| res-va.web.app/ | 199.36.158.100 | | 1.0 kB |
IP199.36.158.100:0
File typeJavaScript source, ASCII text, with CRLF line terminators Hash09b39b28e397441b72e96713fa1811a8 18fe2b44a74749bb1403b813c28a2715211a7454 527ba5989e5adddf9f84fcb9ff5399670eac08b581f86a6d4c57a930c03ef9df
Analyzer | Verdict | Alert | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: res-va.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "8d34bd425ad15900ec9d7d736194f052d5ca00758ee30c22663bc3df2abf0b28-br"
last-modified: Wed, 06 Apr 2022 12:08:27 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 08 May 2024 23:16:54 GMT
x-served-by: cache-hel1410030-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715210214.885516,VS0,VE426
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1011
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery-timeago/1.6.7/jquery.timeago.min.js | 104.17.24.14 | | 1.3 kB |
URL cdnjs.cloudflare.com/ajax/libs/jquery-timeago/1.6.7/jquery.timeago.min.js IP104.17.24.14:0
File typeJavaScript source, ASCII text, with very long lines (3627), with no line terminators Hash1c19fb7bcf99bd4d868ad14e517075bd b5ab5c67a10efd89051b4f7ba04fa7802932ce10 d3ee4e7ef3b190b1eaa4b3cfc32f690e3ba0f0dddcc1aa9c9a579ac67479552f
GET /ajax/libs/jquery-timeago/1.6.7/jquery.timeago.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://res-va.web.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 23:16:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 1313
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-e2b"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 77170
expires: Mon, 28 Apr 2025 23:16:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BoWQgHx8dISS761q2jrDLd69LbtQ6C2oyRMDQ0kgBc7ho2SWNzvhl%2Ftoi2ooYfiKbqz3Qs3fH9%2FTOrKQF%2BAY10zWVv0%2F8SXGjZITkfiNAgm39u94XwcKCKS0e%2BF1J1c%2FcN%2FEhZn%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880d29018fb3b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.5.1.js | 151.101.130.137 | | 84 kB |
URL code.jquery.com/jquery-3.5.1.js IP151.101.130.137:0
File typeJavaScript source, ASCII text Hash23c7c5d2d1317508e807a6c7f777d6ed ad16c4a132ad2a03b4951185fed46d55397b5e88 416a3b2c3bf16d64f6b5b6d0f7b079df2267614dd6847fc2f3271b4409233c37
GET /jquery-3.5.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4638e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 May 2024 23:16:54 GMT
age: 5167057
x-served-by: cache-lga21971-LGA, cache-hel1410030-HEL
x-cache: HIT, HIT
x-cache-hits: 22269, 50533
x-timer: S1715210215.667011,VS0,VE0
vary: Accept-Encoding
content-length: 84374
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/uuid@latest/dist/umd/uuidv4.min.js | 151.101.65.229 | | 687 B |
URL cdn.jsdelivr.net/npm/uuid@latest/dist/umd/uuidv4.min.js IP151.101.65.229:0
File typeJavaScript source, ASCII text, with very long lines (1366), with no line terminators Hash446d2277e6a146a9fbca81cd4ce3f3b8 59d9ff543ea6044e84be895d760541ea0e04cf98 4bbb806e743e21bc9f97b62fc0564e0889b7f31ee9d48c3f2b85d4e00fe629cc
GET /npm/uuid@latest/dist/umd/uuidv4.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 8.3.2
x-jsd-version-type: version
etag: W/"556-Wdn/VD6mBE6EvolddgVB6g4Ez5g"
content-encoding: br
accept-ranges: bytes
date: Wed, 08 May 2024 23:16:54 GMT
age: 19869
x-served-by: cache-fra-etou8220065-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 687
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/firebasejs/4.7.0/firebase.js | 142.250.74.35 | | 116 kB |
URL www.gstatic.com/firebasejs/4.7.0/firebase.js IP142.250.74.35:0
File typeJavaScript source, ASCII text, with very long lines (37883) Size116 kB (115677 bytes) Hashc721681493be658e49061ae419096357 3e465a4c6e143b7c21b883e78c17955cb02e369e 423767983a6400d05704c2dc21b33d91e6526705a27c84adc142f30f44f02f0f
GET /firebasejs/4.7.0/firebase.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 115677
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 13:01:16 GMT
expires: Sat, 03 May 2025 13:01:16 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2017 21:30:06 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 468938
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| res-va.web.app/favicon.ico | 199.36.158.100 | | 1.0 kB |
URL res-va.web.app/favicon.ico IP199.36.158.100:0
File typeJavaScript source, ASCII text, with CRLF line terminators Hash09b39b28e397441b72e96713fa1811a8 18fe2b44a74749bb1403b813c28a2715211a7454 527ba5989e5adddf9f84fcb9ff5399670eac08b581f86a6d4c57a930c03ef9df
Analyzer | Verdict | Alert | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: res-va.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 1011
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "8d34bd425ad15900ec9d7d736194f052d5ca00758ee30c22663bc3df2abf0b28-br"
last-modified: Wed, 06 Apr 2022 12:08:27 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Wed, 08 May 2024 23:16:55 GMT
x-served-by: cache-hel1410034-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715210215.020736,VS0,VE107
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| o.pki.goog/s/wr4/zUg | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash64148794b199b5a87ae5da4197f82eda 265e3b7c990ed648c13b8999cf24dc29e0d44a64 a59346111bfa173c4afa12547b2aabf323bb319bd548df4732cf47162161377f
POST /s/wr4/zUg HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 May 2024 23:16:55 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js | 172.67.75.33 | | 29 kB |
URL cdn.datatables.net/1.11.3/js/jquery.dataTables.min.js IP172.67.75.33:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (538) Hashbdeb087dcd7bbf01ddd89d6a86d461a0 11770eeece87e90c9447857487dde3d93d62855c 80e27f4f754c43406bc33ed562b2e854043e344d1ae6f1e88f5bd72351d42336
GET /1.11.3/js/jquery.dataTables.min.js HTTP/1.1
Host: cdn.datatables.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 23:16:54 GMT
content-type: text/javascript; charset=utf-8
last-modified: Fri, 19 Apr 2024 08:45:39 GMT
vary: Accept-Encoding
etag: W/"66222f33-15759"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-headers: origin, x-requested-with, content-type
access-control-allow-methods: OPTIONS, GET
x-frame-options: SAMEORIGIN
content-encoding: br
cf-cache-status: HIT
age: 702262
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LPe1za9LLW7lOzYtP267mtjE%2F3kS6VcEXwhcLEHR3Gdh0UJkdWYXnp1wJymoiOotB1VdJ2XZwQ7Y60iRDyB0TQM4UzT6GAy0lKf2cUomWtvtzFJcWdQ00OtwRPExuNS9cHAxlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d29018b7a5685-OSL
X-Firefox-Spdy: h2
|
|
| s-usc1f-nss-2569.firebaseio.com/.ws?v=5&ls=jZ4H46vPtvwBNLpHVDBd2DmZ0zOTip08&ns=project-4c151-default-rtdb | 34.120.160.131 | | 0 B |
URL s-usc1f-nss-2569.firebaseio.com/.ws?v=5&ls=jZ4H46vPtvwBNLpHVDBd2DmZ0zOTip08&ns=project-4c151-default-rtdb IP34.120.160.131:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.ws?v=5&ls=jZ4H46vPtvwBNLpHVDBd2DmZ0zOTip08&ns=project-4c151-default-rtdb HTTP/1.1
Host: s-usc1f-nss-2569.firebaseio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://res-va.web.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6kTftEowbGZgtoRfwNoBog==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 08 May 2024 23:16:56 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xrSt+HknNlb1nD3wr8cyZcgb62c=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload
|
|
| lisap.com.au/favicon.ico | 104.21.57.49 | 404 Not Found | 9.4 kB |
IP104.21.57.49:443
Requested byhttps://lisap.com.au/dev/newnsecu/ CertificateIssuerGoogle Trust Services LLC Subjectlisap.com.au Fingerprint9A:A3:EF:0E:98:95:23:6B:E6:EB:90:82:89:34:F2:6E:78:F2:A6:27 ValidityThu, 25 Apr 2024 15:28:11 GMT - Wed, 24 Jul 2024 15:28:10 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /favicon.ico HTTP/1.1
Host: lisap.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lisap.com.au/dev/newnsecu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 08 May 2024 23:16:57 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=28800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WIithGWC6z9j3kwsNGWdG9AWO0RKXEWR7M9L%2BZo76z13zWv5%2FfHDm4rdb%2FFM9OtTyRLbmfcNWz6ELPTxxmbw6o9gXK6gwsjdGYVMTR4ZqY3Z4%2B4EKKUBZx3y4WSsijg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880d290dc9ad0afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lisap.com.au/dev/newnsecu/ | 104.21.57.49 | 404 Not Found | 315 B |
URL User Request GET HTTP/2lisap.com.au/dev/newnsecu/ IP104.21.57.49:443
CertificateIssuerGoogle Trust Services LLC Subjectlisap.com.au Fingerprint9A:A3:EF:0E:98:95:23:6B:E6:EB:90:82:89:34:F2:6E:78:F2:A6:27 ValidityThu, 25 Apr 2024 15:28:11 GMT - Wed, 24 Jul 2024 15:28:10 GMT
File typeHTML document, ASCII text, with very long lines (326), with no line terminators Hash97ef40509b73c101d6815511c3adf98d a4242322497ea630ea72e26ba297a95a2bbe5ccd 322c1f60d9d454c801f7cff3173ef16b61cf9963a64e09a4d9e21d36218b56be
GET /dev/newnsecu/ HTTP/1.1
Host: lisap.com.au
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Wed, 08 May 2024 23:16:56 GMT
content-type: text/html; charset=iso-8859-1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PkaOtHOB4hDsqHhbUowRxplKvxKFSoje%2F29qE4n5N%2FyRJtAfOz1oir62vsKIcnxXa1izoqtc%2FfrcaOW65J2IW7P9S7FgMsNQp6Nl%2FB0%2Fb%2FlG%2BrVRE4ZU0hhyefKSOlE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880d29097f6eb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|