| val1d-upge.2zd4t4hkw.workers.dev/favicon.ico | 172.67.178.92 | 200 OK | 14 kB |
URL GET HTTP/3val1d-upge.2zd4t4hkw.workers.dev/favicon.ico IP172.67.178.92:443
Requested byhttps://val1d-upge.2zd4t4hkw.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subject2zd4t4hkw.workers.dev Fingerprint27:0E:AD:7B:2A:34:B2:3F:DA:C1:88:D5:3A:AE:90:E2:1E:BD:87:C5 ValiditySun, 14 Apr 2024 00:12:29 GMT - Sat, 13 Jul 2024 00:12:28 GMT
File typeHTML document, ASCII text, with very long lines (18144) Hash5e378e48c595a750fe4d3c89b749c6bd 1c9dd8e268b80ca5f103206883c640311e42420c 58251bfe50134c57bfa13e34f92827a37b684cbeb95cefddc2790470f9ce7611
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. | PhishTank | phishing | AT&T |
GET /favicon.ico HTTP/1.1
Host: val1d-upge.2zd4t4hkw.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://val1d-upge.2zd4t4hkw.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:18:45 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UtlEWQ1SBe6wh07j5nPBdQjXoMXduD7llGt%2BrK6H%2B%2FL31ePc9duM20on3LuYFHe8daMZbt7d0oxB%2Bd%2FGx8jLhEzbqxkZ%2FjWGMaabiolWZ%2FUUH1YGz%2Bo2Ac5jZ5zkmospZCPnf58agZsLR5%2BsbXkkGJtlYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e137c4a999304-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
| val1d-upge.2zd4t4hkw.workers.dev/ | 172.67.178.92 | 200 OK | 18 kB |
URL User Request GET HTTP/2val1d-upge.2zd4t4hkw.workers.dev/ IP172.67.178.92:443
CertificateIssuerGoogle Trust Services LLC Subject2zd4t4hkw.workers.dev Fingerprint27:0E:AD:7B:2A:34:B2:3F:DA:C1:88:D5:3A:AE:90:E2:1E:BD:87:C5 ValiditySun, 14 Apr 2024 00:12:29 GMT - Sat, 13 Jul 2024 00:12:28 GMT
File typeHTML document, ASCII text, with very long lines (18144) Hash5e378e48c595a750fe4d3c89b749c6bd 1c9dd8e268b80ca5f103206883c640311e42420c 58251bfe50134c57bfa13e34f92827a37b684cbeb95cefddc2790470f9ce7611
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Suspicious Javascript code | OpenPhish | phishing | AT&T Inc. | PhishTank | phishing | AT&T |
GET / HTTP/1.1
Host: val1d-upge.2zd4t4hkw.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 17:18:44 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vyoe%2FQgXl3FQleiNN5nGcZgXTapnv%2F0v4mHbSOAoP6mL1RtoMmu9XIuYvUbLDfTPfhsFm61x8i0fu2qsEx2xWn03txL3I9LOwKzTWTfF0ko9%2B8YxuqFmun8AmEEgGaC1grznn2Kgt5FtLkntn5iBPuN8vA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e137ad95410b5-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| val1d-upge.2zd4t4hkw.workers.dev/style.css | 172.67.178.92 | 200 OK | 18 kB |
URL GET HTTP/3val1d-upge.2zd4t4hkw.workers.dev/style.css IP172.67.178.92:443
Requested byhttps://val1d-upge.2zd4t4hkw.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subject2zd4t4hkw.workers.dev Fingerprint27:0E:AD:7B:2A:34:B2:3F:DA:C1:88:D5:3A:AE:90:E2:1E:BD:87:C5 ValiditySun, 14 Apr 2024 00:12:29 GMT - Sat, 13 Jul 2024 00:12:28 GMT
File typeHTML document, ASCII text, with very long lines (18144) Hash5e378e48c595a750fe4d3c89b749c6bd 1c9dd8e268b80ca5f103206883c640311e42420c 58251bfe50134c57bfa13e34f92827a37b684cbeb95cefddc2790470f9ce7611
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. | PhishTank | phishing | AT&T |
GET /style.css HTTP/1.1
Host: val1d-upge.2zd4t4hkw.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://val1d-upge.2zd4t4hkw.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 17:18:45 GMT
content-type: text/html;charset=UTF-8
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ujtJppiW1CISy2KqELB5hE5rQvYy1jh3EW5oR8mE9AeC1ptydaOk6t%2F1niLYUAammPSYgyGeTCVc2ZhNouB1cTzn4GTI4xJgE1%2BT9ZGMyurXcnZD8jpXKcalxNbIZTmV66kMhOIhBCWPYZiY3btGFStg%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875e137c0a0f9304-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|