| |  172.66.47.112 | 403 Forbidden | 1.6 kB |
URL User Request GET HTTP/1.1IP172.66.47.112:80
File typeHTML document, ASCII text, with very long lines (394) Hashf18b70cb879ad0812abf9e757b875496 14b195f5a7e231e3edb7f270193422b0be0048f9 9bf9ffe6dac6b3742465b763e2aa7d3d259f5f62148317944d922b7e65fb5883
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: weacdax.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 27 Jan 2025 13:26:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wb35RswwRLfvnxg6ix8ox163fSVXXRAy0W083FFHtgTW6o1xCEV8UT8DFAGYIVw4XkxC8m7KIV7upL%2B2T86y4ONRRFT2FeXHc4QkD2xS35IsTCvLgDWhDTrpE9kj7O5RDZOeEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 908913500af2b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| | 172.66.47.112 | 403 Forbidden | 6.1 kB |
URL User Request GET HTTP/1.1IP172.66.47.112:80
File typeHTML document, ASCII text, with very long lines (24050) Hash7f7dc21225295d38d70895cc4b57a13f 0d779b8ad21764a3ccf18516d4875a22a5c7188a 0bd58b1305711f7a15462f8ce0a8e4f3e95e9f7cf4ef09d613f698b84d67da9f
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: weacdax.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Mon, 27 Jan 2025 13:26:36 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FCP2uelF7SqrsePXxynB9l0iey7hB%2BW1yN6ZQXf0ajEFBtSvNkk3OvMACfMWlcWLQ9kWJYJ58eKWP7xeYM%2BPPypkIfPYMeNnvjSWljGT4bn%2BluCe10sn6dI%2Fm5m%2Bu%2FfM4EtOzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9089134ef8dd5689-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| weacdax.pages.dev/favicon.ico | 172.66.47.112 | 403 Forbidden | 1.6 kB |
URL GET HTTP/1.1weacdax.pages.dev/favicon.ico IP172.66.47.112:80
Requested byhttp://weacdax.pages.dev/
File typeHTML document, ASCII text, with very long lines (394) Hash9a0e2f8df79db4cddf011bd6dd7ff2b2 bcf0f6bef8c78e78c8516b7fd9d20b8149c3cc3c bc9a248fd09c360305c0371fa03d1f4216b19babdcd7b9b52f07d5eaba752f12
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: weacdax.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://weacdax.pages.dev/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Mon, 27 Jan 2025 13:26:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gm3yc24Qlbk7HrkKL%2FgEvduYgI0hp1jK40iiyx1CovXe%2FvsHu%2BAh%2BqfoEuJs6sthxa3RuMPI8y2mRlSnHG7Y5K%2BYRnxfFF5Z6WOzEXQrJN53dcrJB4WZFy%2Bz5YHjER%2Fjv%2FcQOw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 90891351ac9fb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| weacdax.pages.dev/cdn-cgi/images/icon-exclamation.png?1376755637 | 172.66.47.112 | 200 OK | 452 B |
URL GET HTTP/1.1weacdax.pages.dev/cdn-cgi/images/icon-exclamation.png?1376755637 IP172.66.47.112:80
Requested byhttp://weacdax.pages.dev/
File typePNG image data, 54 x 54, 8-bit colormap, non-interlaced Hashc33de66281e933259772399d10a6afe8 b9f9d500f8814381451011d4dcf59cd2d90ad94f f1591a5221136c49438642155691ae6c68e25b7241f3d7ebe975b09a77662016
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/images/icon-exclamation.png?1376755637 HTTP/1.1
Host: weacdax.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://weacdax.pages.dev/cdn-cgi/styles/cf.errors.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Jan 2025 13:26:37 GMT
Content-Type: image/png
Content-Length: 452
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2025 17:41:16 GMT
ETag: "678fdc3c-1c4"
Server: cloudflare
CF-RAY: 90891351bcb5b4f3-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Mon, 27 Jan 2025 15:26:37 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| weacdax.pages.dev/cdn-cgi/styles/cf.errors.css | 172.66.47.112 | 200 OK | 24 kB |
URL GET HTTP/1.1weacdax.pages.dev/cdn-cgi/styles/cf.errors.css IP172.66.47.112:80
Requested byhttp://weacdax.pages.dev/
File typeASCII text, with very long lines (24050) Hash5e8c69a459a691b5d1b9be442332c87d f24dd1ad7c9080575d92a9a9a2c42620725ef836 84e3c77025ace5af143972b4a40fc834dcdfd4e449d4b36a57e62326f16b3091
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Crypto/Wallet | | PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/styles/cf.errors.css HTTP/1.1
Host: weacdax.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://weacdax.pages.dev/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 27 Jan 2025 13:26:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 21 Jan 2025 17:41:16 GMT
ETag: W/"678fdc3c-5df3"
Server: cloudflare
CF-RAY: 908913518c7cb4f3-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Mon, 27 Jan 2025 15:26:37 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
|
|