| cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4 | 104.17.96.13 | | 88 B |
URL cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4 IP104.17.96.13:0
File typeHTML document, ASCII text Hasha97094d27912ef7a05bbd29fec79f7ba b3d8f2eab6ee93845cd2172caa5fa685ff470318 0425c931a78ecadb4451fb8b25bd6d273d509cfd223b7de271ca925b692e0f28
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4 HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 02:08:12 GMT
content-type: text/html; charset=utf-8
content-length: 88
location: /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/
cf-ray: 879ac8ab0ac8712a-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 1144
cache-control: max-age=86400
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4
x-ipfs-roots: QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4
set-cookie: __cf_bm=GptbKCSZjIXaAKf7pB1KRdJxQqNpCCrL2a73DPjeRzE-1714010892-1.0.1.1-Ytys3HHW5dNPd2awwARaFG90oSiwMlVvW7YVyb9eWYgkH2neJ14pDw5GnTA82_6vpobf9sMSCJu8oYzVDXOamA; path=/; expires=Thu, 25-Apr-24 02:38:12 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.170:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:38:23 GMT
expires: Fri, 18 Apr 2025 17:38:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 548990
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 41 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 02:08:13 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 1925494
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 879ac8b1de710b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/favicon.ico | 104.17.96.13 | 404 Not Found | 14 B |
URL GET HTTP/3cloudflare-ipfs.com/favicon.ico IP104.17.96.13:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
File typeASCII text, with no line terminators Hashd0fbda9855d118740f1105334305c126 bc3023b36063a7681db24681472b54fa11f0d4ec a469ab4ca4e55bf547566e9ebfa1b809c933207e9d558156bc0c4252b17533fe
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /favicon.ico HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/
Cookie: __cf_bm=GptbKCSZjIXaAKf7pB1KRdJxQqNpCCrL2a73DPjeRzE-1714010892-1.0.1.1-Ytys3HHW5dNPd2awwARaFG90oSiwMlVvW7YVyb9eWYgkH2neJ14pDw5GnTA82_6vpobf9sMSCJu8oYzVDXOamA
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 25 Apr 2024 02:08:13 GMT
content-type: text/plain;charset=UTF-8
content-length: 14
vary: Accept-Encoding
server: cloudflare
cf-ray: 879ac8b38f8456bb-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.google.com/s2/favicons?domain=https://yahoo.com.tw | 142.250.74.164 | 301 Moved Permanently | 333 B |
URL GET HTTP/2www.google.com/s2/favicons?domain=https://yahoo.com.tw IP142.250.74.164:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73 ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hashb0937c36015c40d114143439b9d182b3 75ed85a3a9f1c2b8d5bd7d8f235c78bc580f5c30 77f0198c9dc121102ecae76bda0443eb355bcc21693d52f43a2ff8407a88bb01
GET /s2/favicons?domain=https://yahoo.com.tw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://yahoo.com.tw&size=16
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 02:08:13 GMT
expires: Thu, 25 Apr 2024 02:38:13 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 333
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yahoo.com.tw/ | 13.248.158.7 | 301 Moved Permanently | 4.4 kB |
IP13.248.158.7:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerDigiCert Inc Subjectsrc3.yahoo.com FingerprintEB:1C:35:59:65:6F:75:E2:E4:A8:D9:D3:09:8E:36:1E:41:A8:62:39 ValidityFri, 02 Feb 2024 00:00:00 GMT - Wed, 17 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text Hashc7723cb5370f1b12b595c459faa7885a a1858825fcd834659e37e50d39217ae3d3aab123 deca47f5664161a15560384978e274e6663a8591e0eb2f2f207cbdb2460d8fd2
GET / HTTP/1.1
Host: yahoo.com.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 02:08:13 GMT
strict-transport-security: max-age=31536000
server: ATS
cache-control: no-store
content-type: text/html
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox allow-scripts; default-src 'self'; img-src https:; style-src 'unsafe-inline'; script-src 'unsafe-inline'; report-uri http://csp.yahoo.com/beacon/csp?src=redirect
location: https://tw.yahoo.com/
content-length: 4414
X-Firefox-Spdy: h2
|
|
| t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://yahoo.com.tw&size=16 | 142.250.74.164 | 200 OK | 281 B |
URL GET HTTP/3t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://yahoo.com.tw&size=16 IP142.250.74.164:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hash74563020f6b77f16b6274d1ddabdc8b8 38a6bbb32ac9acca7d8ff0bba46cabfcaf34d16b e8c47656c955de9d25c645cb2618aa16913663a0cbfab48eafb639ec54c0ff4c
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://yahoo.com.tw&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://s.yimg.com/cv/apiv2/default/icons/favicon_y19_32x32_custom.svg
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 281
date: Thu, 25 Apr 2024 02:08:13 GMT
expires: Thu, 02 May 2024 02:08:13 GMT
cache-control: public, max-age=604800
last-modified: Sun, 26 Nov 2023 03:55:20 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| tw.yahoo.com/ | 188.125.94.206 | 307 Temporary Redirect | 0 B |
IP188.125.94.206:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: tw.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Thu, 25 Apr 2024 02:08:13 GMT
strict-transport-security: max-age=31536000
server: ATS
cache-control: no-store
content-type: text/html; charset=utf-8
content-language: en
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
location: https://guce.yahoo.com/consent?brandType=nonEu&gcrumb=cr9QzkU&lang=zh-Hant-TW&done=https%3A%2F%2Ftw.yahoo.com%2F
set-cookie: GUCS=AXK_UM5F; Max-Age=1800; Domain=.yahoo.com; Path=/; Secure
content-length: 0
X-Firefox-Spdy: h2
|
|
| guce.yahoo.com/consent?brandType=nonEu&gcrumb=cr9QzkU&lang=zh-Hant-TW&done=https%3A%2F%2Ftw.yahoo.com%2F | 3.251.4.38 | 302 Found | 0 B |
URL GET HTTP/1.1guce.yahoo.com/consent?brandType=nonEu&gcrumb=cr9QzkU&lang=zh-Hant-TW&done=https%3A%2F%2Ftw.yahoo.com%2F IP3.251.4.38:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerDigiCert Inc Subjectguce.oath.com Fingerprint2F:DD:80:46:59:94:25:7E:16:92:8A:41:57:EF:0A:73:49:20:DA:A2 ValidityTue, 16 Jan 2024 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /consent?brandType=nonEu&gcrumb=cr9QzkU&lang=zh-Hant-TW&done=https%3A%2F%2Ftw.yahoo.com%2F HTTP/1.1
Host: guce.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Connection: keep-alive
Server: guce
Strict-Transport-Security: max-age=31536000; includeSubDomains
Location: https://consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_96db1746-b341-4466-abcb-17fff023c67f
Content-Length: 0
Date: Thu, 25 Apr 2024 02:08:13 GMT
|
|
| consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_96db1746-b341-4466-abcb-17fff023c67f | 3.251.4.38 | 200 OK | 27 kB |
URL GET HTTP/1.1consent.yahoo.com/v2/collectConsent?sessionId=3_cc-session_96db1746-b341-4466-abcb-17fff023c67f IP3.251.4.38:443
Requested byhttps://cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/#info@yahoo.com.tw CertificateIssuerDigiCert Inc Subjectconsent.oath.com FingerprintD8:8F:D3:53:E7:90:AA:C0:0D:5B:CA:F9:0D:21:AA:2F:10:75:AF:8F ValidityTue, 16 Jan 2024 00:00:00 GMT - Wed, 10 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (64996) Hash6e6df65be3abe6094c03ed1492d7eb10 81ee4ff15bb5122e4cc5102694a268424b298a8e 50dd73ef220eaeac6e77ce53791828b02892c0000e68e5e8b3f8eb6b927bc2d4
GET /v2/collectConsent?sessionId=3_cc-session_96db1746-b341-4466-abcb-17fff023c67f HTTP/1.1
Host: consent.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Encoding: gzip
Expires: 0
Cache-Control: no-cache, no-store, must-revalidate
Content-Security-Policy-Report-Only: default-src 'none'; block-all-mixed-content; connect-src 'self'; frame-ancestors 'none'; img-src 'self' https://s.yimg.com; media-src 'none'; script-src 'self' 'nonce-FnOpK28ROtDCzqKs+LzF3SERP9PQowzo' https://s.yimg.com; style-src 'self' 'nonce-FnOpK28ROtDCzqKs+LzF3SERP9PQowzo' https://s.yimg.com; font-src 'self'; object-src 'none'; frame-src 'none'; report-uri https://csp.yahoo.com/beacon/csp?src=guce
