| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash388f6fea5bafa378266622b72311a6ee 447f102dc12172ce1ba44c5e94e1d7bb49d43372 a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4214
Expires: Thu, 08 Dec 2022 10:59:37 GMT
Date: Thu, 08 Dec 2022 09:49:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf2acd891dc6eb1f09f57a2b086791781 1e2088306501a61edcca1ade62c4d54f23b3b083 51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15362
Expires: Thu, 08 Dec 2022 14:05:25 GMT
Date: Thu, 08 Dec 2022 09:49:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash00e7703bd74975689fc9050356aaca6b 9788fe6a36d6f278e8da329ebc5dd87bcd212317 593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4320
Expires: Thu, 08 Dec 2022 11:01:23 GMT
Date: Thu, 08 Dec 2022 09:49:23 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 09:08:09 GMT
content-type: application/json
age: 2474
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pm72vi4o8FJhKI23joSGscimfxwWhC/oNlM0n5d6zjTU4UFcFiKpI71kiauk3CU1tGHtMkCoXEc=
x-amz-request-id: EZZQ9TBW45RBTQXB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 09:47:52 GMT
age: 91
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 09:49:23 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| hub.dubids.tk/login?return_to=https://github.com/aliuq/cf-proxy/blob/master/README.md | 172.67.138.17 | 301 Moved Permanently | 0 B |
URL HTTP/1.1hub.dubids.tk/login?return_to=https://github.com/aliuq/cf-proxy/blob/master/README.md IP172.67.138.17:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /login?return_to=https://github.com/aliuq/cf-proxy/blob/master/README.md HTTP/1.1
Host: hub.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Dec 2022 09:49:23 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Location: https://hub.dubids.tk/login?return_to=https%3A%2F%2Fgithub.com%2Faliuq%2Fcf-proxy%2Fblob%2Fmaster%2FREADME.md
CF-Ray: 7764973bd8c9b4f4-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-expose-headers: *
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aX6Zor7%2FqJ2612%2FdWBIvhXBpUFIToaM%2BVqBJY1M7WCWeOZEAzjCo3swBeOlvFFx8B3Z0yI5kiHSP6dqhz3MmNAzQEUmCY%2FNinPJ4q5X7OfRYuSi2rmveXcAQGMxyEqet"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
alt-svc: h2=":443"; ma=60
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 09:07:58 GMT
age: 2485
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbe461e439a16a13651607ea42edd7b44 0b5249d7fca9cd08f091ea403cc3144481536ab8 1e28ab7fa4107d3f76759d97106544c858c548f983beb4f22f81923c6009f9ac
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "1E28AB7FA4107D3F76759D97106544C858C548F983BEB4F22F81923C6009F9AC"
Last-Modified: Thu, 08 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 15:49:23 GMT
Date: Thu, 08 Dec 2022 09:49:23 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash053aff7451e55d4269dd9610ab070f3f b3376256d11d159b0c7280ba1515b78d7d9e12ca 24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4614
Cache-Control: max-age=88460
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 09:49:24 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:23:44 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbe461e439a16a13651607ea42edd7b44 0b5249d7fca9cd08f091ea403cc3144481536ab8 1e28ab7fa4107d3f76759d97106544c858c548f983beb4f22f81923c6009f9ac
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "1E28AB7FA4107D3F76759D97106544C858C548F983BEB4F22F81923C6009F9AC"
Last-Modified: Thu, 08 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Thu, 08 Dec 2022 15:49:23 GMT
Date: Thu, 08 Dec 2022 09:49:24 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 52.38.139.17 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.38.139.17:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: OOmm/LAhxDsNeoGMx8diMA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hUcZHTqwdo4lvy1cHOZvgRAXasw=
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe3df763bae6133310f0bf2cf34753a05 78e6091da177d543ba3eb1311e630be04ad6d48b 0b9e7ef9490fa2e45b1e5ba9c4b9ebefa2929acb786b9341f398d576297511aa
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0B9E7EF9490FA2E45B1E5BA9C4B9EBEFA2929ACB786B9341F398D576297511AA"
Last-Modified: Thu, 08 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 15:49:24 GMT
Date: Thu, 08 Dec 2022 09:49:24 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe3df763bae6133310f0bf2cf34753a05 78e6091da177d543ba3eb1311e630be04ad6d48b 0b9e7ef9490fa2e45b1e5ba9c4b9ebefa2929acb786b9341f398d576297511aa
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0B9E7EF9490FA2E45B1E5BA9C4B9EBEFA2929ACB786B9341F398D576297511AA"
Last-Modified: Thu, 08 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 15:49:24 GMT
Date: Thu, 08 Dec 2022 09:49:24 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe3df763bae6133310f0bf2cf34753a05 78e6091da177d543ba3eb1311e630be04ad6d48b 0b9e7ef9490fa2e45b1e5ba9c4b9ebefa2929acb786b9341f398d576297511aa
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0B9E7EF9490FA2E45B1E5BA9C4B9EBEFA2929ACB786B9341F398D576297511AA"
Last-Modified: Thu, 08 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 15:49:24 GMT
Date: Thu, 08 Dec 2022 09:49:24 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe3df763bae6133310f0bf2cf34753a05 78e6091da177d543ba3eb1311e630be04ad6d48b 0b9e7ef9490fa2e45b1e5ba9c4b9ebefa2929acb786b9341f398d576297511aa
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0B9E7EF9490FA2E45B1E5BA9C4B9EBEFA2929ACB786B9341F398D576297511AA"
Last-Modified: Thu, 08 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 15:49:24 GMT
Date: Thu, 08 Dec 2022 09:49:24 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe3df763bae6133310f0bf2cf34753a05 78e6091da177d543ba3eb1311e630be04ad6d48b 0b9e7ef9490fa2e45b1e5ba9c4b9ebefa2929acb786b9341f398d576297511aa
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0B9E7EF9490FA2E45B1E5BA9C4B9EBEFA2929ACB786B9341F398D576297511AA"
Last-Modified: Thu, 08 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Dec 2022 15:49:24 GMT
Date: Thu, 08 Dec 2022 09:49:24 GMT
Connection: keep-alive
|
|
| assets.dubids.tk/assets/behaviors-68f99cb643cf.js |  104.21.94.161 | 200 OK | 66 kB |
URL HTTP/2assets.dubids.tk/assets/behaviors-68f99cb643cf.js IP104.21.94.161:0
File typeASCII text, with very long lines (37760) Hash3c13b6b9da347dcf48db38c4bf6e1592 11993b1a5f4360e6a5c9ac3aad5e0aeca4ef7474 f80e000f35a6d4dd2fb5ed26215979cdddfb51b66db1673ed85a02bad868d0df
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/behaviors-68f99cb643cf.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457841b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"715c8dff8e0ae2cc8910b683c8e205e7"
last-modified: Thu, 08 Dec 2022 00:42:11 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 16, 2123
x-fastly-request-id: fcde6930ce0a63dd5dc49a54faece91a69297852
x-served-by: cache-iad-kcgs7200128-IAD, cache-bma1645-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1KnJg0qlPfly4ZXq3LexKKJcVX42LE2qeFHa2SOpqCmZRS%2FOqPdIFdcUc8bmHTeQJqiCSECqj0G3%2BfQS9fxQdbX1HKfkse20VNnLS7v0EBXX1kLicjdLkkpCAvo8rE0UdQzx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 313 B |
IP93.184.220.29:0
Hash2ec18e414770d0d44cf37588ec10731d 85f3a8d18f4b3ea70db3ec94b9afd58ad72d4573 7ddbeb73f6087c8157542ff9beb01699e3d2621d131c76f0e185da6171e35769
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4619
Cache-Control: max-age=89185
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 09:49:25 GMT
Etag: "63905a7b-139"
Expires: Fri, 09 Dec 2022 10:35:50 GMT
Last-Modified: Wed, 07 Dec 2022 09:18:51 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 313
|
|
| assets.dubids.tk/assets/app_assets_modules_github_behaviors_keyboard-shortcuts-helper_ts-app_assets_modules_github_be-f5afdb-e0346850e585.js | 104.21.94.161 | 200 OK | 38 kB |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_behaviors_keyboard-shortcuts-helper_ts-app_assets_modules_github_be-f5afdb-e0346850e585.js IP104.21.94.161:0
File typeASCII text, with very long lines (6730) Hash9255f9b23bcb82d574a178085b9f5241 bb908691cd0002e2ef7f34de4fbe9798c7b7e55e b80389c3fb246a8df2098735643f0f24003cda2f49f0ab51189ad93f2832bc34
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_behaviors_keyboard-shortcuts-helper_ts-app_assets_modules_github_be-f5afdb-e0346850e585.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745783fb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"047693d93b02cf68aa31fcfedd0e43f7"
last-modified: Thu, 27 Oct 2022 18:38:29 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 1099, 7861
x-fastly-request-id: 097d3fcaa24f31a1dbb86536b15f4ae4b0f0d1b9
x-served-by: cache-iad-kjyo7100146-IAD, cache-bma1651-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ADIT7OrNnmKUPfAxEhUg3igsH0PNmjX9%2FagvXSK%2B4qJ5h9thzKQjXRpuDdK9Tvh3Nt7OfH5dcFwgYQmW5gpuQwbRaGTeQ%2Bzh6GI2UMD9FJALh0eavax2W6pxPomRa3TG%2F3Xm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe7819734753f3e921ac80293a11c88d7 cb0a5effc8736f8eee3b4bfb5d9ebc7b05c13e32 a0abbf3a38dc5f0878fcd9a1735bc9122a3f6f2432aeb354cc5b55939b81a957
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6441
Cache-Control: max-age=134556
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 09:49:25 GMT
Etag: "63910498-1d7"
Expires: Fri, 09 Dec 2022 23:12:01 GMT
Last-Modified: Wed, 07 Dec 2022 21:24:40 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
|
|
| assets.dubids.tk/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-cb56bba555dc.js | 104.21.94.161 | 200 OK | 3.3 kB |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-cb56bba555dc.js IP104.21.94.161:0
File typeASCII text, with very long lines (11426) Hash3ec882cca6871d7e515eceb3eaef8d50 daf198ad2238836d7fce5db3051b967cab211929 2189ba618b3539c37cbbd905f48a175e38ea0dd409ffa8848cf778d74c74155e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_behaviors_commenting_edit_ts-app_assets_modules_github_behaviors_ht-83c235-cb56bba555dc.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457840b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"27984df87e3c8cde59dcc875e1ddcd39"
last-modified: Thu, 08 Dec 2022 00:42:08 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 14, 2094
x-fastly-request-id: 3d5fcc46e57de0ff6b9ed6d2ed47574365ce2e9f
x-served-by: cache-iad-kcgs7200045-IAD, cache-bma1656-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UzncrOtYx%2F5YqB2ZITq%2F4NRNQwnC76gEJR%2BoBWn7%2FkHi7l6Akq5zoYjHWQDBpEhOYAikKMIsCHK6rBLymdzfjn2JM3HzHuCSMAnhYg%2BCinmbCzyu3caABo%2F%2FxgCkxeKPlh1t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_lit-html_directives_until_js-node_modules_github_catalyst_lib_index_js-n-319789-7d5de9b6a16d.js | 104.21.94.161 | 200 OK | 4.1 kB |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_lit-html_directives_until_js-node_modules_github_catalyst_lib_index_js-n-319789-7d5de9b6a16d.js IP104.21.94.161:0
File typeASCII text, with very long lines (9379) Hashdeec40843257ad555597bcced53ed602 855b5ef52eb583c01358034508d3c75c10d3ac02 603389f87ac104b661810fde562d13cff048ed2b6eb03a5862f15cef365f1511
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_lit-html_directives_until_js-node_modules_github_catalyst_lib_index_js-n-319789-7d5de9b6a16d.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457848b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"db13bcfb26f70d3fe6efb542427ed21f"
last-modified: Mon, 21 Nov 2022 20:34:06 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 47, 9122
x-fastly-request-id: e9ef802d07531facf09e25c7b90e31647cafc0ad
x-served-by: cache-iad-kjyo7100051-IAD, cache-bma1637-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RPuIV3enNrm0IT5NEZCHTbsK6OD1kMNONGLT6ryvUKpjix1KTSx09lZMshYrlPfZZdoEi%2Blu8NQousWE7U8mLL1q9heRW0EF%2FOKQFhLq7chV7hSIMMyrBf9V0tpzCpF7%2B4ZD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash48c90992f0837a58e0a36118a27dae6a 3d238fed35e6d247bddbba92864e6b92e6aed9b6 cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2504
Expires: Thu, 08 Dec 2022 10:31:09 GMT
Date: Thu, 08 Dec 2022 09:49:25 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash48c90992f0837a58e0a36118a27dae6a 3d238fed35e6d247bddbba92864e6b92e6aed9b6 cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2504
Expires: Thu, 08 Dec 2022 10:31:09 GMT
Date: Thu, 08 Dec 2022 09:49:25 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash48c90992f0837a58e0a36118a27dae6a 3d238fed35e6d247bddbba92864e6b92e6aed9b6 cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2504
Expires: Thu, 08 Dec 2022 10:31:09 GMT
Date: Thu, 08 Dec 2022 09:49:25 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3d44d17585c9a536c8da0e75ed90d175 9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1 6d14a5b5c43b39244434560a83a2bfea6604a4d072943b6147293b7adfd1b7b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a21d707-1bf7-4b7f-a23b-7e8f38dd40c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10164
x-amzn-requestid: a0cb7259-0a07-44f5-91cd-e96b8d9c9cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnAPOGSnoAMFUUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c472e-799b6ee425e29fb70ff7e4ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5Q2LRCrEYVZz_KldQARUQ26O1mv0G7rMAPQXGkBzUnERF-WjtZPMJA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 12:11:17 GMT
age: 77888
