Report - aiwebbyvotettytryr6.pages.dev/

Report Overview

Submitted URL
aiwebbyvotettytryr6.pages.dev/
IP
172.66.44.245
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-10 04:20:15
Access
public
Website Title
Instagram
Final URL
aiwebbyvotettytryr6.pages.dev/
Tags
instagram meta social phishing
urlquery detections
Phishing - Instagram

Detections

urlquery
24
Network Intrusion Detection
0
Threat Detection Systems
138

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.instagram.com	1096	2004-06-04	2012-07-24	2024-05-09	952 B	4.4 kB	31.13.72.174
aiwebbyvotettytryr6.pages.dev	unknown	2020-09-02	2024-01-10	2024-04-18	11 kB	1.4 MB	172.66.47.11

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram
2024-05-09	medium	aiwebbyvotettytryr6.pages.dev/	Instagram

PhishTank

Scan Date	Severity	Indicator	Alert
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/f9e5c0ca0804.asc	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/f06b908907d5.png	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/fb48443ec9d3.png	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/4b70f6fae447.png	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/d1f0f06b39df.asc	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/eventcheck.js	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.js.download	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/f55c258e826e.png	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/f82c2ede4ccb.png	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/96f2557117a2.asc	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/001bc33056c1.jpg	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/8e2c2a606042.download	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/fbevents.js	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/2d9d7248af43.jpg	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/f5ae123ab1e2.jpg	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/sdk.asc	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/629d23a3c7b2.jpg	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/8e2c2a606042.download	Other
2024-03-12	medium	aiwebbyvotettytryr6.pages.dev/index_files/96f2557117a2.asc	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed
2024-05-10	medium	aiwebbyvotettytryr6.pages.dev	Sinkholed

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	aiwebbyvotettytryr6.pages.dev/	284 B	2023-03-07	2024-05-18
Pretty URL aiwebbyvotettytryr6.pages.dev/ IP 172.66.47.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:30 Last Seen2024-05-18 21:10:01 Times Seen188 Hash d439d3159ea60f8f7e406dd5907e51f9 23820143e39cfa9a7f50fac69669976e6106c664 ec8315b1a8641ba123dccfed379a1e6b36867f8824592eeedaa2c721aa43dcbd Loading...

	aiwebbyvotettytryr6.pages.dev/	414 B	2023-03-07	2024-05-18
Pretty URL aiwebbyvotettytryr6.pages.dev/ IP 172.66.47.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18:06 Last Seen2024-05-18 21:10:01 Times Seen183 Hash d1310309cf397381261be4a1d8a324dd 378e9804c9a05b846af859de55171142349263c4 4c3d4a4c8db3be18897b5647809ac78b72c2d77c3cd4cd06c76beab10a1599e0 Loading...

	aiwebbyvotettytryr6.pages.dev/	2.1 kB	2023-03-07	2024-05-18
Pretty URL aiwebbyvotettytryr6.pages.dev/ IP 172.66.47.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18:06 Last Seen2024-05-18 21:10:01 Times Seen179 Hash b85b9458f28b695d08b94f4617d79d18 4a8ca52e6585fbad70f69208b2607c6cae390f79 dbb5022c8ab9a59d4a7261650526fe818bc52a6b47ca98f57259276c30157a33 Loading...

	aiwebbyvotettytryr6.pages.dev/	3.2 kB	2023-03-07	2024-05-18
Pretty URL aiwebbyvotettytryr6.pages.dev/ IP 172.66.47.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:18:06 Last Seen2024-05-18 21:10:01 Times Seen177 Hash f3dbce1e783f08c022ac9671917b88e6 662afa0bdc25c475328cf169a5c8275179817663 2839e4584618ed9523df556d5e9871b1f54dbde740492f065e2da88ded79e2e2 Loading...

	aiwebbyvotettytryr6.pages.dev/	439 B	2023-03-07	2024-05-18
Pretty URL aiwebbyvotettytryr6.pages.dev/ IP 172.66.47.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:30 Last Seen2024-05-18 21:10:01 Times Seen179 Hash df7e7ceeb2b6ff35f105522bddc42b4e 62d3ccb61459b0a4300e750e7bcfd00b7a341fb6 f993342d5cd18721230d5fc85c444af9cd94fd6ea5b391951f250663c8c9f4d5 Loading...

HTTP Transactions (25)

URL IP Response Size

aiwebbyvotettytryr6.pages.dev/index_files/f9e5c0ca0804.asc

172.66.47.11

200 OK

33 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/f9e5c0ca0804.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type
HTML document, ASCII text, with very long lines (54252)
Size
33 kB (33047 bytes)
Hash
eb8f03a1669602bbabd2636b1bf57e56
7ca6711de64f52410ff1594bc1aed798c8c5612d
986ffc1f4f305240e85784d24dd82e4f6c5b7ade35e6fc565285e7643b4540ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/f9e5c0ca0804.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QzE9lMkWoWZTv5HCbObtU4vTittWD7BXXBUS0dSLt%2B%2FDFYNKQFPNCaRRzvvnGXR4F05i5TwYUZgjWNBDi%2Bday4k8uWVgdekIEUB7oPDhYLsrmTawQ8RzIQGBETegLtMNUtWLIZ5mfWXhUmvyMgEFOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221eafd056af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/f06b908907d5.png

172.66.47.11

200 OK

33 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/f06b908907d5.png
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type
HTML document, ASCII text, with very long lines (54252)
Size
33 kB (33129 bytes)
Hash
eb8f03a1669602bbabd2636b1bf57e56
7ca6711de64f52410ff1594bc1aed798c8c5612d
986ffc1f4f305240e85784d24dd82e4f6c5b7ade35e6fc565285e7643b4540ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/f06b908907d5.png HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tPs3X9qG5rLKT2smMxzWQ8JQUhVNBak5o03wnqTYbMjkTR6sVI7NUQWkeGrxSlI3TEFT8aFOSZQuKF30zinJl0LKrhYLpWdldYO5lmN4PES7MLwit%2BfHAQyUOgGgdzfda%2BVF4NdIm%2BH76th7FKYtHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221eafc656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/fb48443ec9d3.png

172.66.47.11

200 OK

100 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/fb48443ec9d3.png
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type
HTML document, ASCII text, with very long lines (54252)
Size
100 kB (99807 bytes)
Hash
eb8f03a1669602bbabd2636b1bf57e56
7ca6711de64f52410ff1594bc1aed798c8c5612d
986ffc1f4f305240e85784d24dd82e4f6c5b7ade35e6fc565285e7643b4540ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/fb48443ec9d3.png HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lTuf42i3FksY2ML7FCcR2QkpJw1IqHqg8sPf3%2BzjEM4b52GpPj%2FgJ3bZ931YEIoUhUEJE9ZshAw10HWYqltflDM3JRmiVmUGf119MG4haOc%2FqCw2cCrCV2R4Nk4AmLrkRi7ER0Tg2aQOLe1bqb4v0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221fb87656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.instagram.com/static/images/ico/favicon.ico/dfa85bb1fd63.ico

31.13.72.174

3.6 kB

URL GET
www.instagram.com/static/images/ico/favicon.ico/dfa85bb1fd63.ico
IP
31.13.72.174:0
ASN
#32934 FACEBOOK

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerDigiCert Inc
Subject*.www.instagram.com
Fingerprint56:DB:38:BB:23:5C:AF:E9:58:52:3A:68:FF:29:E9:02:76:85:A7:01
ValiditySat, 17 Feb 2024 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
3.6 kB (3589 bytes)
Hash
dfa85bb1fd633c2ab91c0fe07586da95
d83abdea02e3dc7f9b84841fec376fa378c0aec8
0d3b03b6b3a5d8d93f2e8e420352906459a9df4a19a34accac281e7ef1d07856

HTTP Headers

GET /static/images/ico/favicon.ico/dfa85bb1fd63.ico HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-encoding: br
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
etag: "dfa85bb1fd63"
cache-control: public,max-age=31536000,immutable
edge-control: max-age=1209600, no-transform
date: Wed, 01 May 2024 17:32:28 GMT
x-fb-load: 445
content-length: 3589
X-Firefox-Spdy: h2

aiwebbyvotettytryr6.pages.dev/index_files/4b70f6fae447.png

172.66.47.11

200 OK

36 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/4b70f6fae447.png
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type
HTML document, ASCII text, with very long lines (54252)
Size
36 kB (35803 bytes)
Hash
eb8f03a1669602bbabd2636b1bf57e56
7ca6711de64f52410ff1594bc1aed798c8c5612d
986ffc1f4f305240e85784d24dd82e4f6c5b7ade35e6fc565285e7643b4540ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/4b70f6fae447.png HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J99uRF3pbssvtwBS6pxdibPt4yLYq6ZjiT3f8Qnts1rsCVBbjMlozIsrhA7DEyLCCFQQwlELkWf60pWfbufQ19Scb7xiPTfTNi3xNGPIM51TL3r5DdRcn60iN8tQcuy2E9OoC73jEqwSEpIiangB3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221eafc456af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/d1f0f06b39df.asc

172.66.47.11

200 OK

43 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/d1f0f06b39df.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type
HTML document, ASCII text, with very long lines (54252)
Size
43 kB (43163 bytes)
Hash
eb8f03a1669602bbabd2636b1bf57e56
7ca6711de64f52410ff1594bc1aed798c8c5612d
986ffc1f4f305240e85784d24dd82e4f6c5b7ade35e6fc565285e7643b4540ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/d1f0f06b39df.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kV3lBa9UUk9Ff9SN2EaTzl3%2BWnpMnsCN%2BfZOkn17R9g%2F1zBFumwqIVz42OagyBZhkg5dzUF1U%2BK00bGSfohhc6bARxwAM9yRLag7f%2FoJIhH8yI%2BqJ2Ij69o4Ncj9r4wxPUWtnrkXcq%2BtFBlt9ux5sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221eafcc56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/eventcheck.js

172.66.47.11

200 OK

42 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/eventcheck.js
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type
HTML document, ASCII text, with very long lines (54252)
Size
42 kB (41587 bytes)
Hash
eb8f03a1669602bbabd2636b1bf57e56
7ca6711de64f52410ff1594bc1aed798c8c5612d
986ffc1f4f305240e85784d24dd82e4f6c5b7ade35e6fc565285e7643b4540ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /eventcheck.js HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dag1L3c5%2B%2BcAroShGs9%2F5P%2FhgJx06Hh2Ui9r14DMmNL0AckQEl1cT4DgQB10SIEfARnJBKxzsefrDsuyPBkL4A4ftYtk5DGuotlrfF0ND0P%2Fg0C%2FhkEnThtqE5Slws1zHPTZ6egp1EOHqkq5T05tAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fb956af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.js.download

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.js.download
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/b67d172d5783.js.download HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xCyw9wuhGQMFVauAVqzzalCSvQaCFKR%2BShRIzy1ztE%2FGgEzUsKWU2WdkHmGc%2B8SiQ4jSo%2BSZye8fGT%2FNem0yLxkBa4Kew%2FzMiVfcts0KSDybYm76tX6FBYeHFWTOL1GaPTs82yJT9omfurlNt%2BpbTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fba56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/f55c258e826e.png

172.66.47.11

200 OK

159 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/f55c258e826e.png
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
159 kB (159067 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/f55c258e826e.png HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AU5LsDhOQvkth9HaR%2FzcH1w03jBULPBJSTlrp8pyZXZPCPqx6xIPQr3Znj8%2Fg4wfnMTDZXdoTPSO2dEHXZg9o4UUGXuIAieEDlpFmeMyVUvegn%2Beyu5K7BlflY12PNbuGmC97WkONZ2a9y6js5SXIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221eafc856af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/f82c2ede4ccb.png

172.66.47.11

200 OK

159 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/f82c2ede4ccb.png
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
159 kB (159067 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/f82c2ede4ccb.png HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3ny20X%2Bnl9Mlw9yCWkMWoPaWJMKSBJHVGiXVA7dpk6kwXx7825RfCcfYkSyCLyZU1%2BsqRUtGmx2pvYFU8N6Sy12JqJscUW6MUUQS8FjvB5OR5gDApUFvgNwK59WUr3WSckMAUkK3mRGIo8PHDpiQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221fa87456af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/96f2557117a2.asc