Server: guce
X-XSS-Protection: 1; mode=block
Pragma: no-cache
X-Frame-Options: DENY
Referrer-Policy: strict-origin-when-cross-origin
Date: Thu, 25 Apr 2024 02:08:14 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
Transfer-Encoding: chunked
Content-Type: text/html;charset=UTF-8
|
|
| csp.yahoo.com/beacon/csp?src=guce | 188.125.72.139 | | 0 B |
URL csp.yahoo.com/beacon/csp?src=guce IP188.125.72.139:0 ASN#34010 Yahoo-UK Limited
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /beacon/csp?src=guce HTTP/1.1
Host: csp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 740
Origin: https://consent.yahoo.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-powered-by: Express
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
content-security-policy-report-only: default-src 'self'; report-uri https://csp.yahoo.com/beacon/csp?src=fendr_csp.yahoo.com
date: Thu, 25 Apr 2024 02:08:14 GMT
x-envoy-upstream-service-time: 1
server: ATS
age: 0
cache-control: no-store, no-cache, private, max-age=0
expires: -1
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=P9akkmykX38OlD9a5yLN4jKmT3GUSIfl4rd5eSgdubwg9qorc9zT5PD9CYMo-8izuTZ2G8YjkNIz4-QREw3yr8THL-ztuk4FXfJOysMeGWfbsB2iiUE3FuA_3LtKJBCG
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Thu, 25 Apr 2024 02:06:54 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 96
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4 | 104.17.96.13 | 301 Moved Permanently | 461 kB |
URL User Request GET HTTP/2cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4 IP104.17.96.13:443
CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
Size461 kB (460717 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4 HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 25 Apr 2024 02:08:12 GMT
content-type: text/html; charset=utf-8
content-length: 88
location: /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/
cf-ray: 879ac8ab0ac8712a-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 1144
cache-control: max-age=86400
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4
x-ipfs-roots: QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4
set-cookie: __cf_bm=GptbKCSZjIXaAKf7pB1KRdJxQqNpCCrL2a73DPjeRzE-1714010892-1.0.1.1-Ytys3HHW5dNPd2awwARaFG90oSiwMlVvW7YVyb9eWYgkH2neJ14pDw5GnTA82_6vpobf9sMSCJu8oYzVDXOamA; path=/; expires=Thu, 25-Apr-24 02:38:12 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/ | 104.17.96.13 | 200 OK | 461 kB |
URL User Request GET HTTP/3cloudflare-ipfs.com/ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/ IP104.17.96.13:443
CertificateIssuerLet's Encrypt Subjectcloudflare-ipfs.com FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59 ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT
File typeHTML document, ASCII text, with CRLF line terminators Size461 kB (460717 bytes) Hashd4e4dfa27a414763fd698704d55063ee 1ac5d489b1c7e26c3ef3e866a5e77634fd629bb2 b37f3df465aac7b73d09bd6eba3c6869d29caf494946837b356b22da4bc980a6
Analyzer | Verdict | Alert | PhishTank | phishing | Other |
GET /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/ HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=GptbKCSZjIXaAKf7pB1KRdJxQqNpCCrL2a73DPjeRzE-1714010892-1.0.1.1-Ytys3HHW5dNPd2awwARaFG90oSiwMlVvW7YVyb9eWYgkH2neJ14pDw5GnTA82_6vpobf9sMSCJu8oYzVDXOamA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 02:08:12 GMT
content-type: text/html
cf-ray: 879ac8ad6d8956bb-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 1144
cache-control: public, max-age=29030400, immutable
etag: W/"QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipfs/QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4/
x-ipfs-roots: QmcPTye1bruM4oYV3MDTjw5bRg31ExQJehidQe5d5fkdx4
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|