| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hashd070dea5a1c30c330443d09132734e63 3ca8c0f7cd2afd3a26da8bbe3f8a47c5995294f4 4868faf0cf6c4f9bd0d7db49dcde0b7358890c362d5281a233ab666a702e1741
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4868FAF0CF6C4F9BD0D7DB49DCDE0B7358890C362D5281A233AB666A702E1741"
Last-Modified: Sat, 28 Sep 2024 09:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19809
Expires: Mon, 30 Sep 2024 18:56:04 GMT
Date: Mon, 30 Sep 2024 13:25:55 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hash4de9df2391ebcb20b98d8f713f87a5bf 20f1dc2e6e7040b3804d4ee3ec82acea14621f61 c0c02e7516b5c8f47116e156ffec5318764a2a60d1d0692f4c92faece747b6e8
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C0C02E7516B5C8F47116E156FFEC5318764A2A60D1D0692F4C92FAECE747B6E8"
Last-Modified: Mon, 30 Sep 2024 11:56:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19903
Expires: Mon, 30 Sep 2024 18:57:38 GMT
Date: Mon, 30 Sep 2024 13:25:55 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hash063cdc70d20fee30d9feec8bc550920b e5f64c7f4ccc0d620e8860d98f933d84330d5b5e 49914223135e10d0330cc6d3bd7daa87173b784dd0da79018674c27b726107de
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "49914223135E10D0330CC6D3BD7DAA87173B784DD0DA79018674C27B726107DE"
Last-Modified: Mon, 30 Sep 2024 06:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12020
Expires: Mon, 30 Sep 2024 16:46:15 GMT
Date: Mon, 30 Sep 2024 13:25:55 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hash58904a4fbcfb57844d0914da3af1d8c7 469367b4264860d89f0d683cde706e74b21ec66f 92a694d29fa63c8da404b537d0eaac859796cf351325de5b9cb23010089797cc
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "92A694D29FA63C8DA404B537D0EAAC859796CF351325DE5B9CB23010089797CC"
Last-Modified: Mon, 30 Sep 2024 05:59:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3271
Expires: Mon, 30 Sep 2024 14:20:27 GMT
Date: Mon, 30 Sep 2024 13:25:56 GMT
Connection: keep-alive
|
|
| ocsp.r2m03.amazontrust.com/ | 54.230.218.11 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP 54.230.218.11:0
Hashd2791dc99303a5bf7e0e30eb648025eb c3988792aeff71d0dc6ba86303ccf4f0e110a6b3 6d944c6b6531ea814e7a883684f354b6534b5036f4dbb0a8b5f89403b0988704
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Mon, 30 Sep 2024 13:25:56 GMT
Last-Modified: Mon, 30 Sep 2024 11:37:52 GMT
Server: ECAcc (ska/F7B3)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1bgceOtEzwHavd78q_xJmED-cBTPPSAL_OKFkSgd980o4t0klbAoZQ==
Age: 6484
|
|
| quiver-intelligent-akubra.glitch.me/public/NFCUACCELINKK.htm | 54.211.144.142 | 200 OK | 944 kB |
URL User Request GET HTTP/2quiver-intelligent-akubra.glitch.me/public/NFCUACCELINKK.htm IP 54.211.144.142:443
CertificateIssuerAmazon Subjectglitch.com Fingerprint57:4F:13:8A:33:42:32:7C:F7:C9:C5:1F:DF:C1:35:65:F0:E9:70:EE ValidityMon, 04 Dec 2023 00:00:00 GMT - Wed, 01 Jan 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (13069) Size944 kB (943729 bytes) Hashbbeb7f6727cd9b4a090500c344673f74 3404012ff174157b44fc13d3ef1d40b1c764df5b 3a14e59ca72811b29648b238c772e29466749885dee90d80926e77d51b3d9c8a
Analyzer | Verdict | Alert | OpenPhish | phishing | Navy Federal Credit Union | Quad9 DNS | malicious | Sinkholed |
GET /public/NFCUACCELINKK.htm HTTP/1.1
Host: quiver-intelligent-akubra.glitch.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 30 Sep 2024 13:25:56 GMT
content-type: text/html; charset=utf-8
content-length: 943729
x-amz-id-2: jcV1WuJFTnas5BM5Py73muB2/3+zB9NhoI8021SQ6pphR+krMUh/MgR++qvpBB0gS7j4bFEheG8=
x-amz-request-id: 7P19HKQQZAHTZF3K
last-modified: Thu, 29 Aug 2024 11:09:20 GMT
etag: "bbeb7f6727cd9b4a090500c344673f74"
x-amz-server-side-encryption: AES256
cache-control: no-cache
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
X-Firefox-Spdy: h2
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hash966c68bf52dee9947544586839fbf99a 2a8d7a78a1b0f45808d06e36219f5ca8aee6ebee 967cf2de23560aadd654e3ab7d5c240a56c57cdd02764438166306e3463e9993
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "967CF2DE23560AADD654E3AB7D5C240A56C57CDD02764438166306E3463E9993"
Last-Modified: Sun, 29 Sep 2024 18:24:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3323
Expires: Mon, 30 Sep 2024 14:21:19 GMT
Date: Mon, 30 Sep 2024 13:25:56 GMT
Connection: keep-alive
|
|
| l2.io/ip.js?var=userip | 195.80.159.133 | 200 OK | 24 B |
IP 195.80.159.133:443
ASN#29152 Decknet S.a.r.l.
Requested byhttps://quiver-intelligent-akubra.glitch.me/public/NFCUACCELINKK.htm CertificateIssuerLet's Encrypt Subjectl2.io Fingerprint81:B2:C7:C8:98:90:5D:D0:D8:49:0E:19:41:E1:B5:A4:37:3C:02:11 ValidityMon, 02 Sep 2024 04:40:27 GMT - Sun, 01 Dec 2024 04:40:26 GMT
File typeASCII text, with no line terminators Hashf9dc91b3feea65bd389a2f5b57306c32 147d1c9ae79ae948a34c5f1254bdcbf7af9caf8e d88923af30873abcf4cde709062c3d2e9ded181f9e2552c7fbcc983b3796ff77
GET /ip.js?var=userip HTTP/1.1
Host: l2.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quiver-intelligent-akubra.glitch.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Sep 2024 13:25:56 GMT
Server: Apache/2.4.59 (Debian)
Content-Length: 24
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| i.ibb.co/RpLNy4f/ajax-loader.gif | 162.19.58.159 | 200 OK | 3.2 kB |
URL GET HTTP/2i.ibb.co/RpLNy4f/ajax-loader.gif IP 162.19.58.159:443
Requested byhttps://quiver-intelligent-akubra.glitch.me/public/NFCUACCELINKK.htm CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint26:FE:71:E0:50:E8:60:94:E3:4F:62:05:27:41:82:DD:84:EE:89:AC ValidityThu, 22 Aug 2024 08:17:43 GMT - Wed, 20 Nov 2024 08:17:42 GMT
File typeGIF image data, version 89a, 32 x 32 Hashbe1cede97289c13920048f238fd37b85 313b867d11fc0dd6bc6ca47c334bbcf18956ca76 fd29b3b084cf11160bfc4e99d98a261f2b36bff29113b07367c5204563c5d355
GET /RpLNy4f/ajax-loader.gif HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quiver-intelligent-akubra.glitch.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 30 Sep 2024 13:25:57 GMT
content-type: image/gif
content-length: 3208
last-modified: Tue, 02 Mar 2021 22:27:30 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hashc2a3b54f1ea3524f1e245394fcee2ef5 31071486f17a9c03f074bd4eacd613154981d96b 4a6a61e13af0bb23013d85fa3ef347be1bc968595d8c40f19f9d24214fe10b90
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4A6A61E13AF0BB23013D85FA3EF347BE1BC968595D8C40F19F9D24214FE10B90"
Last-Modified: Mon, 30 Sep 2024 02:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2930
Expires: Mon, 30 Sep 2024 14:14:48 GMT
Date: Mon, 30 Sep 2024 13:25:58 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hashc2a3b54f1ea3524f1e245394fcee2ef5 31071486f17a9c03f074bd4eacd613154981d96b 4a6a61e13af0bb23013d85fa3ef347be1bc968595d8c40f19f9d24214fe10b90
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4A6A61E13AF0BB23013D85FA3EF347BE1BC968595D8C40F19F9D24214FE10B90"
Last-Modified: Mon, 30 Sep 2024 02:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2930
Expires: Mon, 30 Sep 2024 14:14:48 GMT
Date: Mon, 30 Sep 2024 13:25:58 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hashc2a3b54f1ea3524f1e245394fcee2ef5 31071486f17a9c03f074bd4eacd613154981d96b 4a6a61e13af0bb23013d85fa3ef347be1bc968595d8c40f19f9d24214fe10b90
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4A6A61E13AF0BB23013D85FA3EF347BE1BC968595D8C40F19F9D24214FE10B90"
Last-Modified: Mon, 30 Sep 2024 02:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2930
Expires: Mon, 30 Sep 2024 14:14:48 GMT
Date: Mon, 30 Sep 2024 13:25:58 GMT
Connection: keep-alive
|
|
| r11.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP 23.36.77.32:0
ASN#20940 Akamai International B.V.
Hashc2a3b54f1ea3524f1e245394fcee2ef5 31071486f17a9c03f074bd4eacd613154981d96b 4a6a61e13af0bb23013d85fa3ef347be1bc968595d8c40f19f9d24214fe10b90
POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "4A6A61E13AF0BB23013D85FA3EF347BE1BC968595D8C40F19F9D24214FE10B90"
Last-Modified: Mon, 30 Sep 2024 02:39:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2930
Expires: Mon, 30 Sep 2024 14:14:48 GMT
Date: Mon, 30 Sep 2024 13:25:58 GMT
Connection: keep-alive
|
|