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/96f2557117a2.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/96f2557117a2.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YhmDdbuAqBCEG%2F3X8cIfma%2FeqXLzB2H8n3VclhOoi4CZSwNF4d6BjU8jX3qHzuOWmYgCq5pUa7pLHhtxuwN4W0LeM4IhhC2KFvtdMlt%2FUmoyhuyNS3g%2FG0SOJVZhF3sIM5jzbWV5y%2BloCnRjq%2F6iKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221eafce56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/b67d172d5783.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lBId3ldJmm%2BIqQlPvZZddEv2dVMwBle4e3jvwOjUp5KFhUPkr38Jvnt%2BvVzCoGGO%2Fs2x%2F9TuYNuK6Jhbi2MV5obWHHrc5NEwgXn7PrZWg1akbtNRl4%2F2Gcg0j2Mtqeeb4En4CZrGcwOYsnAYodbctA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221fa86f56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/001bc33056c1.jpg

172.66.47.11

200 OK

159 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/001bc33056c1.jpg
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
159 kB (159067 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/001bc33056c1.jpg HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5de0ooyzKsLzRkLLoLlsb%2BigBj6E24UgBV78cFP7UnQROF4rN9rUmLvmQ4%2BLU06yfRPKMEobtCrV80H6Yipj4ELZHbiTD7Ubofxpj4Y%2FTyF3gwqGDCEb0TgPchX10DY1YDAb0PqVPYTLfSzeTtttuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fc156af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.instagram.com/static/images/ico/favicon-192.png/b407fa101800.png

0.0.0.0

0 B

URL GET
www.instagram.com/static/images/ico/favicon-192.png/b407fa101800.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerDigiCert Inc
Subject*.www.instagram.com
Fingerprint56:DB:38:BB:23:5C:AF:E9:58:52:3A:68:FF:29:E9:02:76:85:A7:01
ValiditySat, 17 Feb 2024 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/images/ico/favicon-192.png/b407fa101800.png HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-encoding: br
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
etag: "b407fa101800"
cache-control: public,max-age=31536000,immutable
edge-control: max-age=1209600, no-transform
date: Sat, 04 May 2024 07:02:24 GMT
x-fb-load: 394
content-length: 34719
X-Firefox-Spdy: h2

aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/b67d172d5783.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2n%2FmwFVxWkcYm1osY8qajwbZP5LdBSrjCZapEOTFSwyNrCX0Efic51PUDiQY6tI8e7r8TZggYKlTCeXarrU5me6zG9Nk5kQRWlg9CEqcElTTP8fDAfyoDalpmiPYN%2B7%2BSkrIIQ4R7gRDZ8vqyCuHhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221fc88656af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/8e2c2a606042.download

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/8e2c2a606042.download
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/8e2c2a606042.download HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IaYSZ9tAIuPwp1oA8yFGKl6NdAp%2FZ8AEmt9e5AgLdDyyyEkvo9Hc9nwt9wTI5hXuuOwShCMIBPzuO8vTDBzaaD3UqFTAIxG8xD4k4dRs1TpfUFEjGhKE9DHXHprQu2mVur3Jfri4dK%2F4BtwcTFkHxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88172220d93156af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/

172.66.47.11

200 OK

159 kB

URL User Request GET HTTP/2
aiwebbyvotettytryr6.pages.dev/
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
159 kB (159067 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 04:19:49 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XujTYNSNEdT68gJKGhLUBNRnm%2FRLfk1mo9mdWnLEzc5t1ZXX2rO2HUNDE3HaR7U4dfRy7TjmtmTsJ8VWhE9%2BCqdxlieyiDcJhsexOLrdY39s8tgxmXIIeKsqD1G8a1PHNSwr%2F0mr9o3NfxxPdKugoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221bfaa0b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

aiwebbyvotettytryr6.pages.dev/index_files/fbevents.js

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/fbevents.js
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/fbevents.js HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6S5rLr8tjlEy79oYDGFaVYB9hzsD0OTfbeOI2ddY0KdUfrJEW2U7xrcq1dbWghYofHRfOzQrAO8zKVXZ2ZBjdFRBJmhlZdoIHXeI4hV5FLy7L%2FTINft5kvKkw%2BgtxWW3i75S2l51ZjP%2Fw%2FTrICwdWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fb756af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/2d9d7248af43.jpg

