| r10.o.lencr.org/ |  23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash1fc39f9a6ccc25867cc2924e625282d0 f859354fa7202cd2f2cbd279ad12ab0358c638d1 037bd31a93556f0a88d519cc4629ca3f8fcc94ffc357a71d34a133e5943c3b96
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "037BD31A93556F0A88D519CC4629CA3F8FCC94FFC357A71D34A133E5943C3B96"
Last-Modified: Thu, 01 Aug 2024 06:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16581
Expires: Sat, 03 Aug 2024 15:13:04 GMT
Date: Sat, 03 Aug 2024 10:36:43 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash44e4b90088be23610d96d270d377406d ce7ab232af453bb960a97435173b3ab09a376054 31567666bda7db348cd6e2ad94576da2c7240872f45e969fd6a52cf14440e95b
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "31567666BDA7DB348CD6E2AD94576DA2C7240872F45E969FD6A52CF14440E95B"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12909
Expires: Sat, 03 Aug 2024 14:11:52 GMT
Date: Sat, 03 Aug 2024 10:36:43 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb84a2e6efef529bac3e0d5dd309babe7 b22b4d0e8f84859a83b85939ae4c77d16fde0c93 9ed1020ce84380273c514b5c14a8705879d8233acaae13b428063bc7b83a067b
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9ED1020CE84380273C514B5C14A8705879D8233ACAAE13B428063BC7B83A067B"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13525
Expires: Sat, 03 Aug 2024 14:22:08 GMT
Date: Sat, 03 Aug 2024 10:36:43 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash06f86a556a3bc0d04f36267a3081f07f 3ca01a6761c66a9434a2ee060e2cb4b685b0b9f8 e9d373f8bcb454c3fc0b4e4d3768e5104c7f4cad03145468f9d2c0ff89c08143
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E9D373F8BCB454C3FC0B4E4D3768E5104C7F4CAD03145468F9D2C0FF89C08143"
Last-Modified: Thu, 01 Aug 2024 06:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14209
Expires: Sat, 03 Aug 2024 14:33:33 GMT
Date: Sat, 03 Aug 2024 10:36:44 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7b71bbce2c5e563fde3afb60497eb33b ffe77143d7aae5b966b693211336919b872de46a 5d3fe5575b14f6f240e86c4c5065e8f3f79a6f20039efce544e7597166c1ae0f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D3FE5575B14F6F240E86C4C5065E8F3F79A6F20039EFCE544E7597166C1AE0F"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11017
Expires: Sat, 03 Aug 2024 13:40:23 GMT
Date: Sat, 03 Aug 2024 10:36:46 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7b71bbce2c5e563fde3afb60497eb33b ffe77143d7aae5b966b693211336919b872de46a 5d3fe5575b14f6f240e86c4c5065e8f3f79a6f20039efce544e7597166c1ae0f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D3FE5575B14F6F240E86C4C5065E8F3F79A6F20039EFCE544E7597166C1AE0F"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11017
Expires: Sat, 03 Aug 2024 13:40:23 GMT
Date: Sat, 03 Aug 2024 10:36:46 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7b71bbce2c5e563fde3afb60497eb33b ffe77143d7aae5b966b693211336919b872de46a 5d3fe5575b14f6f240e86c4c5065e8f3f79a6f20039efce544e7597166c1ae0f
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D3FE5575B14F6F240E86C4C5065E8F3F79A6F20039EFCE544E7597166C1AE0F"
Last-Modified: Thu, 01 Aug 2024 06:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11017
Expires: Sat, 03 Aug 2024 13:40:23 GMT
Date: Sat, 03 Aug 2024 10:36:46 GMT
Connection: keep-alive
|
|
| val1d-upge.2zd4t4hkw.workers.dev/favicon.ico |  172.67.178.92 | 200 OK | 9.4 kB |
URL GET HTTP/3val1d-upge.2zd4t4hkw.workers.dev/favicon.ico IP172.67.178.92:443
Requested byhttps://val1d-upge.2zd4t4hkw.workers.dev/ CertificateIssuerGoogle Trust Services Subject2zd4t4hkw.workers.dev FingerprintD6:1A:EA:47:53:25:D6:B4:59:AE:50:62:94:8B:E0:A3:0B:28:77:0C ValidityTue, 11 Jun 2024 23:48:33 GMT - Mon, 09 Sep 2024 23:48:32 GMT
File typeHTML document, ASCII text, with very long lines (18144) Hash5e378e48c595a750fe4d3c89b749c6bd 1c9dd8e268b80ca5f103206883c640311e42420c 58251bfe50134c57bfa13e34f92827a37b684cbeb95cefddc2790470f9ce7611
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. | | PhishTank | phishing | AT&T |
GET /favicon.ico HTTP/1.1
Host: val1d-upge.2zd4t4hkw.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://val1d-upge.2zd4t4hkw.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 03 Aug 2024 10:36:44 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZSqxe6WQqgnogy9zDi4Sho4ZpR0nWoebuK7Edt02jsfqqdjEo69SFjDuMEVDsZ1DlcFc6OIhKOTQfQfs%2FmkunDwKCkXuz7k8IRa3skp25Oy5uxw0MHOuPBNiVC5OBSuZsYo3SVP6FBcfXyE1071Y3a%2FAVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ad5ab19dd2b0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| val1d-upge.2zd4t4hkw.workers.dev/style.css | 172.67.178.92 | 200 OK | 18 kB |
URL GET HTTP/3val1d-upge.2zd4t4hkw.workers.dev/style.css IP172.67.178.92:443
Requested byhttps://val1d-upge.2zd4t4hkw.workers.dev/ CertificateIssuerGoogle Trust Services Subject2zd4t4hkw.workers.dev FingerprintD6:1A:EA:47:53:25:D6:B4:59:AE:50:62:94:8B:E0:A3:0B:28:77:0C ValidityTue, 11 Jun 2024 23:48:33 GMT - Mon, 09 Sep 2024 23:48:32 GMT
File typeHTML document, ASCII text, with very long lines (18144) Hash5e378e48c595a750fe4d3c89b749c6bd 1c9dd8e268b80ca5f103206883c640311e42420c 58251bfe50134c57bfa13e34f92827a37b684cbeb95cefddc2790470f9ce7611
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. | | PhishTank | phishing | AT&T |
GET /style.css HTTP/1.1
Host: val1d-upge.2zd4t4hkw.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://val1d-upge.2zd4t4hkw.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 03 Aug 2024 10:36:44 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z%2F9dt08xUZRv7%2FnkHjCcgYg84zoOkou62uGMAiZ0uIH5KmeMQRNAO%2B9zTnhDaTqkvthbMNWUI8Ku3esl%2FJjYFDm%2B08%2FCEyoX3O1yPwB66d7NFqAPF9MDVBndyHG0H%2BVFHWqf%2BqxUVbDdlOGmkvcXzaaKtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ad5ab19bd150b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
104.21.96.113
0.0.0.0