etag: "9dc35d0f6b251004bc1ddc83aea9ee71c95aedd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash57a992ab666f21c6da0057fefb622ff2 c36381d6744ae44360b2a37ca7586028e980714b afe4050d9b07dcab509c95eb8d75ca410db74bd59f39561e5d190550cb61503e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234796b8-a59e-4174-a03a-b127b03b60eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13556
x-amzn-requestid: 3e79e2da-80ea-404c-8d87-939c7682dbe8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4h8EuUIAMFkIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639107a5-68318f164708882a43fb0f12;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7RZTh3iQHGp_XffXQQw13UUWqPNZQFJ_e4pIvNPgAaA1aGy_cXMueA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:13:24 GMT
etag: "c36381d6744ae44360b2a37ca7586028e980714b"
content-type: image/jpeg
age: 41761
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg | 34.120.237.76 | 200 OK | 6.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfb1ea0161d261518c99909aff49e6f58 c3b915cb579b651db25442fea0bbedd0d292c0fc d877a21abfd883a368da0136c4e56d7f590fa9e9ea09dec3675823211fe56385
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6110
x-amzn-requestid: ddb5c208-5bfe-4e8c-9fdd-55076fac9eb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czg9FGl2IAMFxYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63914853-148fec9213f360520ff3c52a;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 02:13:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: l8PbqnzJrf0uHiLE9iy5PSfKl8f4520ddTxkji7GyUyAWuX9Sc4U0w==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 04:20:38 GMT
age: 19727
etag: "c3b915cb579b651db25442fea0bbedd0d292c0fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb87d6543345f73653ed4a49b37d7c959 c4f26846b8b72293368ff16915d49297cf12bbb9 aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:35:32 GMT
age: 36833
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb40390-82ef-453b-afca-e37aa7674ed3.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb40390-82ef-453b-afca-e37aa7674ed3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf0c8a8dbe6c3ae6eaa2e464296708f5c 98556b27bc3759d0ceb8200ff5bc7b9567e428a5 bfc64a0e18c0137360f746eca256f464e26d23a04521ea629c46ae50ea6af173
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb40390-82ef-453b-afca-e37aa7674ed3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9058
x-amzn-requestid: 1f7fdd3d-1e65-46f7-8ef2-d164bf81e72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz4FtuIAMFjsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-4866b3fd61fdb35d34317038;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6ET1Tfo1QXRpjkWyOE7jfYnWToK8h7ojB31efNc09awacwlCIYEPjA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 07:19:28 GMT
age: 8997
etag: "98556b27bc3759d0ceb8200ff5bc7b9567e428a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15e59c3f-fa3a-4698-96c2-2e89662ffa9f.webp | 34.120.237.76 | 200 OK | 8.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15e59c3f-fa3a-4698-96c2-2e89662ffa9f.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash311cb4353566dfb426dbc692fde93223 979910df445a5c4d3513c8c25e289800335f646d 5ecd5c12620c0b8b6bbf456cb6c016168479a735f4eb67a9a1047677b9d798fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15e59c3f-fa3a-4698-96c2-2e89662ffa9f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8179
x-amzn-requestid: 39aa4016-4f48-4d2a-b94b-05432980d66a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czCruHckIAMFkHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639117e4-1953985a5c8d2da8239ec8e8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:47:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKaRX4QpQU2U8J-jk1lWjhAooObsgxfHuNXv5Bbc69IEMCXAyIESeQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:50:01 GMT
age: 39564
etag: "979910df445a5c4d3513c8c25e289800335f646d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| api.github.com/_private/browser/stats | 140.82.121.6 | 200 OK | 0 B |
URL HTTP/2api.github.com/_private/browser/stats IP140.82.121.6:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /_private/browser/stats HTTP/1.1
Host: api.github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Content-Type: text/plain;charset=UTF-8
Content-Length: 300
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: GitHub.com
date: Thu, 08 Dec 2022 09:49:27 GMT
content-type: text/plain
content-length: 0
cache-control: no-cache
x-ratelimit-limit: 60
x-ratelimit-remaining: 60
x-ratelimit-reset: 1670496567
x-ratelimit-used: 0
x-ratelimit-resource: core
x-github-media-type: github.v3; format=json
x-github-api-version-selected: 2022-11-28
access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
content-security-policy: default-src 'none'
vary: Accept-Encoding, Accept, X-Requested-With
x-github-request-id: 6CB9:856A:63FBB83:6574D19:6391B325
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/notifications-global-35a509648d46.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/notifications-global-35a509648d46.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/notifications-global-35a509648d46.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457844b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"0854b2c18a9e7a000d2a9796e808cdbe"
last-modified: Thu, 08 Dec 2022 00:42:30 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 24, 2062
x-fastly-request-id: 790c09e563ae6c6f3fb41fe5e12c1e3b2afe2c56
x-served-by: cache-iad-kcgs7200053-IAD, cache-bma1680-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lomww4jQson0X5%2BpBrW8V%2FcdY6dHiY2L3g5wvqhEAm2AFjjLG%2BIUkj8nL0OqQEoe4%2BiKTdL%2B7YOeg%2BDMMqYwTjXjkVJE4ccjkrExFGIpJH7nTTBSDjoo732QrXnbiK0DczyT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/app_assets_modules_github_aria-live_ts-app_assets_modules_github_hydro-analytics_ts-app_asset-7c220e-1d193665336b.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_aria-live_ts-app_assets_modules_github_hydro-analytics_ts-app_asset-7c220e-1d193665336b.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_aria-live_ts-app_assets_modules_github_hydro-analytics_ts-app_asset-7c220e-1d193665336b.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745783ab529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"34884e2abfd097c8bfab6dd5e806a2c1"
last-modified: Wed, 07 Dec 2022 04:39:33 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 6, 7414
x-fastly-request-id: b6b9e24143dec45dc2fe702fd9eb35971c61825b
x-served-by: cache-iad-kcgs7200136-IAD, cache-bma1647-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KfD0ppEvN7tRXiQooyhu56lA1cPy%2FI1g6N2k0lT9ZpEyksVF4cfF5vAxA0E43ugtDJgZX0EhpGAenFvSpg%2F9Jck6kQ37TOW9XJSe2cAL9kMC%2BKF4rommxldrmqWjYRb1e3Ky"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/global-4bc9b3a08d31.css | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/global-4bc9b3a08d31.css IP104.21.94.161:0
GET /assets/global-4bc9b3a08d31.css HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: text/css
cf-ray: 77649745885fb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"747ccc3834f7693f37694d2495209ed0"
last-modified: Wed, 07 Dec 2022 21:42:49 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 33, 2579
x-fastly-request-id: ab997418c6727b2936e09dc8c5c11aa767c29c9e
x-served-by: cache-iad-kjyo7100100-IAD, cache-bma1666-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NQVk3Sef3tY7uST641LsdBXB8ZGRgtScNrBMRXjKxqBSWFdyUG6C730zPyXT%2BMm4X4jIKRJy0vUqV2fjzTuNU7INRtuEMeZsTHEk8LjcmyNCGMNA3aqh%2BzbRGMs%2FSKMshccE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-c1acb9a3f5fa.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-c1acb9a3f5fa.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_primer_behaviors_dist_esm_dimensions_js-node_modules_github_jtml_lib_index_js-c1acb9a3f5fa.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457838b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"6778ba1335078d1f45de9ec4ae62c3d6"
last-modified: Wed, 07 Dec 2022 04:40:11 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 44, 7901
x-fastly-request-id: fc57db29402b9b0c837b368778f8ad8fd7766def
x-served-by: cache-iad-kjyo7100021-IAD, cache-bma1676-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blc7qwhQ3OdDS95roX52Jqok%2Bz5xzf136PHVET%2FfK8d41R62cR0L%2BZV%2FZs9%2FRKvX%2BC%2Fixw%2FQo%2Bw2guylu8EfQrzYhhwdNpfuFlk1zR0ZVRVJAWokULwPpOLOKubXyKDZQ%2FYw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff532-0eddb8f4d122.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff532-0eddb8f4d122.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_catalyst_lib_index_js-06ff532-0eddb8f4d122.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457842b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"e8c09d6ff5ecddbc6cfea686e981b6c5"
last-modified: Mon, 31 Oct 2022 19:01:05 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 262, 36451
x-fastly-request-id: b7610e3b106aa8f7b0f5f87dcd99a1831b39f866
x-served-by: cache-iad-kjyo7100155-IAD, cache-bma1635-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GeA%2BZa02cuPE8mhonBTdXcth2KkO1hFsABs6f3SQQCuqk9vKI9xn5CnFotwVH9yrIcTeoEvz4fSnryNRie4xhStvj0cTrmlaRC5%2FBQpQIAxqNNCuSCZhcUR%2BAZHnkqZGsZX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/app_assets_modules_github_parse-html_ts-app_assets_modules_github_settings_actions-policy-for-20fec4-be486aa3ffdc.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_parse-html_ts-app_assets_modules_github_settings_actions-policy-for-20fec4-be486aa3ffdc.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_parse-html_ts-app_assets_modules_github_settings_actions-policy-for-20fec4-be486aa3ffdc.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745784fb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"96dba8741170e6ade5d8006ea70b403e"
last-modified: Mon, 21 Nov 2022 20:33:31 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 47, 373
x-fastly-request-id: 69cc6b25aab472432e984515646e940b73bc20bc
x-served-by: cache-iad-kiad7000116-IAD, cache-bma1654-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y7VeWMRVNBvuiPWpRj8Az7gqCOhEqsWRkIlGda8R7Dnekaikknz6rnv1rOc78QC3zMW5fH3sNb6pRCdY7WOF8Uoj7EXDnuMJ9p%2FpySX0h0Y5BBjgJFQ6K8x9cz31wVHQZ2nS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_mini-throt-31d1eb-ead65925a38e.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_mini-throt-31d1eb-ead65925a38e.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_mini-throt-31d1eb-ead65925a38e.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457847b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"700ad3b906a7582f35abbdfa9e81c541"
last-modified: Mon, 21 Nov 2022 20:34:06 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 14, 54653
x-fastly-request-id: 8e39411206f7b36c451797c982633e61d2acb58b
x-served-by: cache-iad-kjyo7100047-IAD, cache-bma1649-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FdvBGO8uwXrd2QzbwmAKH056o0967OyBHI8aid0pqZTo78E8dVrz9eH9vM%2BZgsWeBaYUAOLMcNDAtOdis%2F3PJrPtP%2BfpoJwdDwyzsNP6co2SWV1WUDqYpIMnJQ75bZFKESnr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_remote-form_dist_-ece2b0-917c0dad4566.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_remote-form_dist_-ece2b0-917c0dad4566.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_mini-throttle_dist_index_js-node_modules_github_remote-form_dist_-ece2b0-917c0dad4566.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457837b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"653b9d51a2429bf94f17622f991e3a7e"
last-modified: Mon, 29 Aug 2022 17:07:00 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 4907, 6696
x-fastly-request-id: 4c1c26274cfbbecdf1ebaef41516b3a35591ada5
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1643-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kgcir28VBN6FPbaBmdf6CHZHRzyDiYu0MgoUeWCOCHs4mJAmvNa2gGgLlBdFlyDZd6wZ9b1ecxYpRUD8vCIcB5J05LLVxVD4n2hmKlDlQydG3QyizRmPICMx1n0FwL1%2FIbWc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/app_assets_modules_github_ref-selector_ts-2ef6ded89582.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_ref-selector_ts-2ef6ded89582.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_ref-selector_ts-2ef6ded89582.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745784bb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"6f311f35153321304d8dc0722b9baf7d"
last-modified: Thu, 08 Dec 2022 00:42:09 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 55, 2041
x-fastly-request-id: 4b629999bc8d6b55280d221a3509e09ce99bbaf7
x-served-by: cache-iad-kiad7000020-IAD, cache-bma1629-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nqr8RsPabHS5JQ2s4Wp9LPXJ1IyYYEL%2BzcOsj7MEcvW6WA5CA6qohjyg%2FjbTitjVsSaavoDob80QXJ4%2BVttz8BZNXxj9btHY3%2BiGHRN5uWABWbmrGpYQ8tIRJNudkQmugD3V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hub.dubids.tk/login?return_to=https%3A%2F%2Fgithub.com%2Faliuq%2Fcf-proxy%2Fblob%2Fmaster%2FREADME.md | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2hub.dubids.tk/login?return_to=https%3A%2F%2Fgithub.com%2Faliuq%2Fcf-proxy%2Fblob%2Fmaster%2FREADME.md IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /login?return_to=https%3A%2F%2Fgithub.com%2Faliuq%2Fcf-proxy%2Fblob%2Fmaster%2FREADME.md HTTP/1.1
Host: hub.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: text/html; charset=utf-8
cf-ray: 77649740eaf7b509-OSL
access-control-allow-origin: *
cache-control: no-store
strict-transport-security: max-age=31536000; includeSubdomains; preload
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
cf-cache-status: DYNAMIC
access-control-expose-headers: *
referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
set-cookie: _device_id=5a32f98c654a231d3e677e654f69b74c; path=/; expires=Fri, 08 Dec 2023 09:49:24 GMT; secure; HttpOnly; SameSite=Lax
_octo=GH1.1.362874388.1670492964; domain=.github.com; path=/; expires=Fri, 08 Dec 2023 09:49:24 GMT; secure; SameSite=Lax
logged_in=no; domain=.github.com; path=/; expires=Fri, 08 Dec 2023 09:49:24 GMT; secure; HttpOnly; SameSite=Lax
_gh_sess=Kokv0o7uiZrzNpy1FvBWCznFtB4uoJIe5UitxgObFImXRsc8Gkmb6ktFCVKHAJnzfmcmSniG4tSdcGgo5lToiunpUiBjxZHL5hGU6gKop%2FFMLUfXXuSp7nHQDy65NGvoWS0iM0VWBxqBAp171%2F%2BpL6myuSikZPFFttZ6QK%2F5q1prQg51WjMiJi1E3KNNfv5n1dkavqeIzXeWzkE4PDmQ6SrHsUB9vCHqzRf%2Bc0vWW5QCY8WRauUPVsqft01smDg%2Fc0Sub7si3E6QGczMZ4d6ng%3D%3D--RIns5EsNSUFytT0v--Jj71e2WAJz7MqENIXRPlsA%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
x-content-type-options: nosniff
x-frame-options: deny
x-github-request-id: 8382:3705:741E882:77C5F27:6391B324
x-xss-protection: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8eGXzWuTFNR%2FcdRHLFR%2BbB1tdRu9qAndX5t%2F%2BkIBj1isDgT1PeTv7dG9BRifD%2FUc4DHReOH7CKpyefqUx1nqpgCFSlfB1liNk1IdcZuGDRgyOzFG8oSuKtmGQuMWJgKT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_alive-client_dist_index_js-156187f13fbb.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_alive-client_dist_index_js-156187f13fbb.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_alive-client_dist_index_js-156187f13fbb.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457835b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"b9a721bc019bbf5aeec972ce57eb1c48"
last-modified: Tue, 25 Oct 2022 06:52:08 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 9683, 30178
x-fastly-request-id: b6794a89c5f0a5ffb110ccc29e4dbe00b480d297
x-served-by: cache-iad-kiad7000164-IAD, cache-bma1667-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dAp1hPClME4Xg%2FTh%2FpG189cX7qaBaUQQZyDniJYaYddprD3on%2FY1X0YUeZm00oyw%2FBqPnG3Jq0we4hKcD9gWaeqMTDfoxm4HqwLG6DXZp9kPNDm0qggvbGjZnn1vofTKxB9J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/github-ed372cf0a5db.css | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/github-ed372cf0a5db.css IP104.21.94.161:0
GET /assets/github-ed372cf0a5db.css HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: text/css
cf-ray: 77649745885cb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"234894127c601a4aa9befa966703c324"
last-modified: Wed, 07 Dec 2022 15:57:47 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: MISS, HIT
x-cache-hits: 0, 4093
x-fastly-request-id: 6c925760a3cf405c7e66809d18d69dd5e8fa17aa
x-served-by: cache-iad-kcgs7200049-IAD, cache-bma1627-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BCptEnuwa5KRj%2BgdMoO0PKPoHFmpFo5vG3p1Sz3h2jOqTr9EKJJyXxlEESjVQNZjsHXAj3klPYH0jz7I4f0aT7KgI2jPg3YU2xl3fzfkRFCYP4rLVSmPhmu89KfyTn3e9VRT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_primer_view-components_app_components_primer_primer_js-node_modules_gith-aa5398-aca9d5983f34.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_primer_view-components_app_components_primer_primer_js-node_modules_gith-aa5398-aca9d5983f34.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_primer_view-components_app_components_primer_primer_js-node_modules_gith-aa5398-aca9d5983f34.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745782bb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"78d786a687b8d61837af06feb5bf2d3b"
last-modified: Thu, 08 Dec 2022 02:57:10 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 56, 1949
x-fastly-request-id: a90c68c97230fcceedcdd90fd2edf315ea59efa6
x-served-by: cache-iad-kjyo7100076-IAD, cache-bma1674-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H1Bf1%2Bix42HA9i3hrtBppSmx9knXQW3VQwxcVlV%2FlyL5G2hLchHQ%2BI7ZV5vleXUM7DmZyF5mY8S0J9VLq64ADbCOfsfUFSEefkxbJYMbTGI1HiSheioToBSlGFCTZFIIPLN%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/sessions-119c16758ba2.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/sessions-119c16758ba2.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/sessions-119c16758ba2.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457853b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"fca13db2cf5dc54358b166bbe08292fe"
last-modified: Thu, 01 Dec 2022 23:08:00 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 15, 21024
x-fastly-request-id: 0faeada6ab236ba81826ef44706844840d7e0582
x-served-by: cache-iad-kjyo7100044-IAD, cache-bma1677-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ME4kaoUf5bu3JV3Od5xB7CAyqKLDRuU%2FcEgqoCPWrxYlbo1XDV0EWiqUs0oKYRDn1HN7pYcy24BzYLPqSSduhqJjuO5f23XWIc3Bf%2F%2BGfk3%2FXSdBoePKj93LMhzmtovPs3ts"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-17abfd-e5695ecb0f0c.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-17abfd-e5695ecb0f0c.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_catalyst_lib_index_js-node_modules_github_hydro-analytics-client_-17abfd-e5695ecb0f0c.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457831b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"750d7913dc7b7a78417f8a728e2dcb08"
last-modified: Wed, 07 Dec 2022 04:40:10 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 48, 7758
x-fastly-request-id: 3e5c6718ee866cc32ea75fc8b9ad782bfe14c821
x-served-by: cache-iad-kjyo7100103-IAD, cache-bma1656-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PuUjEaGyrTIj2aVhz52YOosAZNOsK01TNAPyorX8Hx%2BADKwkBAu1KuEf2SsANLe9x%2BAnA8%2FJVSciP8jd1oLQ%2FeMYD50etIgSqAKLqPS%2FFQmMNJG5UTnS6JZ7yq8Pv4PKGzi7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_text-ex-3415a8-daf4603c6e6b.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_text-ex-3415a8-daf4603c6e6b.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_file-attachment-element_dist_index_js-node_modules_github_text-ex-3415a8-daf4603c6e6b.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745782ab529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"36aff40644c0d4ccb9e5a2804dc9953a"
last-modified: Mon, 24 Oct 2022 07:43:04 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 427, 77126
x-fastly-request-id: 2b3626cefaa3571830af08a6f3f2e1f1b2278796
x-served-by: cache-iad-kiad7000066-IAD, cache-bma1631-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aOF5%2BglyvWhaPWTP%2Fp4bQlv6bcB%2FzEK4u1Z9XFeN49x%2FriYoBDG6qCZCBL84bONU3UZ0iAsw0oPfnETr5cw1P5zYn7lwukS20fMH%2BEhZBFxJmE8MA8vRmeVRjHuw5%2BtNyLDw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/app_assets_modules_github_filter-input_ts-9a9c80af1376.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_filter-input_ts-9a9c80af1376.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_filter-input_ts-9a9c80af1376.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745784ab529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"b807655ffc3fe587867925bd45ebe507"
last-modified: Wed, 07 Dec 2022 15:57:32 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 31, 471
x-fastly-request-id: bc37e1f8221ed90670657b1fa06cdd3bf4dc76bc
x-served-by: cache-iad-kiad7000099-IAD, cache-bma1670-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sQTCOneAHAqqLsAh4MHZO4uIFiTwzWDJwgazv9c%2Bcfkt%2BIbZZokn8H7WgiW%2B6ibxFOHv5CAAf%2FJYZy%2BlO4%2FgQX8UgBxAiHWczOZGvzxbHx8cOm4Ie1IijmScYBrNRb8d7%2Fd5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_manuelpuyol_turbo_dist_turbo_es2017-esm_js-af11d99b3e65.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_manuelpuyol_turbo_dist_turbo_es2017-esm_js-af11d99b3e65.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_manuelpuyol_turbo_dist_turbo_es2017-esm_js-af11d99b3e65.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457834b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"ee964c22edc4e5904b361bb38f71aab2"
last-modified: Mon, 14 Nov 2022 18:09:06 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 45, 91437
x-fastly-request-id: 1e14d6a1df385dfae023e0d269f385f4bde5e8df
x-served-by: cache-iad-kiad7000126-IAD, cache-bma1627-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LF%2FV0s1oC6caAJemQrzmDapkFPS1MBpDcumzSHOOznmQNu%2BP5XYDwismZxL%2BDHLmLH6S9NweBf4HUZT1KG1zh9di6OayZY4B0qk2XSIK42lrQpVEiF8XTMNsQ4tnj1mlN3aN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/primer-cd5f115a3ed9.css | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/primer-cd5f115a3ed9.css IP104.21.94.161:0
GET /assets/primer-cd5f115a3ed9.css HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: text/css
cf-ray: 77649745885bb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"b3f823511be2a55458b8df6bee56b03d"
last-modified: Thu, 08 Dec 2022 02:56:57 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 62, 1973
x-fastly-request-id: b73bc7c1cf965649f78e25fbcfe0a8c3bff02641
x-served-by: cache-iad-kjyo7100079-IAD, cache-bma1624-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Y81HocSA%2FbqEPH4cgUu0UnEFhQHV%2FwrCdxHb0jYJlac%2BWLc6tLTBKDHkkCsLbPdj1h6eARVJS13og%2FGPCtjs9o3Hy5CIUCnqhLSZ2m7UOB3g5SYpDNsaxzMg%2FDPgN9CAj8V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/settings-4aace67f67bc.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/settings-4aace67f67bc.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/settings-4aace67f67bc.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457850b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"b565226c5f4b90dc278d74beacd9f4fb"
last-modified: Thu, 08 Dec 2022 06:36:58 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 11, 110
x-fastly-request-id: 7bb65da9278c85f764aa549cd19d52ea6c5da927
x-served-by: cache-iad-kiad7000106-IAD, cache-bma1629-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Odj52jajZVUZ1%2FYKGA5vHehnOtR51bxIKMaRBjiYtWJI4rvfzgVScGKkW5NcQ9xGHh7ovIZOIodmaBkEM0Xsz1OaS5w69MluYSQ7WiO8luLc%2BbI2vfSWyRh%2Fl7gMv%2FMDB9Hd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/light-719f1193e0c0.css | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/light-719f1193e0c0.css IP104.21.94.161:0
GET /assets/light-719f1193e0c0.css HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: text/css
cf-ray: 77649745885db529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"8ec3214af15081686dd359ec817cbe9c"
last-modified: Thu, 27 Oct 2022 18:38:48 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 13, 110437
x-fastly-request-id: cdd2f33b47d6f5dad927d7964fba04f8076e5a72
x-served-by: cache-iad-kiad7000130-IAD, cache-bma1657-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2y02S4f0SAeq2MQEUNTmLH%2FKzlbhwynIKkdTihpEY5005yCFW0l%2FwUFJAfOmNRHDnepw%2BTBu6nOd9MsBA2N9YaMqlwhMziIcws4UiCRjw%2B6scYoxtE39HjQMwXnEJTG1jrdR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-53c5902c854f.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-53c5902c854f.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_remote-form_dist_index_js-node_modules_delegated-events_dist_inde-94fd67-53c5902c854f.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457851b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"47d2dc739ea91245ba7e903dd74fc5ec"
last-modified: Thu, 01 Dec 2022 23:08:11 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 45, 7164
x-fastly-request-id: 2e300a1509b545d654e897ca39a83e519427297b
x-served-by: cache-iad-kiad7000046-IAD, cache-bma1636-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e01FESoAAqpIjH2MaMaCN6twb7Q%2BAukQTF2nDp4jCXf5rCwXgDwXqGQgttOu0%2BfclkDpq4d341%2BLAz1behv0kPs1ItgzlLJVpRIlnaWXvBP6FxZYU5D41saa1%2Fv1F%2FmUR8Dq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/app_assets_modules_github_orgs_invitations_ts-app_assets_modules_github_safe-storage_ts-app_a-404e5a-5dfa66381d42.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_orgs_invitations_ts-app_assets_modules_github_safe-storage_ts-app_a-404e5a-5dfa66381d42.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_orgs_invitations_ts-app_assets_modules_github_safe-storage_ts-app_a-404e5a-5dfa66381d42.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745784db529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"25fe15762122d7a9f74fc3baef9f3a26"
last-modified: Thu, 01 Dec 2022 23:07:33 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 21, 379
x-fastly-request-id: ed0e2013a651c3ff4b179a9960deb8a0e958225f
x-served-by: cache-iad-kcgs7200020-IAD, cache-bma1627-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k%2FCn4IP%2FTw7bv3iSlpOwy49QzILIoUAe0kueStXgmbScETYJ1S6iP0FLu86Rm44cYtQ15oX5%2BFXzW7fEWgi4oVkpfgMmZ6vLnfHOSZeOrGmz6GtWZBQPKEIcix4YLEJILvWo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_paste-markdown_dist_index_esm_js-node_modules_github_quote-select-f12f19-f987ad18f3a3.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_paste-markdown_dist_index_esm_js-node_modules_github_quote-select-f12f19-f987ad18f3a3.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_paste-markdown_dist_index_esm_js-node_modules_github_quote-select-f12f19-f987ad18f3a3.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457839b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"7d8e8d98361fe5fe3faec9ed20174a90"
last-modified: Wed, 07 Dec 2022 04:40:10 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 5, 8020
x-fastly-request-id: 8829a47ca163437d0361555f5233f57047c32c2c
x-served-by: cache-iad-kjyo7100154-IAD, cache-bma1675-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OMP77pIkBfp2q9xZheHlAFqBNEfsJoipAjWLGflGAHyZeZvLn%2BbyfTCzxyA3HV105etgDD%2BBqUpF8g%2Fiod4SNBgxUKPv7pFAO9DgNdb5CYg2EFqlIY%2Fy1ASjcvJz9ZA7S1OE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/element-registry-a67d4661e8bb.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/element-registry-a67d4661e8bb.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/element-registry-a67d4661e8bb.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745782db529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"b60bfda21bcc6f7171b961b4974edd73"
last-modified: Wed, 07 Dec 2022 15:57:42 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: MISS, HIT
x-cache-hits: 0, 4227
x-fastly-request-id: e0ebaf839be7bd41f32325b423e02c39a98c7939
x-served-by: cache-iad-kiad7000070-IAD, cache-bma1674-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rI%2FO5ljI%2BBlFw2gv3EBqWUazYYADx%2Bb%2BSF0e%2BeTUE8ukVgAv8XqNxuwgwnPt0HufBBeLJcd5cfWJDgxw40vJCyCvb6BFGd1W5ZMFP2DtSywN8HOC6vJnpWRpFNB0UYnW67pz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_fzy_js_index_js-node_modules_github_markdown-toolbar-element_dist_index_js-5936f45973f5.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_fzy_js_index_js-node_modules_github_markdown-toolbar-element_dist_index_js-5936f45973f5.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_fzy_js_index_js-node_modules_github_markdown-toolbar-element_dist_index_js-5936f45973f5.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457828b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"e57892b411a90f2f4e75998c4a8ce69a"
last-modified: Fri, 14 Oct 2022 23:40:33 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 627, 8163
x-fastly-request-id: bdbe5ee904eccc1879a26ace5424f5749f95651c
x-served-by: cache-iad-kjyo7100041-IAD, cache-bma1672-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NwMoOpJOoqahJ4bEp5GUJwDxYvqGThvXvieHWhkY69mCZKfrFZRVYHtpJzc99oP1MiY2U6SQqDVZyh%2F8Rq%2FzKq9RdyemqK447dN54GGLblWQBkMSpqU5fq0%2FvHH21%2Be5N4TS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/dark-0c343b529849.css | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/dark-0c343b529849.css IP104.21.94.161:0
GET /assets/dark-0c343b529849.css HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: text/css
cf-ray: 77649745681fb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"48c53d44b57626128ca4e9e0d0ea6dec"
last-modified: Thu, 27 Oct 2022 18:38:36 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 14, 107632
x-fastly-request-id: 25b02f73dfef3f1ead43f1287aa792237928c973
x-served-by: cache-iad-kjyo7100044-IAD, cache-bma1673-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pVBL3GFFwFu886nuZeKfCToCPFBTARrG5mOvND%2FdnBUBHx6TIlHy25ZabOr0BngaaSR8psOfJ%2FEU%2BDlfntD4miWW2UDD35Dy%2FMZOl18ZmGlgJr3XoyPHZGmBKCQwTl1x6n72"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-8b135c9d75cf.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-8b135c9d75cf.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_virtualized-list_es_index_js-node_modules_github_template-parts_lib_index_js-8b135c9d75cf.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457845b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"b8e2c04688f5631a3053326cb1aaefc1"
last-modified: Thu, 17 Nov 2022 16:01:06 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 781, 8327
x-fastly-request-id: c710d761a3a048de383838257ad5058b6716610f
x-served-by: cache-iad-kiad7000066-IAD, cache-bma1660-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x0lHCc8h5x7bAxTp1f0plWCkhsQdkjxiF1%2BI0vWITpfUqZ4csOHao5EwmFJxXGi6qjPoN8hzELMHGGSTkK6UEquNyfCittAwleUxwKLcgxy0Jr1D8cc7YvpzBcuFQxD7aL3%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/github-elements-8bcd745975ba.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/github-elements-8bcd745975ba.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/github-elements-8bcd745975ba.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745782cb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"92fd2adcf6a41c8dc29a2db9f9741930"
last-modified: Thu, 08 Dec 2022 02:56:50 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 61, 2002
x-fastly-request-id: 0898a17193d86e760ab71cdf7bc2ca20de46d90b
x-served-by: cache-iad-kjyo7100024-IAD, cache-bma1633-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cBn614%2FB4lWNKIxgXA6iWJpLUbC04yOjfxeszi7jfAYMGAoCqqd0w8vMm43M29YU9DS0YhklxYO85Il5MxNV1z%2FjG6ZZEJz6s22aQBi5ydblvGuKctNferobp0SO66krFOuR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_lit-html_lit-html_js-e954e8c01c93.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_lit-html_lit-html_js-e954e8c01c93.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_lit-html_lit-html_js-e954e8c01c93.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457830b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"b4f8ff1531185872d0e5c72623b2f668"
last-modified: Thu, 14 Jul 2022 03:28:38 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 7629, 101242
x-fastly-request-id: 001cebfadfe0ad756f9db3f49a8ad15d8171f51a
x-served-by: cache-iad-kiad7000050-IAD, cache-bma1657-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1QGh02B72piGta2XkkZPYlynAPM%2F12OSKpCyejyUs762T8sxcfAMX1w2zFrUny8lpMcXlx8O8r%2Fny21MJVsJhu15Mq4Hf0iEiGiFmmOotBqK1Lxn6jO6goVDaEwUEpfPc2eP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/app_assets_modules_github_updatable-content_ts-62df1309213c.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_updatable-content_ts-62df1309213c.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_updatable-content_ts-62df1309213c.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745783cb529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"9e94bd078870237d34f8bca6f8555ddf"
last-modified: Wed, 14 Sep 2022 17:47:25 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 1, 76544
x-fastly-request-id: 06a709ecaf81cae1ef25e06dd6ebdeeb2ee4a1e3
x-served-by: cache-iad-kiad7000099-IAD, cache-bma1651-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fLOfnI9Jch5l8BofJbrK%2Bk8Ixgs2%2F5mSQDnsAQmc6661hWXPz0kJPV7j5CsfkTq9%2BUAWez9N7MArq08LerheaIcI5y8DpOxWJnJg8b8UC1t%2BiHxiTSfqyKzAW6WfE25xcWhU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/wp-runtime-943ba66c9395.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/wp-runtime-943ba66c9395.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/wp-runtime-943ba66c9395.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497458861b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"87b337d0d3bde2d15415ddd55b183673"
last-modified: Thu, 08 Dec 2022 05:52:10 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 42, 1260
x-fastly-request-id: 17e9e5dd33ebc44154d2f1d0e555da68c670cc98
x-served-by: cache-iad-kiad7000093-IAD, cache-bma1640-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YLzzEYPQmuavZg4Si9LG9LZx8B3%2B73oH05IKEP6ckHAUBvOPUdwUngVSJvVwgbvoaNW%2FdG3g25Ar%2FTgg934MlaJHcAEsWMM427cpKbwioreZZqa4wX3R%2BriYNbP0onyyYKqe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-73b750-ab4920e0b37a.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-73b750-ab4920e0b37a.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_github_filter-input-element_dist_index_js-node_modules_github_remote-inp-73b750-ab4920e0b37a.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457829b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"456ecd2aac949eb25efd74498399e646"
last-modified: Wed, 07 Dec 2022 04:40:10 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 49, 7962
x-fastly-request-id: 9b2aa0ffc323736eb35476c679f2ce681e35edaa
x-served-by: cache-iad-kiad7000033-IAD, cache-bma1633-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wQDiAeDOFCqnlMkir5AB7ZkjRHEtqRUO19sYaQcwuMW46FTilPOEWeevpgAkqJYfT9LFDKh%2B6c2EyuUYJq5sOZ%2FkENUfhKcTvhpSScYNhXC9OuBjJ4UiUcwAobuk4HujFgEl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/environment-ebbcdf68bab3.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/environment-ebbcdf68bab3.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/environment-ebbcdf68bab3.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457823b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"0238d438877605f318566080ed1fd2b8"
last-modified: Thu, 01 Dec 2022 23:07:45 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 11, 28571
x-fastly-request-id: b2f153a6399aaf98cf8d1b307593201a24f7d9a0
x-served-by: cache-iad-kjyo7100074-IAD, cache-bma1622-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PWDcJF5xiwHNJ5yy75nWtz4yNKvFel97gJoeLw6j3VamsnTJNzdhhHmT8AF%2FgAPRc1h0OrJTbT5sD9EVuyimg7o05DGoReba4%2FV881D0c21%2BMB1HqXjB76akWre6F3vrkrlA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_selector-observer_dist_index_esm_js-650337916dbd.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_selector-observer_dist_index_esm_js-650337916dbd.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_selector-observer_dist_index_esm_js-650337916dbd.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457825b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"7ffa932ba7fa12e44f4ad23c7114b3f8"
last-modified: Thu, 14 Jul 2022 03:28:39 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 1142, 75070
x-fastly-request-id: 20b91c2b35c09fef67be5b861268397a6b2967fc
x-served-by: cache-iad-kiad7000125-IAD, cache-bma1647-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QxI19K6OtOpMHpds9xHR2T%2BT3aKRfxiL77AEI6w1OlYdUMrP2vQ4GDYniBt5AXtJ9fqLcp1CveLy%2FQ%2Ban4Mq8GCeBizCnbelc49K8ZAgNa9PL0ZK09aJ%2BLwYVnrZIF7Qv2w4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_details-dialog-elemen-63debe-4a2f37f7419e.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_details-dialog-elemen-63debe-4a2f37f7419e.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_delegated-events_dist_index_js-node_modules_github_details-dialog-elemen-63debe-4a2f37f7419e.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497457826b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"a85f52a530e3c6fb16c3cd46c8d5d13d"
last-modified: Thu, 14 Jul 2022 03:28:37 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-expose-headers: *
x-cache: HIT, HIT
x-cache-hits: 2, 97539
x-fastly-request-id: 717ecaa9a0d5f815b8fffa70e8caeaa17ecc2617
x-served-by: cache-iad-kcgs7200084-IAD, cache-bma1673-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZdoUjtDpn2raAxEnx9lhoMvs2%2FE4CyWt7nZrbCKx224MmvGarmjvW7peQL%2FhF1VrtApmFLwz7Y7DwDS7nXTj7d0yLUcpzKkW3SD5TZ95VYAbTri%2FG9d3CypaWC5xNURJCBKx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/vendors-node_modules_smoothscroll-polyfill_dist_smoothscroll_js-node_modules_stacktrace-parse-297da6-aaa32681a0b3.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/vendors-node_modules_smoothscroll-polyfill_dist_smoothscroll_js-node_modules_stacktrace-parse-297da6-aaa32681a0b3.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/vendors-node_modules_smoothscroll-polyfill_dist_smoothscroll_js-node_modules_stacktrace-parse-297da6-aaa32681a0b3.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 776497456821b529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"8b887638d0149cbd9e8c4719fb8dd896"
last-modified: Mon, 05 Dec 2022 17:00:08 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 27, 14532
x-fastly-request-id: 62f8383b1b678b1baa040c21cfd5623b37c177a7
x-served-by: cache-iad-kcgs7200107-IAD, cache-bma1634-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5PVTyW%2F71GHLMRIgBRRUqZzyWC1ojUwGX65oKsio8lOJ5X5UqxtRbZ6Ea5FXmUFFQRDS7r%2BPf%2FrL%2FGmv4ZfJ4k2b7vG1S1vZUevyVQPzZheQXxYt3bjgbKXtwNKSufiNwZ5S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.dubids.tk/assets/app_assets_modules_github_sticky-scroll-into-view_ts-39278b4d6f66.js | 104.21.94.161 | 200 OK | 0 B |
URL HTTP/2assets.dubids.tk/assets/app_assets_modules_github_sticky-scroll-into-view_ts-39278b4d6f66.js IP104.21.94.161:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /assets/app_assets_modules_github_sticky-scroll-into-view_ts-39278b4d6f66.js HTTP/1.1
Host: assets.dubids.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hub.dubids.tk/
Origin: https://hub.dubids.tk
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 09:49:24 GMT
content-type: application/javascript
cf-ray: 77649745783db529-OSL
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"8798ed620c17e4d65292b46a25b480f7"
last-modified: Fri, 02 Dec 2022 23:27:30 GMT
strict-transport-security: max-age=31536000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
via: 1.1 varnish, 1.1 varnish
cf-cache-status: MISS
access-control-allow-methods: GET
access-control-expose-headers: *
access-control-max-age: 3600
x-cache: HIT, HIT
x-cache-hits: 31, 24338
x-fastly-request-id: 81823b4b9014002f34f69e07ccec5b0484a601ff
x-served-by: cache-iad-kiad7000127-IAD, cache-bma1641-BMA
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hGl1ZLIb6qKOrwYlP6YyMMdTLf1SV3NX7vOA02SIHeHQgZdkUtektMlHWb5ZzMaGbBMGC%2B4lJ7HaEuocS2QfgXCxd4xB%2FXCinEve5QkP43V7quzpgbHCsVl5uc%2BN9y1s0GSQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
104.21.94.161