Report - send.cm/f8i1rqn7cjc2

Report Overview

Visited public
2023-11-25 14:46:34
Tags
URL
send.cm/f8i1rqn7cjc2
Finishing URL
send.cm/f8i1rqn7cjc2
IP / ASN
172.67.70.55
#13335 CLOUDFLARENET
Title
f8i1rqn7cjc2

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
send.cm	338619	2019-03-18	2019-08-16 11:13:47	2023-11-25 12:30:51	14 kB	1.2 MB	104.26.0.171
professionalswebcheck.com	unknown	2022-04-01	2022-04-02 00:47:29	2023-11-24 05:14:20	430 B	414 B	3.126.241.83
evidenceguidance.com	unknown	2023-09-27	2023-09-27 03:53:01	2023-11-18 13:35:29	466 B	514 B	173.233.137.36
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-11-23 19:58:16	810 B	173 kB	104.21.234.33
dismantlepenantiterrorist.com	17847	2021-11-01	2021-11-01 22:12:12	2023-11-24 06:43:46	1.5 kB	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-11-25	medium	dismantlepenantiterrorist.com	Sinkholed
2023-11-25	medium	dismantlepenantiterrorist.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (15)

	URL	From	Size	First Seen	Last Seen
	send.cm/lib/feather-icons/feather.min.js	ScriptElement	66 kB	2023-03-07	2025-05-10
Pretty URL send.cm/lib/feather-icons/feather.min.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04 Last Seen2025-05-10 00:24 Times Seen151 Hash 44dee7fbafd7dc2404fa62713a8398c2 34f8691360e3548d1c9c18534cb0ec38b5c63154 a90582369e8cfed7b41dca4758e2fbe09fccf55b89f0cd0b7d46efd0745db831 Loading...

	send.cm/assets/js/dashforge.js	ScriptElement	2.3 kB	2023-03-07	2024-10-04
Pretty URL send.cm/assets/js/dashforge.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:15 Last Seen2024-10-04 10:18 Times Seen131 Hash 6ede26a7d7238a4ed67bcbdb67b30bb6 581c80a8cfec9844478e3b99b7774221c78d2be9 ccc7d942a1cfa3c238044a4885889799d7b215b5b29b2c48f5db28bececc2040 Loading...

	unknown	ScriptElement	70 kB	2023-11-16	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-16 06:21 Last Seen2024-08-20 19:20 Times Seen15 Hash b372fe657729ece620fda3cc9324c0df 0aefd07be01c564214b0a4b690d6863e91887b4a 131d4a3b42cd3bcc8aab9c59e93c2c20a2311172ee630f972ee7b4a87813c981 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 104.21.234.33 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	unknown	ScriptElement	247 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 17:58 Last Seen2024-08-20 17:58 Times Seen1 Hash 8e79e5191408948d5409bbf9990725a0 38e0abcb89bcdddc711ab1393b1c5a1a3d5eb851 3fb96b72e433b0cd9c2b73695e890913df7dc6c073cdd5bc0efb3e736f0f308f Loading...

	send.cm/js/share.js	ScriptElement	329 B	2023-03-07	2025-01-01
Pretty URL send.cm/js/share.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31 Last Seen2025-01-01 04:31 Times Seen386 Hash e38522ef9b2fe6940894f9f35a29f407 d5227e21fbae55e23bd87bf084a4049e797d0775 59b3cd5e8d2207976f8f687c84eba22d83cf960318fa8f7a6f31022ef4e69208 Loading...

	send.cm/static/js/clipboard.min.js	ScriptElement	9.0 kB	2023-03-07	2025-05-09
Pretty URL send.cm/static/js/clipboard.min.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41 Last Seen2025-05-09 21:10 Times Seen795 Hash ad98572d415d2f2452845a6068a913c0 6674f81dd01c76be986cf0a8172d1073e56d7ef4 baff7541be9c20f7f977f6993ce39cfa937a7bde69db6e7beebb8f68372682a1 Loading...

	send.cm/static/js/jquery.min.js	ScriptElement	93 kB	2023-03-07	2025-05-10
Pretty URL send.cm/static/js/jquery.min.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27 Last Seen2025-05-10 01:53 Times Seen879 Hash bdce12c949e78d570c8d44e9c2b23508 9afdc4fec954646bd6270caf82f107fdef605bc5 c73b004ebf31b395cf237c3d2b13c1e576f385e04660ceb5f7be163ff3c201dc Loading...

