| cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css | 151.101.1.229 | 200 OK | 30 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/css/bootstrap.min.css IP151.101.1.229:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65305) Hashf1a8fe9e98944b9d682ec5c3efac8f17 633e9b216d60d40eab6873175134e935b554f891 ed959b654022f7bae48ab9380dc129e065833e45a944c70d684c971ac3578cb8
GET /npm/bootstrap@5.2.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.2.0
x-jsd-version-type: version
etag: W/"2f88b-Yz6bIW1g1A6raHMXUTTpNbVU+JE"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 Apr 2024 19:09:28 GMT
age: 18294165
x-served-by: cache-fra-eddf8230090-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30275
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js | 151.101.1.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js IP151.101.1.229:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash2faceb2d3db75ced808545e78fab94ed c663baa051856b64d746629a961e23bbf0fbaf8c c0c09020adb6f602b16d48374166b9e38ca92383a81650b6a9097c43cc43f31f
GET /npm/bootstrap@5.2.0/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.2.0
x-jsd-version-type: version
etag: W/"137ae-xmO6oFGFa2TXRmKalh4ju/D7r4w"
content-encoding: br
accept-ranges: bytes
date: Thu, 18 Apr 2024 19:09:28 GMT
age: 10937317
x-served-by: cache-fra-eddf8230139-FRA, cache-hel1410032-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24474
X-Firefox-Spdy: h2
|
|
| i.pinimg.com/originals/0d/44/56/0d4456dd552694a7d6479b2c1201ee98.png | 104.18.38.64 | 200 OK | 7.7 kB |
URL GET HTTP/2i.pinimg.com/originals/0d/44/56/0d4456dd552694a7d6479b2c1201ee98.png IP104.18.38.64:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerDigiCert Inc Subject*.pinimg.com FingerprintE7:50:BE:5C:6C:58:41:A4:CE:4B:5D:7E:7F:83:46:F0:07:53:E0:5E ValidityFri, 09 Jun 2023 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typePNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced Hashd3974a8af095095b02204c77253512aa d2dce6dc742ce3ffc094242082d628da17291256 7a2143d837bf7541a75d91e5599833f4b20e9a3bd9bce619caf5dc9187f1803d
GET /originals/0d/44/56/0d4456dd552694a7d6479b2c1201ee98.png HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 19:09:29 GMT
content-type: image/png
content-length: 7745
cf-ray: 8766f30fbcbeb4ed-OSL
accept-ranges: bytes
cache-control: max-age=31536000, immutable
etag: "d3974a8af095095b02204c77253512aa"
vary: Origin, Accept-Encoding
edge-start: 1713467368925
origin-latency: 145
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-cdn: cloudflare
server: cloudflare
alt-svc: h3=":443"; ma=600
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/favicon.png | 172.67.201.234 | 200 OK | 18 kB |
URL GET HTTP/3nateahstudios.com/favicon.png IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typePNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced Hashef8817a9c3c8a5de3a566f1f928a05eb 601ad13466371386d29e89c63914aaa969c39f02 ae77cc7f100196cf21058c6a6ab1da6832fbc8a9a3cbbcb6958bbfb2dd8223ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.png HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 19:09:29 GMT
content-type: image/png
content-length: 18425
cache-control: max-age=31536000
last-modified: Sat, 20 Aug 2022 10:59:04 GMT
etag: "0c78dc83b4d81:0"
x-powered-by: ASP.NET
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pgUTrZBCo5WVk8uhSa2aH7BVZCb8pwUzRRf%2F292iAeKscJlGPE%2FiJAs%2FRieb6VWHvT25RSDgAiZdsN7xKHAD2%2FM0XcCgBho2J8xbNV13YZ13JR40UN1CDeFqU5%2FGkwlIJ2M2sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8766f30fad1d56a5-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-shims.min.css?token=5956274f26 | 104.21.26.223 | 200 OK | 28 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-shims.min.css?token=5956274f26 IP104.21.26.223:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (27377) Hash940b066040a876fa1dc7b2ee2d222a58 64b2aea0b4d60d879d4ff7540192a906ffc0fd92 f4e953827930889e844103c3a6771bd2e9de17d091b36378c40362271858e075
GET /releases/v6.5.2/css/free-v4-shims.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"940b066040a876fa1dc7b2ee2d222a58"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SEmxT1waYplKzlki3tQWfsBXwblkF8KnCCIWHy1lgXM7QKIlqmmFvw==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9AjZZ5BoW9tw8pGkl1c9T9Rp4LLo9pLumb2ZQMpmbnlQ8VPpFkhbXx4BaxYBXB4%2BsiIrPByxf9gQbidOyb87oM2hATINMTvOsgtKlz9avmXopGQf3BYdh4C%2FMy8DQyx%2F3nbJzvhsrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8766f30eaccf0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v5-font-face.min.css?token=5956274f26 | 104.21.26.223 | 200 OK | 823 B |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v5-font-face.min.css?token=5956274f26 IP104.21.26.223:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (845), with no line terminators Hashd8a0274a5097af25642c9310d6d4bb3e 61512d739400e60d9360863446eaf008395859fb 84f5ae05668bcfe4bd7447d5035e909686423e998d8dfc2c96789875ef78cdd3
GET /releases/v6.5.2/css/free-v5-font-face.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"a3d53e21a02e37af6cbc00ac63b3cc1e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bPLykxUBvu67DR86fGktWtseITFcqUukg5gnN-tkl215r8m3YHjSGg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2Bp3V7%2B8GJtV9YIgXB2lhWk%2Fd3DPUhpZ2DjD1iJT0dkS0jkM1JnCERkMInmXotPW5IZGCQ9QCCjGPTbATAZTcknSxk35os3v6rdN4YDtA5fHCYlthLxJGxsCUk%2BTI1Gu27XmV0ah5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8766f30eaccd0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/login.php | 172.67.201.234 | 200 OK | 3.1 kB |
URL User Request GET HTTP/2nateahstudios.com/login.php IP172.67.201.234:443
CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3306), with no line terminators Hash2f51990394d2b20c23f03287c57e4267 de7c5c717d81bc499b942820b9880b27766b58f8 603635ce35d9e6f3b9ff887f63cbccf4f8daa6541602bdcd625433b223c7d0fd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /login.php HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 19:09:27 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache
vary: Accept-Encoding
x-powered-by: PHP/7.4.30, ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S5C7SqE8RTUIGJM8SHt%2BCy%2B%2FzVS%2Bhs21PN%2FEgVwF9%2F11tVyGsxMlFBCl%2FGhCpmac0xnwNwwoHYPkfWMQVPnercXvb69k2ON84M%2FIBHYIap%2FuizyD%2B7veDLwdIZxwjJjfE1kGFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8766f307ecc9569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/main2.css | 172.67.201.234 | 200 OK | 3.5 kB |
URL GET HTTP/3nateahstudios.com/main2.css IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeASCII text, with very long lines (3811), with no line terminators Hash4235f852bcfe98289496097f2b3cae1b deaf3e510919a6bc486c62f0cfeaa4c2adc7afd3 92ec5226a81826e9c8f0174298ec5b992172592d62dc36cf7943ea41eb5bc3a4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /main2.css HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/css
cache-control: max-age=31536000
last-modified: Mon, 29 Aug 2022 19:08:10 GMT
etag: W/"09c4addabbd81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WLPKfP6NyV8SgvD1AfMTO%2FdTrEi0Ch%2F0tYy6RwBOkt7GAscTLjljKYXXPk4b9VoEPBXEoI55i9FXlJ03aAff%2Bp7UdJivkmAAqX3jMn%2FTNhRYbUsWmqCrlAV2jO1g5NGGVWgOsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8766f30bc8ba56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nateahstudios.com/js/app.js | 172.67.201.234 | 404 Not Found | 1.2 kB |
URL GET HTTP/3nateahstudios.com/js/app.js IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeHTML document, ASCII text, with very long lines (1323), with no line terminators Hashf5064cd10293c25f15ab1c0a2aeade6b b54330652c047a485de5304d6418ea3d5d552d85 e38cefce8d4330e6ee50a34f59229388ea75af218645c21cbffbe9a027ab3f22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/app.js HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/html
cache-control: max-age=14400
x-powered-by: ASP.NET
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CN%2F6lpHUuq00QFotk6rK1U94lloO1NQahB%2B4Zh2OA4TOh%2Fs%2Fj1BK7HTlZbWMc%2FVsAVSHTQ4YfGsiqgfzQ%2FfvNKz%2BbsChwyfCVN8aX2bojqZ12TAg7gA%2FOxEa1S4tx5nLHof1mg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8766f30bd8c156a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-font-face.min.css?token=5956274f26 | 104.21.26.223 | 200 OK | 1.8 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free-v4-font-face.min.css?token=5956274f26 IP104.21.26.223:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (1803), with no line terminators Hash36f549800bc029aaadd0d7ac3d1d0f54 45bfcbb57c0155a2f22a47117deae6dc87706d4a 4048a832df1b9ac88058b1964ab9c45300daf6c10b0a02d697a29d729a81ea30
GET /releases/v6.5.2/css/free-v4-font-face.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"9c9f596493867f0e7ef5f9fe99103fce"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jBGwnAFTSWAEoVlKCBpAlJUIEXaCVSQl2Vm88my8YbOejcOb3898dQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=INjT171Qx1MZc4wiLE4LaJsvMJHdkGr0DTjrggXbTEOPyIE5bAE58PMGyUaDGtKIlEmK9SLm3A1NWnjoRzsVCUsyHnFAqz%2BJql8E8290e4Y%2BOLbzV6Oowop5SaCSn3Flkd%2BIcV6ZEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8766f30eacd20b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nateahstudios.com/js/app.js | 172.67.201.234 | 404 Not Found | 1.2 kB |
URL GET HTTP/3nateahstudios.com/js/app.js IP172.67.201.234:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerLet's Encrypt Subjectnateahstudios.com FingerprintF2:B8:43:0B:E1:37:39:FD:9A:0B:A4:25:8E:72:AB:89:8C:CD:07:00 ValidityWed, 27 Mar 2024 14:57:13 GMT - Tue, 25 Jun 2024 14:57:12 GMT
File typeHTML document, ASCII text, with very long lines (1323), with no line terminators Hashf5064cd10293c25f15ab1c0a2aeade6b b54330652c047a485de5304d6418ea3d5d552d85 e38cefce8d4330e6ee50a34f59229388ea75af218645c21cbffbe9a027ab3f22
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/app.js HTTP/1.1
Host: nateahstudios.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/html
cache-control: max-age=14400
x-powered-by: ASP.NET
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bD3WWJzkFl6NwLYylE%2BvrlAU%2BEC7u4VCPotDOqnVz19KQrvNSgZ9t7VROgLTL87eOdnV57%2BcFW0cqqo1BCliNoqyAQkD8so%2B7e%2BW5Iq5njF5Zwf5hnw%2Ba%2Bl1JU59ibU7Lq3jkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8766f30e6b7d56a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| kit.fontawesome.com/5956274f26.js | 104.18.40.68 | 200 OK | 12 kB |
URL GET HTTP/2kit.fontawesome.com/5956274f26.js IP104.18.40.68:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (11461) Hasha6858012f130dae3599413fd67a1fad2 92f391953e7ccf09f20d762cb6724551fc67ffe7 b8042a6f3fa9e018e76e5bdb4beeae3fdcd29c2138e4b869adbbd79ddab4098d
GET /5956274f26.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Referer: https://nateahstudios.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F8d1fkO7-52_j0SfxmSh
cf-cache-status: MISS
server: cloudflare
cf-ray: 8766f30bfc8eb50b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v6.5.2/css/free.min.css?token=5956274f26 | 104.21.26.223 | 200 OK | 104 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v6.5.2/css/free.min.css?token=5956274f26 IP104.21.26.223:443
Requested byhttps://nateahstudios.com/login.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98 ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT
File typeASCII text, with very long lines (65321) Size104 kB (103541 bytes) Hash7f29cd8c97789aa298af8c61623ca28b af8109e0e5c8bb2c1c3ab44ba7b5d25900ca454a 3e9c73fa687cd4110688668977a7caa87f5a1dee0d11f03687bd4871deedf1c1
GET /releases/v6.5.2/css/free.min.css?token=5956274f26 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nateahstudios.com/
Origin: https://nateahstudios.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 19:09:28 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Tue, 02 Apr 2024 15:26:25 GMT
etag: W/"7f29cd8c97789aa298af8c61623ca28b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t4mRXPdpXgK5TijlfFH-BGcW_hL9n7tN-YHlPJrfOVi35ZPM7eK1VQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EPO7sWtZk%2B3ch91pAGsh2fDO%2B057idoq5%2Bq%2BLd%2FYx5WBJSZEpqYCDgixldsk%2Bgr7FazLSOEwrwAhZRw9mtTB8hV4jpuFSUF%2F2CFHRCGMpOhPWLmlO4DNoOssuQ2eVBW9U43ZKcDidw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8766f30eacce0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|