Report - joingroup18wa.otzo.com/

Report Overview

Submitted URL
joingroup18wa.otzo.com/
IP
57.129.0.52
ASN
#16276 OVH SAS
Submitted
2024-04-24 04:38:07
Access
public
Website Title
Join the viral group
Final URL
joingroup18wa.otzo.com/
Tags
dyndns
urlquery detections
Suspicious - DynDNS domain

Detections

urlquery
6
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15	2024-04-22	465 B	8.4 kB	104.18.10.207
joingroup18wa.otzo.com	unknown	unknown	No data	No data	2.3 kB	47 kB	57.129.0.52
i.ibb.co	13485	2010-07-20	2018-11-25	2024-04-22	3.1 kB	309 kB	162.19.58.157
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-22	540 B	48 kB	216.58.207.227
site-assets.fontawesome.com	299062	2012-10-18	2022-02-10	2024-04-18	450 B	83 kB	172.64.147.188
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-23	489 B	22 kB	142.250.74.106
unpkg.com	11693	2016-01-06	2016-01-08	2024-04-23	442 B	64 kB	104.17.247.203
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-22	932 B	36 kB	104.17.25.14
cdn.statically.io	10364	2019-05-05	2019-05-15	2024-04-21	928 B	2.0 kB	151.101.65.91

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-23	medium	joingroup18wa.otzo.com/	WhatsApp
2024-04-23	medium	joingroup18wa.otzo.com/	WhatsApp
2024-04-23	medium	joingroup18wa.otzo.com/	WhatsApp
2024-04-23	medium	joingroup18wa.otzo.com/	WhatsApp
2024-04-23	medium	joingroup18wa.otzo.com/	WhatsApp

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-24	medium	otzo.com	Sinkholed
2024-04-24	medium	otzo.com	Sinkholed
2024-04-24	medium	otzo.com	Sinkholed
2024-04-24	medium	otzo.com	Sinkholed
2024-04-24	medium	otzo.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js	90 kB	2023-03-07	2024-05-06
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-06 00:47:53 Times Seen266127 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	joingroup18wa.otzo.com/	2.7 kB	2023-07-29	2024-05-04
Pretty URL joingroup18wa.otzo.com/ IP 57.129.0.52 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-29 20:36:57 Last Seen2024-05-04 07:00:26 Times Seen14 Hash a0f24ba0be80713a2483ac5c50dfcf3a cdfc3ad299de19a184b2489d2e3884de7cefe9cc 6745b51ffaacb2c475edbe2a82e51811d6bf677074550dcd8cba1128d2ed1feb Loading...

HTTP Transactions (21)

URL IP Response Size

joingroup18wa.otzo.com/

57.129.0.52

200 OK

2.7 kB

URL User Request GET HTTP/2
joingroup18wa.otzo.com/
IP
57.129.0.52:443
ASN
#16276 OVH SAS

Certificate
IssuerLet's Encrypt
Subjectjoingroup18wa.otzo.com
Fingerprint30:45:31:B3:D5:18:0C:EC:D6:54:B3:82:8E:1D:E5:D8:06:5B:4E:92
ValidityMon, 22 Apr 2024 13:34:20 GMT - Sun, 21 Jul 2024 13:34:19 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
2.7 kB (2705 bytes)
Hash
61e77c08b9af8676c50179f9f5c77642
08c162bc2d796da61cff90b5913d3fd64ae2725f
070e11bde050b8c1af3674f70916b1261a1a3e0cdbe5b1c2274bbeb3ff29258a

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: joingroup18wa.otzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 2705
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 04:37:37 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css

104.17.25.14

200 OK

5.8 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
5.8 kB (5845 bytes)
Hash
e9365fe85b7e4db79a87015e52c3db6c
2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9
dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56

HTTP Headers

GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1114611
expires: Mon, 14 Apr 2025 04:37:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yhz2NTXHQazlUxsjjsf2jqyzeNQOHIBNFuj9jpTPr7BbFeS3%2F4wtAx6OWWlKkfMzqqElHj4K3KJnDQSs8h3cQ5gZ6r2LTr1GFwCCK1frHJlgCkI49a%2Bbv%2BSKhu2448Gw2GrJCwrb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87936630f8b15699-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
28 kB (27938 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://joingroup18wa.otzo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3458965
expires: Mon, 14 Apr 2025 04:37:38 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bu%2FVrivsL%2BXg0rMU1hebxc8hukSbX1S%2BIGLrSTEk3rEqF6tUhTaLGqUkcG5Cl0AINe%2BrhZap2CRq8nbTr6rZKqo6IT4H2lpXufCV3Sr%2FHc8O79cc43glBB%2FEn9z7HGAGZv5L7l6L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879366310d3c1bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

joingroup18wa.otzo.com/bagas/style.css

57.129.0.52

200 OK

869 B

URL GET HTTP/3
joingroup18wa.otzo.com/bagas/style.css
IP
57.129.0.52:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectjoingroup18wa.otzo.com
Fingerprint30:45:31:B3:D5:18:0C:EC:D6:54:B3:82:8E:1D:E5:D8:06:5B:4E:92
ValidityMon, 22 Apr 2024 13:34:20 GMT - Sun, 21 Jul 2024 13:34:19 GMT

File type
ASCII text, with CRLF line terminators
Size
869 B (869 bytes)
Hash
a716833266e8e826f104609933d38ae4
e31bd510272f1b8b2e5b98f2b420867563633b73
14c22cafe6cf8956330c819699f762b1160f1989db7f81a2639e5b9ba5633cc0

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bagas/style.css HTTP/1.1
Host: joingroup18wa.otzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:37:38 GMT
content-type: text/css
last-modified: Wed, 20 Jul 2022 20:18:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 869
date: Wed, 24 Apr 2024 04:37:38 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

joingroup18wa.otzo.com/bagas/bagas.css

57.129.0.52

200 OK

950 B

URL GET HTTP/3
joingroup18wa.otzo.com/bagas/bagas.css
IP
57.129.0.52:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectjoingroup18wa.otzo.com
Fingerprint30:45:31:B3:D5:18:0C:EC:D6:54:B3:82:8E:1D:E5:D8:06:5B:4E:92
ValidityMon, 22 Apr 2024 13:34:20 GMT - Sun, 21 Jul 2024 13:34:19 GMT

File type
ASCII text, with CRLF line terminators
Size
950 B (950 bytes)
Hash
ae8f5eac80c514b6ccffce75de1d2d70
eff4b0347b7c8ea58833f35c07e177f80fd28ad2
a9510c5b947eedfa3d84fef078a623ebb72cd26a8acf9855a15521dffc430d62

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bagas/bagas.css HTTP/1.1
Host: joingroup18wa.otzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:37:38 GMT
content-type: text/css
last-modified: Thu, 13 Oct 2022 10:52:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 950
date: Wed, 24 Apr 2024 04:37:38 GMT
server: LiteSpeed

joingroup18wa.otzo.com/bagas/img/navbar.png

57.129.0.52

200 OK

8.5 kB

URL GET HTTP/3
joingroup18wa.otzo.com/bagas/img/navbar.png
IP
57.129.0.52:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectjoingroup18wa.otzo.com
Fingerprint30:45:31:B3:D5:18:0C:EC:D6:54:B3:82:8E:1D:E5:D8:06:5B:4E:92
ValidityMon, 22 Apr 2024 13:34:20 GMT - Sun, 21 Jul 2024 13:34:19 GMT

File type
PNG image data, 904 x 339, 8-bit colormap, non-interlaced
Size
8.5 kB (8459 bytes)
Hash
f29c416a7c6f18ba0c0deb4980763c9d
56c7bfbf2c9a7a2be2e2214b0586c11af8e852bf
7f37cb926c06378327ad2a753c7119291b2ead796a6f588a8374de651ec72a8c