	send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js	ScriptElement	18 kB	2023-03-07	2025-05-09
Pretty URL send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03 Last Seen2025-05-09 21:58 Times Seen1997 Hash 4a10bcfa0a9c9fa9d503b5a498cac31e c4f6c403e99fb37cb496c3844b332823db7c5837 a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634 Loading...

	send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js	ScriptElement	12 kB	2023-03-07	2025-05-10
Pretty URL send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-10 09:34 Times Seen31250 Hash 88a769d2fe35899fd45a332a0a032cc0 514c6c1d8475d17e412849a4c90159517d0fa10a ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142 Loading...

	send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.4 kB	2023-11-25	2023-11-25
Pretty URL send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-25 15:46 Last Seen2023-11-25 15:46 Times Seen1 Hash 350dfc9f234070296a443324d235a6b4 1fc2df6ac41f93960ae0c6e2b09e0a7c016e3e70 1a2fd7909d93ea6cdd3e4124edb96dd561a7df60cf73a63a182cb7614bd4b650 Loading...

	send.cm/f8i1rqn7cjc2	ScriptElement	1.1 kB	2024-08-20	2024-08-20
Pretty URL send.cm/f8i1rqn7cjc2 IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 17:58 Last Seen2024-08-20 17:58 Times Seen1 Hash dadfb4fa878e2804c96d91d5713a408f df7b9fc9eb7d7a51cf0d1a2350ab9290cdd0247a 3baa1419182dfe34f6ff58538cf53f6f858e5812fcdbf7a92c7d4bb33be566f3 Loading...

	send.cm/lib/bootstrap/js/bootstrap.bundle.min.js	ScriptElement	79 kB	2023-03-07	2025-05-08
Pretty URL send.cm/lib/bootstrap/js/bootstrap.bundle.min.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 06:28 Times Seen5191 Hash a454220fc07088bf1fdd19313b6bfd50 265a733cb7fbc481fd2510a659a85ad55c93c895 7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c Loading...

	unknown	ScriptElement	258 B	2023-03-09	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 14:17 Last Seen2024-08-21 09:31 Times Seen59 Hash 142706d0b3bdf389d89ca29074552cf4 30eb7f76871c57befd3689498c3786aa35bc0729 8dfddd06ce7e1a1eb0cc9c570c85b6f73a734e01e25e756d4625e69fcf98dd02 Loading...

	send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.3 kB	2023-11-25	2023-11-25
Pretty URL send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.0.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-25 15:46 Last Seen2023-11-25 16:31 Times Seen2 Hash 035bc079843d9f491814e69e451217d2 d5fcccdf9f6ae1330f66537d7d8d2a0cf1ce279a 72b4332bafc953cefa5d6614ae45b103bd7222369ff7bf59d55af5ab89871dd4 Loading...

HTTP Transactions (30)

URL IP Response Size

send.cm/qr/6A451

104.26.0.171

200 OK

338 B

URL GET HTTP/3
send.cm/qr/6A451
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
PNG image data, 135 x 135, 1-bit grayscale, non-interlaced\012- data
Size
338 B (338 bytes)
Hash
8da8b6960b85f53a38c570fe188e21ae
0485596746d9723099591e59bb76dfca67e32f9b
f2d68cb42730e443a8419b7f9b65d86fc5252882ed0470d6e315d51a85c5beab

HTTP Headers

GET /qr/6A451 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: image/png
content-length: 338
content-transfer-encoding: binary
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=akq%2FVQQ%2FUqM0PdMO250v%2Fbp81jSrvMondYkJhcE7GD5KomewA5aN0FJYOUbvntqxXBIRN92ZrSEWzXLtyfsnYnBi9HWtpOXVc51U0jCfy9OBqIRbWMDM6ns%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae206d5a569a-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff

104.26.0.171

200 OK

82 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
Web Open Font Format, TrueType, length 82076, version 1.1\012- data
Size
82 kB (82076 bytes)
Hash
dac78b0f1626eb1aa95d41b488e699c1
a377d0df34945fc45bdc030dc63139bd9cf28a2d
ee6d9467e82f91146b9f71f3ac572d66f4aeed0f261b30ef4765550edc11119d

