| goldauth.ddns.net/card.php | 159.223.49.171 | | 2.4 kB |
URL goldauth.ddns.net/card.php IP159.223.49.171:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document, ASCII text, with CRLF line terminators Hash021a76a23528d941cdd993a243a1b59f 47272958e9d05dfab9113610d56969361374129e 3c5101820edbc13bc5805997e9a1ba01a8fdf4a1cdf0e26d9e3cd10a1c1e7e4f
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Generic/Spear Phishing |
GET /card.php HTTP/1.1
Host: goldauth.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 13:49:11 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css | 104.17.24.14 | | 19 kB |
URL cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/css/all.min.css IP104.17.24.14:0
File typeASCII text, with very long lines (52276) Hash9402848c3d4bbc710c764326f8b887c9 b6e555166eb1381392e00adcde9bf8863f16ff01 c22cfb6520a7fdbb738632834019acf47c78b1279462c0eb4cb83bae83ecb5a7
GET /ajax/libs/font-awesome/6.5.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://goldauth.ddns.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 13:49:11 GMT
content-type: text/css; charset=utf-8
content-length: 18861
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65692999-49ad"
last-modified: Fri, 01 Dec 2023 00:32:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 581830
expires: Sun, 27 Apr 2025 13:49:11 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wehXQkKtDB1vHQ7ca1A8IyRuqUH144rVUk2QcSGKL3VbyrmC7QKcQmvv9%2B%2BBx%2Bq8MhRL7x21G46fXIzQB3nBxxFW%2FS%2BJp1LXs8FiUo3Fkn04QAW4%2FNxiJcE9r39KnZja6PHAaZmT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8801ac057d0c0afa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| goldauth.ddns.net/css/style.css | 159.223.49.171 | | 3.2 kB |
URL goldauth.ddns.net/css/style.css IP159.223.49.171:0 ASN#14061 DIGITALOCEAN-ASN
File typeASCII text, with CRLF line terminators Hasha0e2889f754afbdd3438d223e212f6f0 98b2744f2fa5cd65007886a4eefda84f37d59235 5829f52336c218a825a32f95efa49261ed8364a19ba843c6737899ef018f0f09
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Generic/Spear Phishing |
GET /css/style.css HTTP/1.1
Host: goldauth.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://goldauth.ddns.net/card.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 13:49:12 GMT
Server: Apache
Last-Modified: Sat, 20 Apr 2024 17:10:18 GMT
Accept-Ranges: bytes
Content-Length: 3198
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| goldauth.ddns.net/js/jquery.js | 159.223.49.171 | | 90 kB |
URL goldauth.ddns.net/js/jquery.js IP159.223.49.171:0 ASN#14061 DIGITALOCEAN-ASN
File typeJavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators Hash0732e3eabbf8aa7ce7f69eedbd07dfdd 4cd5ddc413b3024d7b56331c0d0d0b2bd933f27f ce9d07500ad91ec2b524c270764ec4c9a33e78320d8d374ec400ede488f6251b
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Generic/Spear Phishing |
GET /js/jquery.js HTTP/1.1
Host: goldauth.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://goldauth.ddns.net/card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 13:49:12 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 03:55:20 GMT
Accept-Ranges: bytes
Content-Length: 89503
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| goldauth.ddns.net/js/mask.js | 159.223.49.171 | | 23 kB |
URL goldauth.ddns.net/js/mask.js IP159.223.49.171:0 ASN#14061 DIGITALOCEAN-ASN
File typeJavaScript source, ASCII text Hasha1fb4aaee1dcbfd24e6ec0fd67ab9645 77558a30ff578aeb671e2bdb574df166751aa487 c84e4b2e9e47490ff3fa125e0aa933f617633649358da8861b4b430ab6ae9a70
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Generic/Spear Phishing |
GET /js/mask.js HTTP/1.1
Host: goldauth.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://goldauth.ddns.net/card.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 13:49:13 GMT
Server: Apache
Last-Modified: Wed, 27 Jul 2022 03:54:06 GMT
Accept-Ranges: bytes
Content-Length: 23177
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/webfonts/fa-solid-900.woff2 | 104.17.24.14 | 200 OK | 156 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.5.1/webfonts/fa-solid-900.woff2 IP104.17.24.14:443
Requested byhttps://goldauth.ddns.net/card.php CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 156496, version 773.768 Size156 kB (156496 bytes) Hash6c4eee562650e53cee32496bdfbe534b 1aae708e3b94ee981b452a918d28ed037fbb5e18 9fc85f3a4544ab0d570c7f8f9bbb88db8d92c359b2707580ea8b07c75673eae2
GET /ajax/libs/font-awesome/6.5.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://goldauth.ddns.net
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 13:49:18 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 156496
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "65692999-26350"
last-modified: Fri, 01 Dec 2023 00:32:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 509240
expires: Sun, 27 Apr 2025 13:49:18 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BT1XagmMRoYUxikePJvlF3KuRWV56wrIaS2X2Wo%2F6lbgX4ajWP9ICETxfJNa4Y2sdVcUgDnhrtzXf%2BrgA07a9EMf0LJFhLRBWA4ICqdv%2BAa8bfsK88Re7XfznWzO118GWk9v5qQJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8801ac2e0ece0afa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| goldauth.ddns.net/favicon.ico | 159.223.49.171 | | 315 B |
URL goldauth.ddns.net/favicon.ico IP159.223.49.171:0 ASN#14061 DIGITALOCEAN-ASN
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | OpenPhish | phishing | Generic/Spear Phishing |
GET /favicon.ico HTTP/1.1
Host: goldauth.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://goldauth.ddns.net/card.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Tue, 07 May 2024 13:49:20 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|