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bagas/img/navbar.png HTTP/1.1
Host: joingroup18wa.otzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:37:38 GMT
content-type: image/png
last-modified: Sat, 15 Oct 2022 07:48:42 GMT
accept-ranges: bytes
content-length: 8459
date: Wed, 24 Apr 2024 04:37:38 GMT
server: LiteSpeed

joingroup18wa.otzo.com/bagas/img/model.png

57.129.0.52

200 OK

32 kB

URL GET HTTP/3
joingroup18wa.otzo.com/bagas/img/model.png
IP
57.129.0.52:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectjoingroup18wa.otzo.com
Fingerprint30:45:31:B3:D5:18:0C:EC:D6:54:B3:82:8E:1D:E5:D8:06:5B:4E:92
ValidityMon, 22 Apr 2024 13:34:20 GMT - Sun, 21 Jul 2024 13:34:19 GMT

File type
PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced
Size
32 kB (31990 bytes)
Hash
571fc0253c6f01c953d4274981fc9d66
5331c3ae96ea4d421f8bde0d3e5565024c8c3abb
d3a1d3bb7a7c79edc9a08de2369f4f7f201a0852bfaf5526716382fc7ad902a1

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - DynDNS domain
OpenPhish	phishing	WhatsApp
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /bagas/img/model.png HTTP/1.1
Host: joingroup18wa.otzo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Wed, 01 May 2024 04:37:38 GMT
content-type: image/png
last-modified: Sat, 15 Oct 2022 08:37:28 GMT
accept-ranges: bytes
content-length: 31990
date: Wed, 24 Apr 2024 04:37:38 GMT
server: LiteSpeed

i.ibb.co/zbkXm2T/165325118357786736-1.png

162.19.58.157

200 OK

62 kB

URL GET HTTP/2
i.ibb.co/zbkXm2T/165325118357786736-1.png
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced
Size
62 kB (62433 bytes)
Hash
33f21334f5aeb86592426eb74c07af91
7f1b33202136cc55e30f252f6bec94b2688521c8
5d49526636f767f53363cca37f93cd9c55dff76bda58abe340c584f5bf2162e1

HTTP Headers

GET /zbkXm2T/165325118357786736-1.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: image/png
content-length: 62433
last-modified: Sun, 22 May 2022 20:31:22 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/K7Q4Zwc/images-8.jpg

162.19.58.157

200 OK

17 kB

URL GET HTTP/2
i.ibb.co/K7Q4Zwc/images-8.jpg
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 460x610, components 3
Size
17 kB (17155 bytes)
Hash
7843b1d0c993b93e620046df4738713c
9cf2014249a6fccf0936968410bb9dce52069165
3f85439673af4c22cdb169a36c22625e0db317d41c3013e8121f7fdb40682cca

HTTP Headers

GET /K7Q4Zwc/images-8.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: image/jpeg
content-length: 17155
last-modified: Mon, 22 Apr 2024 14:05:07 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/F3vZnwC/images.jpg

162.19.58.157

200 OK

26 kB

URL GET HTTP/2
i.ibb.co/F3vZnwC/images.jpg
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 638x480, components 3
Size
26 kB (25723 bytes)
Hash
8eb10a57d5154d0f5d9cd8df4f4edc30
ad33cf2088bc307eab70ff0cd7e17ed0c883ea80
9e998099bde74fc0fb5160f4deeb818f706179565ccecc10ef771b36e91ee871

HTTP Headers

GET /F3vZnwC/images.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: image/jpeg
content-length: 25723
last-modified: Mon, 22 Apr 2024 13:29:23 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/Xy97zwR/images-7.jpg

162.19.58.157

200 OK

23 kB

URL GET HTTP/2
i.ibb.co/Xy97zwR/images-7.jpg
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 677x453, components 3
Size
23 kB (22585 bytes)
Hash
d17111b31e1a0ab3c419f443d6e68717
8d343af07c4449a20103c93ab8a408fb0531bf87
ba71120c1f322f85fe97dbd717750696d92e3b92bd855db8be2345ba1100b123

HTTP Headers

GET /Xy97zwR/images-7.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: image/jpeg
content-length: 22585
last-modified: Mon, 22 Apr 2024 13:50:14 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/rbbSxCv/images-6.jpg

162.19.58.157

200 OK

29 kB

URL GET HTTP/2
i.ibb.co/rbbSxCv/images-6.jpg
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 739x415, components 3
Size
29 kB (29352 bytes)
Hash
09974494aeac75e6f4d912b2b1d5c142
c207173be277cf09af1bf0a252262a959465e41d
854f7ebb5a0c72bc30143060b1cb94bab97c53e6461b583ad840a02c5ad4f3c2

HTTP Headers

GET /rbbSxCv/images-6.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: image/jpeg
content-length: 29352
last-modified: Mon, 22 Apr 2024 13:37:42 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/85YydzM/165325118357786736.png

162.19.58.157

200 OK

58 kB

URL GET HTTP/2
i.ibb.co/85YydzM/165325118357786736.png
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
PNG image data, 269 x 269, 8-bit/color RGBA, non-interlaced
Size
58 kB (57932 bytes)
Hash
aa63405defc4a0f45e3eeb0bb941e4f0
23caa69d63f63bfb74dbcaf720e5f89b91950d6d
1e7cac0abe9850f051add34f30f1cdd5b89c64ac6b1e4f22006a8cd624cfc16a

HTTP Headers

GET /85YydzM/165325118357786736.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: image/png
content-length: 57932
last-modified: Sun, 22 May 2022 20:29:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

i.ibb.co/5sB60s7/IMG-20240422-WA0013.jpg

162.19.58.157

200 OK

92 kB

URL GET HTTP/2
i.ibb.co/5sB60s7/IMG-20240422-WA0013.jpg
IP
162.19.58.157:443
ASN
#16276 OVH SAS

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerLet's Encrypt
Subjectibb.co
Fingerprint0C:8B:6F:2F:B8:9F:91:1E:3A:DD:B1:1B:45:47:B4:65:FD:56:73:3D
ValidityMon, 22 Apr 2024 06:29:44 GMT - Sun, 21 Jul 2024 06:29:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1080x1440, components 3
Size
92 kB (91531 bytes)
Hash
fcb2495de211cc6c82198eafc2c69dc3
835d5db926803beb5f37b20a1d023903afdfca96
7f4dc61f31ecb8118be042a272331351b773df62b8c15ec7b6355413dbf8a40a

HTTP Headers

GET /5sB60s7/IMG-20240422-WA0013.jpg HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: image/jpeg
content-length: 91531
last-modified: Mon, 22 Apr 2024 14:07:51 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.statically.io/gh/AlexHostX/all.asset/main/alex-facebook.css

151.101.65.91

404 Not Found

391 B

URL GET HTTP/2
cdn.statically.io/gh/AlexHostX/all.asset/main/alex-facebook.css
IP
151.101.65.91:443
ASN
#54113 FASTLY

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerGlobalSign nv-sa
Subjectstatically.io
Fingerprint28:2B:F4:9C:61:EB:4D:6B:10:9F:7B:C4:22:0E:C4:51:7A:DB:60:A4
ValiditySat, 26 Aug 2023 17:58:11 GMT - Thu, 26 Sep 2024 17:58:10 GMT

File type
HTML document, ASCII text
Size
391 B (391 bytes)
Hash
3ff5f3a7300ff541988649e1721d42f2
0844532f5097cdde9678e2edeedbadfe48614121
6172693305882d23af3cfd59637a7d2674a1cf96ee6794e4c8b82c13639c685f

HTTP Headers

GET /gh/AlexHostX/all.asset/main/alex-facebook.css HTTP/1.1
Host: cdn.statically.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-encoding: br
access-control-allow-origin: *
access-control-expose-headers: *
age: 4
cache-control: public, max-age=5
content-type: text/html; charset=utf-8
date: Wed, 24 Apr 2024 04:37:38 GMT
etag: W/"2e-5hyaDJAy4gt0fGSdrjML/CGWPaM"
server: statically
strict-transport-security: max-age=31536000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT, MISS
x-content-type-options: nosniff
x-served-by: cache-sjc10076-SJC, cache-hel1410025-HEL
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 391
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://joingroup18wa.otzo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:14:19 GMT
expires: Wed, 23 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 76999
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.statically.io/gh/AlexHostX/logAlex/main/wa-img.png

151.101.65.91

404 Not Found

400 B

URL GET HTTP/3
cdn.statically.io/gh/AlexHostX/logAlex/main/wa-img.png
IP
151.101.65.91:443
ASN
#54113 FASTLY

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerGlobalSign nv-sa
Subjectstatically.io
Fingerprint28:2B:F4:9C:61:EB:4D:6B:10:9F:7B:C4:22:0E:C4:51:7A:DB:60:A4
ValiditySat, 26 Aug 2023 17:58:11 GMT - Thu, 26 Sep 2024 17:58:10 GMT

File type
HTML document, ASCII text
Size
400 B (400 bytes)
Hash
3ff5f3a7300ff541988649e1721d42f2
0844532f5097cdde9678e2edeedbadfe48614121
6172693305882d23af3cfd59637a7d2674a1cf96ee6794e4c8b82c13639c685f

HTTP Headers

GET /gh/AlexHostX/logAlex/main/wa-img.png HTTP/1.1
Host: cdn.statically.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
content-length: 400
content-encoding: br
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=300
content-type: text/html
date: Wed, 24 Apr 2024 04:37:38 GMT
etag: W/"fdc74270dce13a17fc1eedae6ef5b0e48e212bc4d400ef027e6de02f0073ee67"
server: statically
strict-transport-security: max-age=31536000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept-Encoding
x-cache: MISS
x-content-type-options: nosniff
x-served-by: cache-hel1410025-HEL
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

7.5 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (30837)
Size
7.5 kB (7480 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 10/31/2023 18:48:06
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dd809c84048d5afa8e77adc8acacd559
cdn-cache: HIT
cf-cache-status: HIT
age: 13307633
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87936630fa51569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

site-assets.fontawesome.com/releases/v6.1.1/css/all.css

172.64.147.188

200 OK

82 kB

URL GET HTTP/2
site-assets.fontawesome.com/releases/v6.1.1/css/all.css
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
gzip compressed data, from Unix
Size
82 kB (82176 bytes)
Hash
6116b6eaec9b6cf694929e7c0f7e9837
5624f47a21fe8ca06b41432f67c0533e27f518d6
d3542e12c6afb54ff3e6a49ea913e309c8b1c86583714b0102f5630b7f1b2ba9

HTTP Headers

GET /releases/v6.1.1/css/all.css HTTP/1.1
Host: site-assets.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: text/css
x-amz-id-2: Y1TmNuBPJ2aktX68kJThHqHYS+UBzLzvigLuxqSKGropAjQHJXqctJ8cMj8EZaj3hWZqBw7vjseo/ptPWK0rIs/nC5bnGezhyLprTTXGcJA=
x-amz-request-id: 9ZNBHYHZ9G1WY9FS
last-modified: Tue, 22 Mar 2022 15:39:41 GMT
etag: W/"325672b036bab9b57f6873aed5eccc43"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 13227740
vary: Accept-Encoding
server: cloudflare
cf-ray: 879366319e72b4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap

142.250.74.106

200 OK

22 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text
Size
22 kB (21726 bytes)
Hash
9842b200db0dffb68c6b53eaacc8c0bc
66b0afafc96a0f5ae9dd9e969d0c407200cec696
90c4f0951056e5a82b2150c8b3fe6d011a08ea2abc957453d080b8179504e2d7

HTTP Headers

GET /css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 04:37:38 GMT
date: Wed, 24 Apr 2024 04:37:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

unpkg.com/boxicons@2.0.9/css/boxicons.min.css

104.17.247.203

200 OK

64 kB

URL GET HTTP/2
unpkg.com/boxicons@2.0.9/css/boxicons.min.css
IP
104.17.247.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://joingroup18wa.otzo.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
ASCII text, with very long lines (63781), with no line terminators
Size
64 kB (63781 bytes)
Hash
6b330ff5f89229cb7ae9264347bacbab
05ea963ae15e620a051aec3f8dde4b6f85499c96
4fc89b0c376bb37f904f4a63ef38e27ba939b1b2da6df77d127d533bb9d167f7

HTTP Headers

GET /boxicons@2.0.9/css/boxicons.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://joingroup18wa.otzo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:37:38 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"f925-BeqWOuFeYgoFGuw/jd5Lb4VJnJY"
via: 1.1 fly.io
fly-request-id: 01HG583M461J8S2ZQ1NRXV97B1-arn
cf-cache-status: HIT
age: 12950129
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87936630fcd356bb-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (21)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP