| bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.w3s.link/ | 104.18.23.52 | 307 Temporary Redirect | 0 B |
URL User Request GET HTTP/2bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.w3s.link/ IP104.18.23.52:443
CertificateIssuerCloudflare, Inc. Subjectw3s.link Fingerprint08:70:3E:4A:18:00:2B:6D:C0:37:93:EF:4C:79:92:DD:E4:4E:3B:A5 ValidityMon, 18 Jul 2022 00:00:00 GMT - Mon, 17 Jul 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | openphish | Adobe Inc. | |
GET / HTTP/1.1
Host: bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.w3s.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Thu, 01 Jun 2023 23:40:05 GMT
content-length: 0
location: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
access-control-allow-origin: *
access-control-expose-headers: Link
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://tableland.network https://*.tableland.network ; form-action 'self'; navigate-to 'self'; connect-src 'self' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://tableland.network https://*.tableland.network ; report-to csp-endpoint ; report-uri https://csp-report-to.web3.storage
reporting-endpoints: csp-endpoint="https://csp-report-to.web3.storage"
server-timing: request;dur=405
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0b4cb10f4c0b4d-OSL
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js | 104.17.25.14 | 200 OK | 6.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP104.17.25.14:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File typeASCII text, with very long lines (19015) Hash70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 23:40:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3042701
expires: Tue, 21 May 2024 23:40:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Szyw%2FoFF2QM%2FHgQpUXKbbN0W88m5Tuu70ULu1UdqadrgKhQuf37K53mzumEWjIHnBE%2FzhP1iHKS9uLcjsL8OtAyt1hfVy56vVrGKDvegDhgKQWT3ALQkxwMYXBL6uNf%2BOJnpytEE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d0b4cb8dd4db51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.2.1.slim.min.js | 69.16.175.10 | 200 OK | 24 kB |
URL GET HTTP/2code.jquery.com/jquery-3.2.1.slim.min.js IP69.16.175.10:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerSectigo Limited Subject*.jquery.com Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83 ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File typeASCII text, with very long lines (32012) Hash5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 23:40:05 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685662805.dop226.sk1.t,1685662805.cds252.sk1.hn,1685662805.cds235.sk1.c
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.1.1.min.js | 69.16.175.10 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.1.1.min.js IP69.16.175.10:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerSectigo Limited Subject*.jquery.com Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83 ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File typeASCII text, with very long lines (32030) Hashe071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf
GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 23:40:05 GMT
content-encoding: gzip
content-length: 30070
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-152b5"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685662805.dop226.sk1.t,1685662805.cds226.sk1.hn,1685662805.cds010.sk1.c
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | | 472 B |
IP142.250.74.3:0
Hash02593b51cd737e1085e5837a9a47c755 aab410449655b9fddf070f3e25a1a8e5aee59530 0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:40:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js | 152.199.19.160 | 200 OK | 30 kB |
URL GET HTTP/2ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js IP152.199.19.160:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerDigiCert Inc Subject*.vo.msecnd.net Fingerprint0E:7D:A8:CD:FE:61:1E:46:97:A3:57:99:70:DA:E0:59:1D:34:04:80 ValidityFri, 05 May 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File typeASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /ajax/jQuery/jquery-3.3.1.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 4596241
cache-control: public,max-age=31536000
content-type: application/javascript
date: Thu, 01 Jun 2023 23:40:05 GMT
etag: "80288516b793d31:0"
last-modified: Mon, 22 Jan 2018 19:27:49 GMT
server: ECAcc (ska/F6AE)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 30394
X-Firefox-Spdy: h2
|
|
| e7.pngegg.com/pngimages/571/47/png-clipart-adobe-acrobat-pdf-computer-icons-adobe-reader-edu-invest-adobe-pdf-text-logo-thumbnail.png | 172.64.99.26 | 200 OK | 4.7 kB |
URL GET HTTP/2e7.pngegg.com/pngimages/571/47/png-clipart-adobe-acrobat-pdf-computer-icons-adobe-reader-edu-invest-adobe-pdf-text-logo-thumbnail.png IP172.64.99.26:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerGoogle Trust Services LLC Subjectpngegg.com FingerprintC5:D6:B6:BE:D3:F8:86:E1:AA:FC:B1:F5:2B:67:DD:CF:94:F1:E9:32 ValidityWed, 17 May 2023 02:49:32 GMT - Tue, 15 Aug 2023 02:49:31 GMT
File typePNG image data, 348 x 398, 4-bit colormap, non-interlaced\012- data Hashb36e67c775e0b2e9f6e7d9762c4f4487 f089c83dcb9db58714dc8aec40bebf13632c66b5 f57218e76eb6adab56df94b4a32ea7873703bd3701dde45af952605cfc5a5693
GET /pngimages/571/47/png-clipart-adobe-acrobat-pdf-computer-icons-adobe-reader-edu-invest-adobe-pdf-text-logo-thumbnail.png HTTP/1.1
Host: e7.pngegg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Jun 2023 23:40:05 GMT
content-type: image/png
content-length: 4722
last-modified: Sun, 28 Jun 2020 05:36:54 GMT
etag: "5ef82c76-1272"
expires: Wed, 25 Jun 2025 04:56:26 GMT
cache-control: max-age=65664000
cf-cache-status: HIT
age: 499419
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s3KQlKnwDyj38%2BPeFw3jFJ%2F%2B1DPD7g8aZuFk6AV%2BEAZxLKe67kQY7087Cbwszk5qgE0vw8xhQ9MI0t4x1ZRkS1CSD%2FoblExFZ8QIheteJXjVDS5x%2Fk6P4EKOns07T%2FsT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7d0b4cb93d25385a-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.170:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File typeASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 12:31:43 GMT
expires: Fri, 31 May 2024 12:31:43 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 40103
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | | 472 B |
IP142.250.74.3:0
Hash02593b51cd737e1085e5837a9a47c755 aab410449655b9fddf070f3e25a1a8e5aee59530 0ea607d017e63bf06a742560b582d99802dc477bba715d9890e1d51663e50d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Jun 2023 23:40:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/Sign-In-PDF-CLOUD_files/font-awesome.css | 209.94.90.1 | 404 Not Found | 232 B |
URL GET HTTP/2bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/Sign-In-PDF-CLOUD_files/font-awesome.css IP209.94.90.1:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerLet's Encrypt Subject*.i.ipfs.io FingerprintDF:57:ED:7D:45:D6:8D:9D:25:3C:13:85:2E:51:0D:AD:64:B8:E5:84 ValidityMon, 27 Mar 2023 17:15:30 GMT - Sun, 25 Jun 2023 17:15:29 GMT
Hash8118e46fea6e2309fe66c69b8b96903d d4232feefb75e8437bf9d72ca78d346c2361f99b 61d8b0315af62587150c287216b720fa65875ce23f63a1fcad26eacffe3af749
Analyzer | Verdict | Alert | openphish | Adobe Inc. | | quad9 | Sinkholed | |
GET /Sign-In-PDF-CLOUD_files/font-awesome.css HTTP/1.1
Host: bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: openresty
date: Thu, 01 Jun 2023 23:40:06 GMT
content-type: text/plain; charset=utf-8
content-length: 232
x-content-type-options: nosniff
x-ipfs-pop: ipfs-bank7-fr2
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank2-fr2
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.170:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File typeASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 12:31:43 GMT
expires: Fri, 31 May 2024 12:31:43 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 40103
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| adobe.com/favicon.ico | 23.56.4.32 | | 0 B |
IP23.56.4.32:0 ASN#20940 Akamai International B.V.
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerDigiCert Inc Subject*.adobe.com Fingerprint02:34:86:FC:43:9F:4B:35:C3:FC:67:0B:FF:3B:BC:BC:6E:5A:91:6A ValidityMon, 10 Oct 2022 00:00:00 GMT - Wed, 11 Oct 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: AkamaiGHost
content-length: 0
location: https://www.adobe.com/favicon.ico
date: Thu, 01 Jun 2023 23:40:07 GMT
strict-transport-security: max-age=86400
X-Firefox-Spdy: h2
|
|
| www.adobe.com/favicon.ico | 95.101.11.89 | | 800 B |
URL GET www.adobe.com/favicon.ico IP95.101.11.89:0 ASN#20940 Akamai International B.V.
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerDigiCert Inc Subject*.adobe.com Fingerprint02:34:86:FC:43:9F:4B:35:C3:FC:67:0B:FF:3B:BC:BC:6E:5A:91:6A ValidityMon, 10 Oct 2022 00:00:00 GMT - Wed, 11 Oct 2023 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data Hashb28bf60dd7e50b6dffd394ebc0f9057a 9ea7eed87b689757780322989ef426aeffdc8f7a bf24c9e4d37f94d4bd2f870228ff421ca54b2949db3391dbd3818ec0e6db0f5f
Analyzer | Verdict | Alert | threatfox | QakBot | |
GET /favicon.ico HTTP/1.1
Host: www.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
server: Apache
x-adobe-content: AEM-Offers
x-frame-options: SAMEORIGIN
x-adobe-info: 9645848c-cb14-4920-9219-c23100ed2fd8, 9645848c-cb14-4920-9219-c23100ed2fd8
last-modified: Thu, 01 Jun 2023 11:13:26 GMT
x-adobe-loc: ew1
x-adobe-source: 128.35
x-content-type-options: nosniff
x-adobe-cache: MISS
accept-ranges: bytes
content-encoding: gzip
content-length: 800
cache-control: max-age=21600
expires: Fri, 02 Jun 2023 05:40:07 GMT
date: Thu, 01 Jun 2023 23:40:07 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="468239_1600457557_76545170_110_6880_1_0";dur=1
akamai-x-true-ttl: 31536000
strict-transport-security: max-age=86400
X-Firefox-Spdy: h2
|
|
| ia601408.us.archive.org/33/items/pdf-capture-blur-11-1/pdf-Capture-blur11%20%281%29.png | 207.241.227.128 | 200 OK | 293 kB |
URL GET HTTP/2ia601408.us.archive.org/33/items/pdf-capture-blur-11-1/pdf-Capture-blur11%20%281%29.png IP207.241.227.128:443 ASN#7941 INTERNET-ARCHIVE
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerGoDaddy.com, Inc. Subject*.us.archive.org FingerprintAD:42:AD:6F:D7:D3:83:11:4E:71:BF:D2:65:2C:78:ED:A6:9E:29:52 ValidityThu, 19 Jan 2023 19:33:16 GMT - Tue, 20 Feb 2024 19:33:16 GMT
File typePNG image data, 1300 x 717, 8-bit/color RGBA, non-interlaced\012- data Size293 kB (293102 bytes) Hash88111317f139ed7482cbf3c91606abda 877f089ffd6c0488c8e336fec23fa8d0cf7d65e6 28a19e5bf607928d5613c7cc5edf0a83813a943e3de4d3a021c80d6066d82a7c
GET /33/items/pdf-capture-blur-11-1/pdf-Capture-blur11%20%281%29.png HTTP/1.1
Host: ia601408.us.archive.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Thu, 01 Jun 2023 23:40:07 GMT
content-type: image/png
content-length: 293102
last-modified: Mon, 18 Jul 2022 17:32:45 GMT
etag: "62d5993d-478ee"
strict-transport-security: max-age=15724800
expires: Fri, 02 Jun 2023 05:40:07 GMT
cache-control: max-age=21600
access-control-allow-origin: *
access-control-allow-headers: Accept-Encoding,Accept-Language,Authorization,Cache-Control,Content-Length,Content-Range,DNT,Pragma,Range,X-Requested-With
access-control-allow-credentials: true
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 49 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File typeASCII text, with very long lines (48664) Hash14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 23:40:05 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 11/25/2022 23:23:38
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: d04f5327282100f4d4a838899118f0c0
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d0b4cb8dea11c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 51 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.10.207:443
Requested byhttps://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File typeASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 01 Jun 2023 23:40:05 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 28706653
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d0b4cb8cdca0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ | 209.94.90.1 | 200 OK | 18 kB |
URL User Request GET HTTP/2bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link/ IP209.94.90.1:443
CertificateIssuerLet's Encrypt Subject*.i.ipfs.io FingerprintDF:57:ED:7D:45:D6:8D:9D:25:3C:13:85:2E:51:0D:AD:64:B8:E5:84 ValidityMon, 27 Mar 2023 17:15:30 GMT - Sun, 25 Jun 2023 17:15:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Generic phishing | openphish | Adobe Inc. | | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm.ipfs.dweb.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Thu, 01 Jun 2023 23:40:05 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm"
x-ipfs-gateway-host: ipfs-bank16-fr2
x-ipfs-path: /ipfs/bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm/
x-ipfs-roots: bafybeibkgor6o4si6frcggxpnkpmanvk77xarnbvnzv5orsjlmefg3yqhm
x-ipfs-pop: ipfs-bank16-fr2
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, GET, POST, OPTIONS
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank2-fr2
x-proxy-cache: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
|
|