| r10.o.lencr.org/ |  23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash577f20b1ad1240dc12215f4d93e53b8f 4fb6d79b9c4adb8f712073e9662ceae41a4f097c 523bc00bcd3cc12a640ebce3df80c0aed9fc552c4be5bae1831c00b9027ce0c0
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "523BC00BCD3CC12A640EBCE3DF80C0AED9FC552C4BE5BAE1831C00B9027CE0C0"
Last-Modified: Wed, 24 Jul 2024 18:56:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19271
Expires: Fri, 26 Jul 2024 18:43:39 GMT
Date: Fri, 26 Jul 2024 13:22:28 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash21fba4953d0a666a4844d872097cb8f4 80ac64ff700d5d02eb9901123ecd64f02c9e3ec2 f5c60f75b60eb8ef8e42e66fcad10e8df5759fe29bad30a23871fb7c1da61456
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "F5C60F75B60EB8EF8E42E66FCAD10E8DF5759FE29BAD30A23871FB7C1DA61456"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4235
Expires: Fri, 26 Jul 2024 14:33:03 GMT
Date: Fri, 26 Jul 2024 13:22:28 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash8f4e7b75de1ed909fa79bbcdafccceac 274c1ea75520a0ea06e19a7e692c034baae2cdc1 62cc974e51b62480f576b53853f8f24bfc873687c02bc23c1713956d4b96c0b1
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "62CC974E51B62480F576B53853F8F24BFC873687C02BC23C1713956D4B96C0B1"
Last-Modified: Wed, 24 Jul 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5781
Expires: Fri, 26 Jul 2024 14:58:50 GMT
Date: Fri, 26 Jul 2024 13:22:29 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash0b6f864b0a3d0cf483b0830bdb98cded 12564f2826ce74a640c3b65ef52d12f21c8e6f3c d32892cb09f33f4057712b1c1b511af5ea5528cd0f23ba90858d659ec4fcd190
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "D32892CB09F33F4057712B1C1B511AF5EA5528CD0F23BA90858D659EC4FCD190"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10005
Expires: Fri, 26 Jul 2024 16:09:14 GMT
Date: Fri, 26 Jul 2024 13:22:29 GMT
Connection: keep-alive
|
|
| dun.xtools.lol/static/Community.zip |  188.114.97.1 | 200 OK | 512 kB |
URL User Request GET HTTP/2dun.xtools.lol/static/Community.zip IP188.114.97.1:443
CertificateIssuerGoogle Trust Services Subjectxtools.lol FingerprintAB:2F:4A:60:F3:C1:42:A8:6E:BB:8A:F0:65:84:BE:16:84:1E:9E:82 ValiditySat, 20 Jul 2024 05:30:47 GMT - Fri, 18 Oct 2024 05:30:46 GMT
File typeZip archive data, at least v2.0 to extract, compression method=deflate Size512 kB (512519 bytes) Hash401ce3489da1cb5f50de1045e795be16 98512068b75c86cda47cedfd4b11882653fa8df8 b7abf78bc49f7c8b563b9ac33117ed3d92d2ace42e6b1bf4173299e034cb3771
| Analyzer | Verdict | Alert |
|---|
| VirusTotal | suspicious | |
GET /static/Community.zip HTTP/1.1
Host: dun.xtools.lol
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Jul 2024 13:22:30 GMT
content-type: application/zip
content-length: 512519
last-modified: Fri, 26 Jul 2024 03:33:24 GMT
etag: "66a31904-7d207"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=asTGsmUTnGsYTkrMzXeCX8cO6sYWK5ZEeLwYVNwdvM3xvrEdbzUU%2B%2FZdwo0SkkowN228XBi%2FYnYcIPF%2B%2Fl9IMVh8BnUuM2wmitVR3DrUoW3QxvT06kdiiaNpy8EEyHMVWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8a94b2e6082856ca-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash91392416ed946eb8b26810ff46d7e57e 8ce21a441df1ac09da4ebf098eaf47e2d74bbff0 5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4047
Expires: Fri, 26 Jul 2024 14:29:58 GMT
Date: Fri, 26 Jul 2024 13:22:31 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash91392416ed946eb8b26810ff46d7e57e 8ce21a441df1ac09da4ebf098eaf47e2d74bbff0 5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4047
Expires: Fri, 26 Jul 2024 14:29:58 GMT
Date: Fri, 26 Jul 2024 13:22:31 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash91392416ed946eb8b26810ff46d7e57e 8ce21a441df1ac09da4ebf098eaf47e2d74bbff0 5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4047
Expires: Fri, 26 Jul 2024 14:29:58 GMT
Date: Fri, 26 Jul 2024 13:22:31 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.76.226 | | 504 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash91392416ed946eb8b26810ff46d7e57e 8ce21a441df1ac09da4ebf098eaf47e2d74bbff0 5d153b40d51555b8f2717f7e56bfbe3be25b1b38a18b31715eea4ddff345f98a
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "5D153B40D51555B8F2717F7E56BFBE3BE25B1B38A18B31715EEA4DDFF345F98A"
Last-Modified: Wed, 24 Jul 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4047
Expires: Fri, 26 Jul 2024 14:29:58 GMT
Date: Fri, 26 Jul 2024 13:22:31 GMT
Connection: keep-alive
|
|