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-SemiBold.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: font/woff
content-length: 82076
last-modified: Thu, 17 Sep 2020 12:29:20 GMT
vary: Accept-Encoding
etag: "5f6356a0-1409c"
expires: Sat, 11 Nov 2023 16:42:52 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 206080
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HbOC8ZRG42o4T5SF1iC8M3ojHut%2FYJHNOl%2BlTb17ZGT01WxFozY5vI5MeBIRZIj3vwrnfDiXBvS0xjzo8igQ48XRQ2Mtjmeq1bvrrhikkduArOGavfBngNY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae218f50569a-OSL
alt-svc: h3=":443"; ma=86400

send.cm/lib/feather-icons/feather.min.js

104.26.0.171

200 OK

92 kB

URL GET HTTP/3
send.cm/lib/feather-icons/feather.min.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (62372)
Size
92 kB (91605 bytes)
Hash
44dee7fbafd7dc2404fa62713a8398c2
34f8691360e3548d1c9c18534cb0ec38b5c63154
a90582369e8cfed7b41dca4758e2fbe09fccf55b89f0cd0b7d46efd0745db831

HTTP Headers

GET /lib/feather-icons/feather.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=utf8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"5f50abca-101aa"
expires: Sun, 13 Aug 2023 21:42:42 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 285864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ja4GrLz%2B5e9VafGZMy4igbMHRloCZdN9UQGRxjzrB4ICr6QhjguwHJ3kQKCf8YWU%2BL4cqkpmmtomn7KOmi8p2sdGUbjhsc6325vq%2BAgGlfp%2F6jHM0N0gCV0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae208d84569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Regular.woff

104.26.0.171

200 OK

77 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Regular.woff
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
Web Open Font Format, TrueType, length 77420, version 1.1\012- data
Size
77 kB (77420 bytes)
Hash
2afba28a9ce96315436db858db163c47
550d4374a60527b4f68d4700019aaac11a9140a2
b51d665d9cfebb31a2b61491bf408a172a5791166a0eb99a57ae4a7acbcba0d4

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Regular.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: font/woff
content-length: 77420
last-modified: Thu, 17 Sep 2020 12:29:21 GMT
vary: Accept-Encoding
etag: "5f6356a1-12e6c"
expires: Sat, 11 Nov 2023 16:43:34 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 43751
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QE5X8Df9oeE5MJHAzrfK9uXGnX9VE4DM2bHObLHLEH1ZS2kydXnwtPO89t%2Flzo6iB2BCFdTxzgtaJ4Zf5v4BUYfcnUjfnv7FOx7ny2U7E4vGCobAfUkoYT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae21bfbf569a-OSL
alt-svc: h3=":443"; ma=86400

send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff

104.26.0.171

200 OK

82 kB

URL GET HTTP/3
send.cm/static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
Web Open Font Format, TrueType, length 81760, version 1.1\012- data
Size
82 kB (81760 bytes)
Hash
220843e2f1927e726e78ca63f426ce50
d86801f8452cda25025530f406773162decd1458
ae9310191397b69cd6dd015ba0c6f9d674f493d35384f29c9c7d23e3c7df0d24

HTTP Headers

GET /static/fonts/ibm-plex-sans/complete/woff/IBMPlexSans-Medium.woff HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/static/css/dl.min.css
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: font/woff
content-length: 81760
last-modified: Thu, 17 Sep 2020 12:29:20 GMT
vary: Accept-Encoding
etag: "5f6356a0-13f60"
expires: Sat, 11 Nov 2023 16:45:04 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 295445
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QgoLPEGAT62rBPbGL12PBm1x9p95%2FiPeFU0tnJ1evTlVoCFg1FEC8IjgTswdDGoGR59pQLElWHX9P1%2BGjHJy4b11jw9Ue%2BGfX7TOk4G%2BijgqT%2BuuweGQlKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae21f823569a-OSL
alt-svc: h3=":443"; ma=86400

send.cm/favicon.ico

104.26.0.171

200 OK

92 kB

URL GET HTTP/3
send.cm/favicon.ico
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 64x64, 32 bits/pixel\012- data
Size
92 kB (92163 bytes)
Hash
22dab3b36a487940c539e179b7edd7ea
ad1d193daab9eb56c4d27b10e0f0638307c262cc
b64c225956915ee8b619ea190276ebe838880d3a16793a5614487e8be5b5d3bf

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 03 Sep 2020 08:39:39 GMT
etag: W/"fcae-5ae64b15a48c0"
expires: Sat, 25 Nov 2023 15:00:42 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OyWMtU8oLAiCdCfbff8hnz8gHH16COnI2H3YjY%2BavGE%2BVxpDdVjaxLUk4LS3XGOWeebnlxVsbd%2BXsC9PjdeLu8a%2BAwz09TDvsnivaseQ3BY9VCZwkPPgBs4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82baae22896a569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/assets/js/dashforge.js

104.26.0.171

200 OK

101 kB

URL GET HTTP/3
send.cm/assets/js/dashforge.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (366)
Size
101 kB (100926 bytes)
Hash
6ede26a7d7238a4ed67bcbdb67b30bb6
581c80a8cfec9844478e3b99b7774221c78d2be9
ccc7d942a1cfa3c238044a4885889799d7b215b5b29b2c48f5db28bececc2040

HTTP Headers

GET /assets/js/dashforge.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=utf8
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: max-age=259200
cf-bgj: minify
cf-polished: origSize=3370
etag: W/"d2a-5d2f044f765a3-gzip"
expires: Sat, 25 Nov 2023 14:37:12 GMT
last-modified: Sun, 12 Dec 2021 10:17:54 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b5C2xYmw1%2BwEeyWWxwvXGbGL3J3uha5OuMHgjyoccLi32Om7KCoZvQVtJpNFcR62TSlZ7iYlhC2X3fRQBUZnHsMVczbOvigj0FkTuxyIdd0zpPbWgnzwhQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae208d87569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/js/share.js

104.26.0.171

200 OK

82 kB

URL GET HTTP/3
send.cm/js/share.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text
Size
82 kB (81879 bytes)
Hash
e38522ef9b2fe6940894f9f35a29f407
d5227e21fbae55e23bd87bf084a4049e797d0775
59b3cd5e8d2207976f8f687c84eba22d83cf960318fa8f7a6f31022ef4e69208

HTTP Headers

GET /js/share.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=utf8
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
cache-control: max-age=259200
cf-bgj: minify
cf-polished: origSize=354
etag: W/"162-5ae64b15a48c0-gzip"
expires: Sat, 25 Nov 2023 14:35:34 GMT
last-modified: Thu, 03 Sep 2020 08:39:39 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nWOHEBxF26A0CX6k20ahxWqpIts5wJgzrWn0MuUm0f9dzRA3SzNSzP8yONfJdQz16v9y0iotpdCC3xnHUyPZ88KCii3G0VwDUfpDcGbaFH5fTVZC%2BAed26M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae2228b5569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

professionalswebcheck.com/stats

3.126.241.83

200 OK

40 B

URL GET HTTP/2
professionalswebcheck.com/stats
IP
3.126.241.83:443
ASN
#16509 AMAZON-02

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
8b7dc6d1e4a888537cdb048517d5b262
2709d1915e1e2dc65ce325a530d9899fb39f41b7
0f9c86702ea6d24135919bc2cf92ef589b32de67c926ed2af31f2114c08f2920

HTTP Headers

GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 25 Nov 2023 14:46:17 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://send.cm
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=4e30fd29-7350-4e8d-b658-56565e156a0e:3:1; expires=Tue, 22 Nov 2033 14:46:17 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

evidenceguidance.com/9c/ed/24/9ced2453f41586bc39632e754938332a.json

173.233.137.36

403 Forbidden

0 B

URL GET HTTP/1.1
evidenceguidance.com/9c/ed/24/9ced2453f41586bc39632e754938332a.json
IP
173.233.137.36:443
ASN
#7979 SERVERS-COM

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerLet's Encrypt
Subjectevidenceguidance.com
Fingerprint38:01:65:F0:F8:72:F1:97:B1:4C:8B:99:F6:DD:5C:EE:DF:2F:EE:D4
ValidityWed, 27 Sep 2023 00:51:09 GMT - Tue, 26 Dec 2023 00:51:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /9c/ed/24/9ced2453f41586bc39632e754938332a.json HTTP/1.1
Host: evidenceguidance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Server: nginx/1.21.6
Date: Sat, 25 Nov 2023 14:46:17 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA

send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js

104.26.0.171

200 OK

12 kB

URL GET HTTP/3
send.cm/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (12331)
Size
12 kB (12332 bytes)
Hash
88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142

HTTP Headers

GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript
last-modified: Thu, 16 Nov 2023 21:55:48 GMT
etag: W/"65568fe4-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pz%2B%2FH%2BmK8Iks69K7Co4%2FZKTUFnBxXQJuQ5r7Elw546ygdAbJb3YTdo6u1S7lZZWtD1h%2FALEafIJlyLbJCIqrngszusmnVyW%2By6a7CeidGeQ1sQJMi4yH2aE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82baae209da3569a-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 27 Nov 2023 14:46:16 GMT
cache-control: max-age=172800, public
content-encoding: gzip

send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js

104.26.0.171

200 OK

7.4 kB

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (7385), with no line terminators
Size
7.4 kB (7385 bytes)
Hash
350dfc9f234070296a443324d235a6b4
1fc2df6ac41f93960ae0c6e2b09e0a7c016e3e70
1a2fd7909d93ea6cdd3e4124edb96dd561a7df60cf73a63a182cb7614bd4b650

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
vary: accept-encoding
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1D38dnjnTbxvSBaQjhYSBSnROf90uCuTrM1cfbxVRkEN%2Bu6YKEqp0nCpG%2F3FUDkK5Kz3ymz1cohsXTQTZfkOr4Yg4XnbtH%2B2pmloLTUqPcJ4CeIlrAHmJtM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae22b9b1569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

friendshipmale.com/sfp.js

104.21.234.33

200 OK

86 kB

URL GET HTTP/3
friendshipmale.com/sfp.js
IP
104.21.234.33:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type

Size
86 kB (85468 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:22 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 76ce935d0ba486a0afd44bbb135086c7
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 25 Nov 2023 14:46:21 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ipw10MNz4y0i5s%2FT7jXD8TfBsjrUx5p%2F5id7gSZ7aGxsin7oyOQMJ3BGvT1dx%2BowfW1jz3XrxG3Heh6KlAd9fUsv3yHmZUhGB4XQEua4srxeYgRPmkUJaFoUW6dppQpCDS3cuYk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82baae43fb0356c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/css/auth.min.css

104.26.0.171

200 OK

789 B

URL GET HTTP/3
send.cm/static/css/auth.min.css
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (789), with no line terminators
Size
789 B (789 bytes)
Hash
f095cdbc5703353ae870aa6fd1504bb8
395b5898fde4cb72dc30e7752bde4e68317fb299
d7091a28d7048b34315acc78d543eb1181751aec851df73f83da7d3b07081116

HTTP Headers

GET /static/css/auth.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: text/css
last-modified: Tue, 23 Mar 2021 17:04:40 GMT
etag: W/"315-5be372d95fefb-gzip"
vary: Accept-Encoding
expires: Sat, 25 Nov 2023 15:03:41 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dpSsGiCRievc9OOvL4pbTb8EAxowtrORu2Gw1JtEA8F5FEiKFK7viveouIaYw8OhD%2Bh06CQ4E4BOqakGlyjgXKLs0R63LlmbUweAPRq3kNoXouOaQlGw%2Fmk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae206d57569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/js/clipboard.min.js

104.26.0.171

200 OK

9.0 kB

URL GET HTTP/3
send.cm/static/js/clipboard.min.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
Unicode text, UTF-8 text, with very long lines (9258), with no line terminators
Size
9.0 kB (9034 bytes)
Hash
db9c29b300b6e957b611f437fe482b0c
a7ca1b86b66aa417e5ded8bddf571bd28775d7d1
02b7776bbff33fa250331338c8a085b5447d8575283a7943519c56f72215b2b2

HTTP Headers

GET /static/js/clipboard.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=utf8
last-modified: Wed, 14 Dec 2022 18:00:20 GMT
etag: W/"234a-5efcd82834534-gzip"
vary: Accept-Encoding
expires: Sat, 25 Nov 2023 14:54:38 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hCt4m7kIOfQZ8mtITNTdI1ImDGytf2aiID7DF03Dla3x0lDuuuYIP8ShiDh7s3wWn7W2ZIuPviF7kzichaK3O8VXhm24QMr%2F08ecX4wn9rk5grkxiF78DbU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae2228a7569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.26.0.171

302 Found

7.4 kB

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type

Size
7.4 kB (7385 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sat, 25 Nov 2023 14:46:16 GMT
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js
vary: accept-encoding
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xFSEEUMFwR9ZQTGLl9kRD8slt8TGA41e%2F54T2ozIsLatoKG3fogqLsP2ZM1VGUqp7IfMjjBa6fSY%2FKa5e42zL5CwvY4lYtUqtCFqH0y4ZYUmq9L26LfldWY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae2248ef569a-OSL
alt-svc: h3=":443"; ma=86400

dismantlepenantiterrorist.com/pxf.gif?uuid=4e30fd29-7350-4e8d-b658-56565e156a0e&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14

0.0.0.0

0 B

URL GET
dismantlepenantiterrorist.com/pxf.gif?uuid=4e30fd29-7350-4e8d-b658-56565e156a0e&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14
IP
0.0.0.0:0
ASN
#0

Requested by
https://send.cm/f8i1rqn7cjc2

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=4e30fd29-7350-4e8d-b658-56565e156a0e&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/82baae1d3cdb56bd

104.26.0.171

200 OK

0 B

URL POST HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/82baae1d3cdb56bd
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/82baae1d3cdb56bd HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12180
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy; cf_clearance=MOCGiJSAmvW4cZM4VFSkOVCmepvbhclEs3bx4VH3SZA-1700923576-0-1-730ca2d2.73a07051.5b213570-0.2.1700923576; dom3ic8zudi28v8lr6fgphwffqoz0j6c=4e30fd29-7350-4e8d-b658-56565e156a0e%3A3%3A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:17 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=6umayAlp7Np.uON7UEMRLiyGY6vIOOGYcizySYv0Us0-1700923577-0-1-730ca2d2.73a07051.5b213570-0.2.1700923577; path=/; expires=Sun, 24-Nov-24 14:46:17 GMT; domain=.send.cm; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xp7TSzdGFuLzBuNw3wshBS%2BiI9Nfxewan2PogfiZqLXheMx7I0%2FbMI5fmHq9cLA6gVsFr1uFa6XD22l11LL7X7Yk%2FB4oIilm58lfT06MvmfVRULqi8nCTiM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae25eef6569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.26.0.171

302 Found

7.3 kB

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type

Size
7.3 kB (7276 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy; cf_clearance=MOCGiJSAmvW4cZM4VFSkOVCmepvbhclEs3bx4VH3SZA-1700923576-0-1-730ca2d2.73a07051.5b213570-0.2.1700923576
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sat, 25 Nov 2023 14:46:17 GMT
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bwl2sVucdG8rQgAGEs2XD%2BddqQ0NDkjz4Te2reF3lIt5LyB7az6CZZJj9eOpd1k%2FS3IBD%2BRhBq86fW3eQ7TgVDzHXpC2coRZ6keLuAkxyKytUXV1nVwRMUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae24acf8569a-OSL
alt-svc: h3=":443"; ma=86400

send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css

104.26.0.171

200 OK

6.8 kB

URL GET HTTP/3
send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (7103), with no line terminators
Size
6.8 kB (6752 bytes)
Hash
3a4e6fe620850879f073fbeb7d915969
1ea842aabcf1d80ffd383b84c8da0650baefc68f
5a072970160446a139243170334741139bd414e1285dfd785bd552db7c263f80

HTTP Headers

GET /lib/@fortawesome/fontawesome-free/css/fa.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 10:52:41 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"61f7bf79-1a60"
expires: Sun, 13 Aug 2023 21:42:22 GMT
cache-control: public, max-age=2592000, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2459011
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s7RF%2FVaaXa%2FnW481QLmzoKMegWi0J8bYszWrEpqVzDTTYJ%2Fux6gywAFucgpcedCg7qS4KFnP5lnTbapc1uSnndA%2FUdiNZQAplgPRuUwyoCL7wVsW%2BxuZ9r8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae206d51569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/static/js/jquery.min.js

104.26.0.171

200 OK

93 kB

URL GET HTTP/3
send.cm/static/js/jquery.min.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (32072)
Size
93 kB (93064 bytes)
Hash
bdce12c949e78d570c8d44e9c2b23508
9afdc4fec954646bd6270caf82f107fdef605bc5
c73b004ebf31b395cf237c3d2b13c1e576f385e04660ceb5f7be163ff3c201dc

HTTP Headers

GET /static/js/jquery.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=utf8
last-modified: Sat, 26 Sep 2020 12:00:16 GMT
etag: W/"16b88-5b0362d29f400-gzip"
vary: Accept-Encoding
expires: Sat, 25 Nov 2023 14:52:13 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x%2FcPiKdmVWakUL73zTyGlTUu2ZPqVPKYj99ODhlbcp3ZhtFC4X5If%2BV%2BeGCJgSgiPhfw6VLkX9hUTiqpqwh32I47MOX7DIyk3iA4xAHqLn%2BTpHNL1NglBMs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae206d58569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js

104.26.0.171

200 OK

18 kB

URL GET HTTP/3
send.cm/lib/perfect-scrollbar/perfect-scrollbar.min.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (18216)
Size
18 kB (18291 bytes)
Hash
4a10bcfa0a9c9fa9d503b5a498cac31e
c4f6c403e99fb37cb496c3844b332823db7c5837
a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634

HTTP Headers

GET /lib/perfect-scrollbar/perfect-scrollbar.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=utf8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"4773-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Sat, 25 Nov 2023 14:56:41 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BinUUjLy7PvRgBTThrZCmRKu67Lz3G%2BHMiPQl2f3y%2FGYcAWL%2FIb2hyTtyGxy6Gqk1lROYSeXq3bUqgH8Tg22DFyQ%2Bttsck7TSk0RJjj6hBpqoZSZ%2B7iWHYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae208d8e569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/f8i1rqn7cjc2

104.26.0.171

200 OK

82 kB

URL User Request GET HTTP/2
send.cm/f8i1rqn7cjc2
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type

Size
82 kB (81650 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /f8i1rqn7cjc2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=0;includeSubDomains;
expires: Fri, 24 Nov 2023 14:46:16 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2FDDJu69RBXvIM41LxGaOiuxhCETJQYePwhNI0p96iKHFhk76k%2FHSQ0DQy%2Bo6wao0YbnGqSxEhektLYVsbMf6pJrVcrpu0%2FeSymZdHn9xRMx1ZTMVf9BlMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: lang=english; domain=.send.cm; path=/
aff=56593; domain=.send.cm; path=/; expires=Sat, 09-Dec-2023 14:46:16 GMT
c_7hyj5tegwm4sd1=f8i1rqn7cjc2; domain=.send.cm; path=/
__cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy; SameSite=None; Secure; path=/; expires=Sat, 25-Nov-23 15:16:16 GMT; HttpOnly
server: cloudflare
cf-ray: 82baae1d3cdb56bd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/82baae1d3cdb56bd

104.26.0.171

200 OK

0 B

URL POST HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/jsd/r/82baae1d3cdb56bd
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/82baae1d3cdb56bd HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12179
Origin: https://send.cm
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=MOCGiJSAmvW4cZM4VFSkOVCmepvbhclEs3bx4VH3SZA-1700923576-0-1-730ca2d2.73a07051.5b213570-0.2.1700923576; path=/; expires=Sun, 24-Nov-24 14:46:16 GMT; domain=.send.cm; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tZj4Su23LokXfk8SOKAUGZZO9fuSzQ965FHbLH8nng7TLdgtqOI5OlS5I6i817p8lui51GaA7xACxaUtkY4XydiOnDfkkYD9C0Cg%2FDOJpc2RTN7yRnk2YAU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae23dbaa569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js

104.26.0.171

200 OK

7.3 kB

URL GET HTTP/3
send.cm/cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (7276), with no line terminators
Size
7.3 kB (7276 bytes)
Hash
035bc079843d9f491814e69e451217d2
d5fcccdf9f6ae1330f66537d7d8d2a0cf1ce279a
72b4332bafc953cefa5d6614ae45b103bd7222369ff7bf59d55af5ab89871dd4

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/9914b343/main.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy; cf_clearance=MOCGiJSAmvW4cZM4VFSkOVCmepvbhclEs3bx4VH3SZA-1700923576-0-1-730ca2d2.73a07051.5b213570-0.2.1700923576
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:17 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ppuc2C28Us4yxBC2VJqKvOkVWWi8ULjAfFX3Ik%2BotoUi7QHqGQhDNe%2BS2gLqyOeG70drtHsqupTR3Uc7UePiwkr2PyKgP824qyMTQAYfhIyUwj71hJc9IYM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae24cd29569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

friendshipmale.com/sfp.js

104.21.234.33

200 OK

86 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
104.21.234.33:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type

Size
86 kB (85468 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 25 Nov 2023 14:46:18 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 974558616e847bb2fa2fa6e348742ae5
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 25 Nov 2023 14:46:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fShV%2BBO6%2F%2FIhK4azylZAke7h%2BrhrsuDugbneAoCINZjNjRdy1LIxqQwz2USX5MB03d3SmV0otvYf5bjxumtrcpQvlE9z0UW46%2FbOv62drtwlAFLi%2Fz%2FutlQvRn8GbKReBAo%2BDto%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82baae29ea4a56c1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dismantlepenantiterrorist.com/pxf.gif?uuid=4e30fd29-7350-4e8d-b658-56565e156a0e&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=13.3095&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14

0.0.0.0

0 B

URL GET
dismantlepenantiterrorist.com/pxf.gif?uuid=4e30fd29-7350-4e8d-b658-56565e156a0e&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=13.3095&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14
IP
0.0.0.0:0
ASN
#0

Requested by
https://send.cm/f8i1rqn7cjc2

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=4e30fd29-7350-4e8d-b658-56565e156a0e&eb=18b30c6599f2cc55a4e95ff938f1022d&te=baea64896a02d34b4567f77c6840ba09&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=13.3095&b_frame=0&pk=9ced2453f41586bc39632e754938332a&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

send.cm/static/css/dl.min.css

104.26.0.171

200 OK

180 kB

URL GET HTTP/3
send.cm/static/css/dl.min.css
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
180 kB (179945 bytes)
Hash
3e85e3b581d51ddba21136119002fc2d
038a7216f7187936b4f4e5bee0975bf44e3e1449
dde25a807ebc087b35d1bbe9b3030ea528a52e414ce29a7894abd937bf67e7c6

HTTP Headers

GET /static/css/dl.min.css HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: text/css
last-modified: Thu, 07 Sep 2023 13:24:21 GMT
etag: W/"2bee9-604c4c72211a7-gzip"
vary: Accept-Encoding
expires: Sat, 25 Nov 2023 14:42:47 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=beLQYuLDwRm6C07UlDAkT9SU73lOAg5NSf32RyMmUFn4WdDZKkwq4pHtSW2xod8Dzlkhgd6bFCv%2BcEDjzMysVcON%2FMHb8uqNPXRTwV2Tui1%2BBK2KgBLdPlQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae206d54569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

send.cm/lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2

104.26.0.171

200 OK

74 kB

URL GET HTTP/3
send.cm/lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Size
74 kB (74256 bytes)
Hash
418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe

HTTP Headers

GET /lib/@fortawesome/fontawesome-free/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://send.cm/lib/@fortawesome/fontawesome-free/css/fa.min.css
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: font/woff2
content-length: 74256
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: "12210-5ae64b14b0680"
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cache-control: max-age=259200
cf-cache-status: HIT
age: 2595
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VncYq7SKSLIG5AfxuhZkP51k0HHRKe2rMxDuJaS666i7wFIQPfZrc3C4RCzQCjPZmCdpetaY2Z3Xk%2BlT0RaYcSbW%2FTMIXrf1yDfzWcuFygABNEKbHTyh%2BFM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82baae219f79569a-OSL
alt-svc: h3=":443"; ma=86400

send.cm/lib/bootstrap/js/bootstrap.bundle.min.js

104.26.0.171

200 OK

79 kB

URL GET HTTP/3
send.cm/lib/bootstrap/js/bootstrap.bundle.min.js
IP
104.26.0.171:443
ASN
#13335 CLOUDFLARENET

Requested by
https://send.cm/f8i1rqn7cjc2
Certificate
IssuerGoogle Trust Services LLC
Subjectsend.cm
Fingerprint4A:FF:4D:B2:CC:85:F4:52:F9:78:AF:EB:79:F3:A2:6A:66:3E:98:D1
ValidityThu, 05 Oct 2023 16:49:19 GMT - Wed, 03 Jan 2024 16:49:18 GMT

File type
ASCII text, with very long lines (65297)
Size
79 kB (78635 bytes)
Hash
a454220fc07088bf1fdd19313b6bfd50
265a733cb7fbc481fd2510a659a85ad55c93c895
7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c

HTTP Headers

GET /lib/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: send.cm
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://send.cm/f8i1rqn7cjc2
Cookie: lang=english; aff=56593; c_7hyj5tegwm4sd1=f8i1rqn7cjc2; __cflb=04dToPXYGQwzSVHrRvdmaaKmJbS8hsdPeBviDskviy
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 25 Nov 2023 14:46:16 GMT
content-type: application/javascript; charset=utf8
last-modified: Thu, 03 Sep 2020 08:39:38 GMT
etag: W/"1332b-5ae64b14b0680-gzip"
vary: Accept-Encoding
expires: Sat, 25 Nov 2023 14:57:13 GMT
cache-control: max-age=259200
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
cf-cache-status: HIT
age: 737
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qcqc2wgA%2F4hHHdOJQvDBEOdky80Gm6ZhdiSoVm%2Bkj3wabZUJLJBJm1cZvDfRCkotkupjeyYLmFzCRkddkDOvLMzFLGg1uyVbGCeR0I2VlMWobZe6PeMwQMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82baae2228ae569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN