29 GMT
etag: W/"d56-614c1d1172193"
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 879c10655d18b518-OSL
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/images/spin_bl.svg | 185.76.9.26 | 200 OK | 2.0 kB |
URL GET HTTP/2cdn.userway.org/widgetapp/images/spin_bl.svg IP185.76.9.26:443 ASN#60068 Datacamp Limited
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subject1667503734.rsc.cdn77.org Fingerprint81:9C:BF:5F:13:EB:44:CF:1C:9A:3B:B3:2A:3E:3D:CB:A9:AE:A2:C7 ValidityTue, 27 Feb 2024 12:39:22 GMT - Mon, 27 May 2024 12:39:21 GMT
File typeSVG Scalable Vector Graphics image Hash4b3baf1bb25aaa49565534473906b4a8 2b22dbb4794ff993001bd33fe0c7147b7716f149 02d78504ab6606b4018f6f1a3b9855dbd298e47565a1cba742f88faf2a562d68
GET /widgetapp/images/spin_bl.svg HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:56 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 22 Mar 2024 12:49:37 GMT
etag: W/"f1006e80919a554a181eeffcb6b3e381"
x-amz-server-side-encryption: AES256
cache-control: max-age=25920000, public
vary: Accept-Encoding, Accept-Encoding
via: 1.1 5297df6326448099cefed6e96fd7b00a.cloudfront.net (CloudFront)
x-amz-cf-pop: DUS51-P1
x-amz-cf-id: uUxBrJUk8WRvuXn-5yHeg_Lo6IN1oZE4ExV8_neJpEhDLwOSw93Nnw==
age: 9
x-77-nzt: EwwBuUwJFAH3icoBAAwBuUwKDAH3FAAAAAwBisclwQH3AAAAAA
x-77-nzt-ray: af585630f4d7fa287cef29662894912f
x-accel-expires: @1739826911
x-accel-date: 1713906931
x-77-cache: HIT
x-77-age: 117405
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 117385
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/2024-04-23-20-58-34/widget_app_base_1713905914680.js | 185.76.9.26 | 200 OK | 156 kB |
URL GET HTTP/2cdn.userway.org/widgetapp/2024-04-23-20-58-34/widget_app_base_1713905914680.js IP185.76.9.26:443 ASN#60068 Datacamp Limited
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subject1667503734.rsc.cdn77.org Fingerprint81:9C:BF:5F:13:EB:44:CF:1C:9A:3B:B3:2A:3E:3D:CB:A9:AE:A2:C7 ValidityTue, 27 Feb 2024 12:39:22 GMT - Mon, 27 May 2024 12:39:21 GMT
Size156 kB (155760 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgetapp/2024-04-23-20-58-34/widget_app_base_1713905914680.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Tue, 23 Apr 2024 21:00:54 GMT
etag: W/"87137d61bb183b8905e237350a9f961a"
x-amz-server-side-encryption: AES256
cache-control: max-age=25920000, public
vary: Accept-Encoding, Accept-Encoding
via: 1.1 2b483ab832506bc86647b6ceba38dc9e.cloudfront.net (CloudFront)
x-amz-cf-pop: DUS51-P1
x-amz-cf-id: pHrni9-5T-7v1O6B1fvPruJl7sYt5doG9Kxjz1rcM3beIPewZbkNzw==
age: 766
x-77-nzt: EwwBuUwJFAH3lsoBAAwBuUwKAQH3CgAAAAwBnJIhJwH3AgAAAA
x-77-nzt-ray: af58563009c88f487bef2966ce320d18
x-accel-expires: @1739826905
x-accel-date: 1713906917
x-77-cache: HIT
x-77-age: 117410
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 117398
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| cdn-cookieyes.com/assets/images/revisit.svg | 104.22.59.91 | 200 OK | 2.3 kB |
URL GET HTTP/2cdn-cookieyes.com/assets/images/revisit.svg IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typeSVG Scalable Vector Graphics image Hash4d412a23b3de1ab18851730ddfe13825 74bc40d3f1fca7994ce2894daa1ddca3a2bc301e 16d56ad572546ad8af1260e100bf5e94d2e47988a0ca920d6e68fc3837832f04
GET /assets/images/revisit.svg HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 15 Mar 2022 04:40:47 GMT
etag: W/"923-5da3a668dacc0"
access-control-allow-origin: *
cache-control: max-age=0, s-maxage=604800, proxy-revalidate
content-encoding: gzip
cf-cache-status: HIT
age: 3198
server: cloudflare
cf-ray: 879c1065dd88b518-OSL
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/images/wheel_right_bl.svg | 185.76.9.26 | 200 OK | 3.3 kB |
URL GET HTTP/2cdn.userway.org/widgetapp/images/wheel_right_bl.svg IP185.76.9.26:443 ASN#60068 Datacamp Limited
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subject1667503734.rsc.cdn77.org Fingerprint81:9C:BF:5F:13:EB:44:CF:1C:9A:3B:B3:2A:3E:3D:CB:A9:AE:A2:C7 ValidityTue, 27 Feb 2024 12:39:22 GMT - Mon, 27 May 2024 12:39:21 GMT
File typeSVG Scalable Vector Graphics image Hash45796a75720bd92740e7eb65b089f040 4d853c61a329cd7ccec30f19389b8442e73aeb49 19b08044dab1575c07a319747e54eaada46327b66c6ebac2ddc7b3c18fa883e4
GET /widgetapp/images/wheel_right_bl.svg HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:56 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 22 Mar 2024 12:49:37 GMT
etag: W/"66e207a98020ce81d086e97f22a4833c"
x-amz-server-side-encryption: AES256
cache-control: max-age=25920000, public
vary: Accept-Encoding, Accept-Encoding
via: 1.1 1b18b0df6149933160ee945c6867dc2c.cloudfront.net (CloudFront)
x-amz-cf-pop: DUS51-P1
x-amz-cf-id: B-77YC0peeTibbBrr0DFIE37vmoGMnrVP35uAZfs2eIGo_W55chovA==
age: 9
x-77-nzt: EwwBuUwJFAH358kBAAwBuUwKAQH3qwAAAAwBnJIhHwH3CAAAAA
x-77-nzt-ray: af585630f4d7fa287cef29665002782f
x-accel-expires: @1739826914
x-accel-date: 1713907093
x-77-cache: HIT
x-77-age: 117402
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 117223
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widget.js | 185.76.9.26 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.userway.org/widget.js IP185.76.9.26:443 ASN#60068 Datacamp Limited
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subject1667503734.rsc.cdn77.org Fingerprint81:9C:BF:5F:13:EB:44:CF:1C:9A:3B:B3:2A:3E:3D:CB:A9:AE:A2:C7 ValidityTue, 27 Feb 2024 12:39:22 GMT - Mon, 27 May 2024 12:39:21 GMT
File typeJavaScript source, ASCII text, with very long lines (1845), with no line terminators Hash0a278a4b91ecf46a1e207f6a531669f2 8905ea7f075e175d5c64c352a2125916df36bcc0 d896b97a2bb4c5f0d0cb8a9291eecdfa93f42228e22a78d8726b5e49499f5d92
GET /widget.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:54 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Tue, 23 Apr 2024 21:01:00 GMT
etag: W/"d25e988982bf6597edca37cf83080e4e"
x-amz-server-side-encryption: AES256
cache-control: max-age=3600, public
vary: Accept-Encoding, Accept-Encoding
via: 1.1 93e77bd122e2a2b3ec02228d81a35184.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P10
x-amz-cf-id: oOv-T5gLoob9-DMvRt2E2C9FExyA4JHrSGxlL6Mn91xT15AC6B0vCA==
age: 763
x-77-nzt: EwwBuUwJFAH3eQgAAAwBuUwKAQH3CgAAAAwBJRPCNAH3BgAAAA
x-77-nzt-ray: af585630f4d7fa287aef296658d12e10
x-accel-expires: @1714025745
x-accel-date: 1714022145
x-77-cache: HIT
x-77-age: 2185
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 2169
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/VfmtES9d.json | 104.22.59.91 | 200 OK | 44 B |
URL GET HTTP/2cdn-cookieyes.com/client_data/b9efe982e3ea791b39b05b2a/VfmtES9d.json IP104.22.59.91:443
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerGoogle Trust Services LLC Subjectcdn-cookieyes.com FingerprintE2:1A:56:13:EA:A4:FC:F5:F8:19:31:67:7B:2D:F7:48:4D:DD:5B:27 ValidityFri, 29 Mar 2024 10:18:02 GMT - Thu, 27 Jun 2024 10:18:01 GMT
File typeASCII text, with no line terminators Hash68a79e75c1426a00ab0a0a4eb8913b05 a28cc92b8e477c12625184d0a3da9d94f56f0b3e 63702084d3b5c7c61c276ba81149dbde974c45ffc0f1673c66d2611b55c47c93
GET /client_data/b9efe982e3ea791b39b05b2a/VfmtES9d.json HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.nrf.go.ke/
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:55 GMT
content-type: application/json
vary: Accept-Encoding
last-modified: Fri, 29 Mar 2024 00:35:29 GMT
etag: W/"2c-614c1d1172193"
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
content-encoding: gzip
cf-cache-status: HIT
server: cloudflare
cf-ray: 879c10649c78b518-OSL
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/2024-04-23-20-58-34/locales/en-US.json | 185.76.9.26 | 200 OK | 621 B |
URL GET HTTP/2cdn.userway.org/widgetapp/2024-04-23-20-58-34/locales/en-US.json IP185.76.9.26:443 ASN#60068 Datacamp Limited
Requested byhttp://www.nrf.go.ke/hackthon CertificateIssuerLet's Encrypt Subject1667503734.rsc.cdn77.org Fingerprint81:9C:BF:5F:13:EB:44:CF:1C:9A:3B:B3:2A:3E:3D:CB:A9:AE:A2:C7 ValidityTue, 27 Feb 2024 12:39:22 GMT - Mon, 27 May 2024 12:39:21 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (675), with no line terminators Hashc5a29ff638f573d2eec66e5126af2880 cc40edc198086616062281afef01e9496119de84 92754f0c3e3af0c8279d2cf074e98736f97055f9cdcfb45b10e85572ce1864c3
GET /widgetapp/2024-04-23-20-58-34/locales/en-US.json HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.nrf.go.ke
DNT: 1
Connection: keep-alive
Referer: http://www.nrf.go.ke/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:51:56 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Tue, 23 Apr 2024 21:00:54 GMT
etag: W/"85d8c40aac9c25bb0b993d4aa039a56f"
x-amz-server-side-encryption: AES256
cache-control: max-age=25920000, public
via: 1.1 ecc31e9f7b98bdd8a55967baa6e36ad8.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA56-P10
x-amz-cf-id: Hdk-2m7oEFlBA0wt9b5_vQfz7ZjWmZG7zwDoRu_E01EcULdfHF94cQ==
age: 765
x-77-nzt: EwwBuUwJFAH3lsoBAAwBuUwKDAH3CgAAAAwBJRPCMQH3AgAAAA
x-77-nzt-ray: af58563009c88f487cef2966b0e31c10
x-accel-expires: @1739826906
x-accel-date: 1713906918
x-77-cache: HIT
x-77-age: 117410
content-encoding: gzip
server: CDN77-Turbo
x-cache: HIT
x-age: 117398
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|