172.66.47.11

200 OK

159 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/2d9d7248af43.jpg
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
159 kB (159067 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/2d9d7248af43.jpg HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PGPUN2%2BiA50z7lxEnd%2FeeIDa%2BgflDLfmsTrRXoH5oIQZwI6EvR6yMSFJfCvEB98W2r1Y6JQcWWk%2B0D3EAtDxDW6rQ1I4nyLu2lgHx2Zqm3KqCPgNZ77H5P3pRwi140U5zzxyo4upI%2FMFk582Hgx8Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fc056af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/f5ae123ab1e2.jpg

172.66.47.11

200 OK

159 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/f5ae123ab1e2.jpg
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
159 kB (159067 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/f5ae123ab1e2.jpg HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dUgy7vLIWVuD9SPvGPBK6z4cXZi468ZnilZeZduJj%2BdUqwuihcpNnFMs%2BzeEnmkqcBV9Q3xciwnWkHYG2a72U5zMhUnktmn0wAZF6yUWzr48GOD6hevGesFpgKQy0%2FgokXHVMz96RS7l7QKvOxTV4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221eafc356af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/sdk.asc

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/sdk.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/sdk.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FE44afYKyPPIkgTsHxt7oJWiT4XpfwORQiVV68FqzCCsRO%2F3CZlBDOYhRQ%2Bj1qayCiXtjFvdGMMm5xLsYsSFNaaww%2BpafcldACRWzFbsf1JkKEgJos5kA0FtWcRhYuBExrxWMPjQcd8S4rjZ8NbETg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fbb56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/629d23a3c7b2.jpg

172.66.47.11

200 OK

159 kB

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/629d23a3c7b2.jpg
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
159 kB (159067 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/629d23a3c7b2.jpg HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NjBLPHumYn0Cy6CvlFmjC0h7bxupw%2F2Wv6AWvPz%2FIVeDoKnXNLvwii71LvqTEUAPF6fmmwhHirK%2B9f2vdOmlmHfmlAobhIFZrjIh5KAA6yswlXEJtJ5%2B8oIduVBG3knCTaSbcMlVQN6dhLVqmr8cBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fbe56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/b67d172d5783.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/b67d172d5783.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uKwGHx%2F15VcdVVyT%2Fi4n0oVypcYogBR6dQi3rJzUKhXGR8GXPFDuo0yQLoAOe5puyv3IXZNfcZurso%2BIygjNox%2B%2Fxxe8IOInkk6hRk9gPQHGJmrH0YYwAvlLKLrWVwvqXRiKP7SOkauz1t6buKrV1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221e9fbd56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/8e2c2a606042.download

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/8e2c2a606042.download
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/8e2c2a606042.download HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2oNmJu%2FtI40FZfMD9pydlc4bSZ92FZ4Be1jFMYCiAJp5yDBl6vdMDlcReZops0PhDx%2BSkY1vUpctVZ5o3dK9cKLQQaShGPWAtLQIIHOw7MKXjjTrfZLPqoGbhr0nbBLGHasTXCFQJcqGT%2FbBndYCWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221ebfd256af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

aiwebbyvotettytryr6.pages.dev/index_files/96f2557117a2.asc

172.66.47.11

200 OK

0 B

URL GET HTTP/3
aiwebbyvotettytryr6.pages.dev/index_files/96f2557117a2.asc
IP
172.66.47.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://aiwebbyvotettytryr6.pages.dev/
Certificate
IssuerLet's Encrypt
Subjectaiwebbyvotettytryr6.pages.dev
Fingerprint9F:F4:1B:09:41:39:22:74:A2:43:DF:EA:7B:69:01:5A:63:2C:B5:0E
ValidityTue, 07 May 2024 22:58:10 GMT - Mon, 05 Aug 2024 22:58:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Instagram
OpenPhish	phishing	Instagram
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /index_files/96f2557117a2.asc HTTP/1.1
Host: aiwebbyvotettytryr6.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aiwebbyvotettytryr6.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 04:19:50 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7da1829cc821da446e150a386f097b5a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8%2Fii7G91s0%2BcrFD29F6PnjsYBCi%2FQO8DSPbqMfxp3OmzXagi8DhglzMc8nvZ8ZYotuVAHnIEt1viZy%2BTzwLpCl36W8wTcNxzQuJbvIBP7psPsKegtqDlyp8af72aplYAS957zxdTySWOB%2FSU1rgj7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8817221fc88856af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (25)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash