| r10.o.lencr.org/ |  23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdf85487917ffcb9ff9393daa9c628bc8 73e600fa168021b1cfd00f6a00dff1678e018aaa c694b95afc4423cf3e039cea969256e7957ff30ee11fa6cd2c5432bd7b72686b
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C694B95AFC4423CF3E039CEA969256E7957FF30EE11FA6CD2C5432BD7B72686B"
Last-Modified: Mon, 15 Jul 2024 19:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3304
Expires: Tue, 16 Jul 2024 08:23:10 GMT
Date: Tue, 16 Jul 2024 07:28:06 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash0ba28ae3ca920c46edf9c7a1f79db3ca b96f7bd71a6b1f9e08b5a0179c66553bf42875d2 e4acaf4113d4cda75edbbae5d28e17dffb959489cd6912b854c9e87a3ab50fd2
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "E4ACAF4113D4CDA75EDBBAE5D28E17DFFB959489CD6912B854C9E87A3AB50FD2"
Last-Modified: Mon, 15 Jul 2024 20:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10136
Expires: Tue, 16 Jul 2024 10:17:02 GMT
Date: Tue, 16 Jul 2024 07:28:06 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc827d32609521c1e56829aac4640ab87 f6721b2c6abc469be2b70d165a58c75d5637408d a951edc9fce6d26583509aba1a0d759172986da854406dc2041f25dca4eb6798
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "A951EDC9FCE6D26583509ABA1A0D759172986DA854406DC2041F25DCA4EB6798"
Last-Modified: Mon, 15 Jul 2024 19:16:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10062
Expires: Tue, 16 Jul 2024 10:15:48 GMT
Date: Tue, 16 Jul 2024 07:28:06 GMT
Connection: keep-alive
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd6a8982e5c8cce4f958455f8ea1e5814 d88c9d262e8282645ee77a1a3f29199b0422166a c18d568bc2c4d8544c593d76c943798ffd2de9596cb115879d51d403f080abea
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "C18D568BC2C4D8544C593D76C943798FFD2DE9596CB115879D51D403F080ABEA"
Last-Modified: Mon, 15 Jul 2024 20:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3669
Expires: Tue, 16 Jul 2024 08:29:15 GMT
Date: Tue, 16 Jul 2024 07:28:06 GMT
Connection: keep-alive
|
|
| api-games-cxfteams.top/api/add/balance |  104.21.22.95 | 521 | 6.9 kB |
URL User Request GET HTTP/1.1api-games-cxfteams.top/api/add/balance IP104.21.22.95:80
File typeHTML document, ASCII text, with very long lines (394) Hashe516155d5361f67079a7762b6b75670a 6ef642d84d19ea0bfab02401b34ea5964733cd0f cdbc566ab7c0b2ffbf73cb43fd650551eff1a890e8d6cb81fba8ef0af70449e3
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to a *.top domain |
GET /api/add/balance HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 521 No Reason Phrase
date: Tue, 16 Jul 2024 07:28:08 GMT
content-type: text/html; charset=UTF-8
content-length: 6869
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qmg4%2BQduq3V5VE4rdHrYBHMYyDzpxhLipqZQUBo8SWB97ZyYLg7JEFPQQvEUE8KmGhtz90ey%2F9x3xxDrm87MvvslSTsuUeIUuzf3HDSqApLxLH%2BeLim5hPBTyz3tG0DQiuEi3ufYelBz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
server: cloudflare
cf-ray: 8a40460aeda01c0e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r10.o.lencr.org/ | 23.36.77.32 | | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc5fe3e5860e9afb843ae32b8f349f4c7 78e8faf3194e82bcb4fed0d89bd1989501dd8d2a 806921e95846539e7849756068c5afcd2fb93d1ccbb7604b5d8d18805538faf5
POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "806921E95846539E7849756068C5AFCD2FB93D1CCBB7604B5D8D18805538FAF5"
Last-Modified: Mon, 15 Jul 2024 20:19:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10302
Expires: Tue, 16 Jul 2024 10:19:50 GMT
Date: Tue, 16 Jul 2024 07:28:08 GMT
Connection: keep-alive
|
|
| api-games-cxfteams.top/api/add/balance | 104.21.22.95 | 521 | 6.9 kB |
URL User Request GET HTTP/1.1api-games-cxfteams.top/api/add/balance IP104.21.22.95:80
File typeHTML document, ASCII text, with very long lines (394) Hashd5faf03acf6177a9b1d8f4e8e7304a04 5684c8a2a583011e3d0651a36af2a33281350512 ca5f57ae294e2cd0743f4b8b651e2ccd2b7f22734138ea90207ff39713c8ccee
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to a *.top domain |
GET /api/add/balance HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 521
Date: Tue, 16 Jul 2024 07:28:08 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 6869
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qA%2B9MD%2FUjsYlvgMXWrP7%2FqGab6aWdBnZyfYSo93XCgMb2f57x2amolL4HZUlVW7FSxWm6T45PZkxcxbIjPVTsP6bGWRWNzw%2F23hUXLTWBaOruJzSI4AoU4ybG06Cb0ZTSo4i5FCMYqve"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 8a404612f887b517-OSL
alt-svc: h2=":443"; ma=60
|
|
| api-games-cxfteams.top/cdn-cgi/styles/main.css | 104.21.22.95 | 200 OK | 2.2 kB |
URL GET HTTP/1.1api-games-cxfteams.top/cdn-cgi/styles/main.css IP104.21.22.95:80
Requested byhttp://api-games-cxfteams.top/api/add/balance
File typeASCII text, with very long lines (8012) Hashff26f59e28a5fe6ea4ab23586415696b 4182675484d175e363cd34b43041b7b1af93d0cd d30b4ea6f68456672f5abb35e9dcf7d54226372b66e9d60a7ee26b7a52568e74
GET /cdn-cgi/styles/main.css HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://api-games-cxfteams.top/api/add/balance
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Jul 2024 07:28:08 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 08:13:48 GMT
ETag: W/"668f943c-1f4d"
Server: cloudflare
CF-RAY: 8a4046150acab517-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 16 Jul 2024 09:28:08 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
|
|
| api-games-cxfteams.top/cdn-cgi/images/cf-icon-browser.png | 104.21.22.95 | 200 OK | 484 B |
URL GET HTTP/1.1api-games-cxfteams.top/cdn-cgi/images/cf-icon-browser.png IP104.21.22.95:80
Requested byhttp://api-games-cxfteams.top/api/add/balance
File typePNG image data, 100 x 80, 8-bit colormap, non-interlaced Hash59caf3c7eb63af78f12db37f41433779 8024e688e78e910ae1ea3bc25be7a7ab65444b02 78a7d8b29cabf16831417dba1b9bbe36fae0d060a35a495e8f10e9663b3c9e65
GET /cdn-cgi/images/cf-icon-browser.png HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://api-games-cxfteams.top/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Jul 2024 07:28:08 GMT
Content-Type: image/png
Content-Length: 484
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 08:13:48 GMT
ETag: "668f943c-1e4"
Server: cloudflare
CF-RAY: 8a4046152ae2b517-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 16 Jul 2024 09:28:08 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| api-games-cxfteams.top/cdn-cgi/images/cf-icon-cloud.png | 104.21.22.95 | 200 OK | 1.5 kB |
URL GET HTTP/1.1api-games-cxfteams.top/cdn-cgi/images/cf-icon-cloud.png IP104.21.22.95:80
Requested byhttp://api-games-cxfteams.top/api/add/balance
File typePNG image data, 152 x 77, 8-bit colormap, non-interlaced Hash3ec81e5e3a4de9fec46ce9e6999b9e27 8f03b6857ab8d31feb65f97b1ae6b678efdc2ddd 3a223426c67a0a33ff57af68a57fb589fea36af2a6e8f9dae7798c77471e0e58
GET /cdn-cgi/images/cf-icon-cloud.png HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://api-games-cxfteams.top/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Jul 2024 07:28:08 GMT
Content-Type: image/png
Content-Length: 1484
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 08:13:48 GMT
ETag: "668f943c-5cc"
Server: cloudflare
CF-RAY: 8a4046152d045685-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 16 Jul 2024 09:28:08 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| api-games-cxfteams.top/cdn-cgi/images/cf-icon-server.png | 104.21.22.95 | 200 OK | 1.4 kB |
URL GET HTTP/1.1api-games-cxfteams.top/cdn-cgi/images/cf-icon-server.png IP104.21.22.95:80
Requested byhttp://api-games-cxfteams.top/api/add/balance
File typePNG image data, 95 x 75, 8-bit colormap, non-interlaced Hash2c11e67182601007f577f8bf2c72fee8 01dc915d4745f00632021c05d3eef634747a9c3d 41553a537f85839927155af093b7bfa1987215f474ed038714609cc48812ea3b
GET /cdn-cgi/images/cf-icon-server.png HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://api-games-cxfteams.top/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Jul 2024 07:28:08 GMT
Content-Type: image/png
Content-Length: 1384
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 08:13:48 GMT
ETag: "668f943c-568"
Server: cloudflare
CF-RAY: 8a4046153d075685-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 16 Jul 2024 09:28:08 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| api-games-cxfteams.top/cdn-cgi/images/cf-icon-ok.png | 104.21.22.95 | 200 OK | 946 B |
URL GET HTTP/1.1api-games-cxfteams.top/cdn-cgi/images/cf-icon-ok.png IP104.21.22.95:80
Requested byhttp://api-games-cxfteams.top/api/add/balance
File typePNG image data, 48 x 48, 8-bit colormap, non-interlaced Hashdfaf0fbb758c874be231335db178381d 8f2597eb7ba4c89892aac0559816db3f5280b23e ed732380ee3ff0f2d841784da213c8c05d2b5ae187a5217b419d21cae5cedb1b
GET /cdn-cgi/images/cf-icon-ok.png HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://api-games-cxfteams.top/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Jul 2024 07:28:08 GMT
Content-Type: image/png
Content-Length: 946
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 08:13:48 GMT
ETag: "668f943c-3b2"
Server: cloudflare
CF-RAY: 8a404615287a56c0-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 16 Jul 2024 09:28:08 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| api-games-cxfteams.top/cdn-cgi/images/cf-icon-error.png | 104.21.22.95 | 200 OK | 854 B |
URL GET HTTP/1.1api-games-cxfteams.top/cdn-cgi/images/cf-icon-error.png IP104.21.22.95:80
Requested byhttp://api-games-cxfteams.top/api/add/balance
File typePNG image data, 48 x 48, 8-bit colormap, non-interlaced Hashe5577f04b6d92590410e26bd2292933b 16946b2c99d98a57f83eac170ce94b012b7d1a7b 67f70597a183fbca7fac55d609fbaac5c34bb4d4d32a0530bbbbb42591f2de2f
GET /cdn-cgi/images/cf-icon-error.png HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://api-games-cxfteams.top/cdn-cgi/styles/main.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Jul 2024 07:28:08 GMT
Content-Type: image/png
Content-Length: 854
Connection: keep-alive
Last-Modified: Thu, 11 Jul 2024 08:13:48 GMT
ETag: "668f943c-356"
Server: cloudflare
CF-RAY: 8a4046153b180b49-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 16 Jul 2024 09:28:08 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
|
| api-games-cxfteams.top/favicon.ico | 104.21.22.95 | 521 | 6.9 kB |
URL GET HTTP/1.1api-games-cxfteams.top/favicon.ico IP104.21.22.95:80
Requested byhttp://api-games-cxfteams.top/api/add/balance
File typeHTML document, ASCII text, with very long lines (394) Hash33da4424bd182111306b30286fc1b66c e42558937668d9b834a44aadde44875557ce5a9f 9b1940dbb4381aa738d1469ed231f6f2fd89a39a278b49daa77fb47d5faac165
GET /favicon.ico HTTP/1.1
Host: api-games-cxfteams.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://api-games-cxfteams.top/api/add/balance
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 521
Date: Tue, 16 Jul 2024 07:28:09 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 6869
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FCdNy4AleUDddfO4qFArq5g5Bo%2FoYjcGHJEkZn%2Bk940LuNWoE%2BhcFPIXjUfYf9VrxxSC4hL3fzuBPqq68CXSzN%2FQubwrf3mTwVXk1TkTtdXQqwyukpGFcfY3w2%2BraDp3TLbxi2DyvLTc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Server: cloudflare
CF-RAY: 8a4046155d1b5685-OSL
alt-svc: h2=":443"; ma=60
|
|