activitydocfresh.web.app/
199.36.158.100 240 B URL activitydocfresh.web.app/
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash f860eef89b992e0f220ba7d8296d3586
4b0158c4190fc7b29edad3ec28de70203af0765c
cf895d79dab4ddf223226a5037903a5cedf247812840deb117c6f02d66aa8b7f
Analyzer Verdict Alert phishtank Other
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: activitydocfresh.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "de0ea21863eb9fd8f3d142f149a81c55a26508f0955c3bfb9bf84a3a3f01ba01-br"
last-modified: Mon, 30 Jan 2023 22:03:06 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 May 2023 08:00:26 GMT
x-served-by: cache-bma1639-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1685088026.243586,VS0,VE121
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 240
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
142.250.74.131 472 B URL ocsp.pki.goog/s/gts1d4int/wrllXI_-LL8
IP 142.250.74.131:0
Hash 565043679872a7d0de71382b0781a40c
6dffa954788da27932a0ddb78157c7b45a6f09b2
ff9bd56aefc1f064e5c774544d1c1a89f9f55c01d2fc14957085da241d0f3db3
POST /s/gts1d4int/wrllXI_-LL8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 08:00:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
activitydocfresh.web.app/
199.36.158.100 240 B URL activitydocfresh.web.app/
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash f860eef89b992e0f220ba7d8296d3586
4b0158c4190fc7b29edad3ec28de70203af0765c
cf895d79dab4ddf223226a5037903a5cedf247812840deb117c6f02d66aa8b7f
Analyzer Verdict Alert phishtank Other
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: activitydocfresh.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "de0ea21863eb9fd8f3d142f149a81c55a26508f0955c3bfb9bf84a3a3f01ba01-br"
last-modified: Mon, 30 Jan 2023 22:03:06 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 26 May 2023 08:00:29 GMT
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1685088029.213527,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 240
X-Firefox-Spdy: h2
frmu.rejoinslegbonhi.top/
0.0.0.0 0 B URL User Request GET frmu.rejoinslegbonhi.top/
IP 0.0.0.0:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: frmu.rejoinslegbonhi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://activitydocfresh.web.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache