| 1-3r7.pages.dev/images/whatsapp_sex.png | 172.66.47.22 | 200 OK | 8.9 kB |
URL GET HTTP/31-3r7.pages.dev/images/whatsapp_sex.png IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typePNG image data, 256 x 167, 8-bit/color RGBA, non-interlaced Hashca52347e83dea28e747b569e11ae9cec 8db0997ea3e0b4e4d189f11f8f523cbd88a08d42 aa04fe0acc43d43c1842acf596d8b6af9a1d8deff4d434ea3d6c861013d4ea5c
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET /images/whatsapp_sex.png HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:10:48 GMT
content-type: image/png
content-length: 8918
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "f3e12f24ee07b3b54e622ccc2b2adc58"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PlUUxrkU%2F1TOF5aE0Fda47Qfn1bqp98%2BiNvW8mOLL8%2F8q57n%2BxIcqD9KacYpRaxU8vsxqrDVtcAy7TPqgph7RB6Oy%2FhbOCm%2BpNQcNsQevrjYfkMlemLovhQ3N1bPZav0Ce0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c04cf23b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1-3r7.pages.dev/images/Agus.jpg | 172.66.47.22 | 200 OK | 95 kB |
URL GET HTTP/31-3r7.pages.dev/images/Agus.jpg IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, progressive, precision 8, 960x1280, components 3 Hash4a8ae88919b6844f3d7503b489b0e438 2fd36b32fd3e30aded38a7aa90ba1c765f06c1e0 04158bd262e3c6b124875b4f269f3c71734370a968550fe855bbf234548e17d4
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET /images/Agus.jpg HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:10:48 GMT
content-type: image/jpeg
content-length: 94847
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "394c190b8fdf05f81f3c2f71d9533afd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hgf%2FrKwo8w47c7obicsiKgAOZOyAS%2F0iUY99aZjZ%2B70T1RdhdV3GYxdUKGlE3EM1WXimDEno65HIC%2FxxAPHO%2FbS6RZ1lqFvJ9uoVLLpiinlWhcD3090em5bi1LTp9Zj%2FcnY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c04cf25b527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1-3r7.pages.dev/backoffer.js | 172.66.47.22 | 200 OK | 1.6 kB |
URL GET HTTP/31-3r7.pages.dev/backoffer.js IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typeHTML document, ASCII text, with very long lines (352), with CRLF line terminators Hash876592ad5564eae04b556c4e660cd36f 52837bd2d0bf2b178004c06efe69b5234306ae25 0269a62d108eff15754dbe1e1dc07435c59bd6748b0310117aeaa846b065d7d8
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET /backoffer.js HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:10:48 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e9c36547df7b204ca7d17d8f33ed8477"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yEFIP0YV7M2jAjpS0jakSQlQgAQsS6RfPMptDJurolHNeh0Kf1q55ixZZzQQa%2Fge%2FWmkNC67ckiZG2suYD6%2BQD7SWsT2N6i6KX8I1%2BxD7mY0jDiSp4oUNJ2aCnFkdmHLY6c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c04bf20b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Source+Sans+Pro:300 | 142.250.74.106 | 200 OK | 1.1 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Source+Sans+Pro:300 IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hashdb12b7fd3a3c7bfc225c1ccae8dfd262 d2fb3ba1b1dc1bcfeeaf5a75316d9577530220fd 2c4419ac4efa37a74161e8e8e5d80911283741a235594fdb0682f504307ef50d
GET /css?family=Source+Sans+Pro:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 04:10:48 GMT
date: Fri, 19 Apr 2024 04:10:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14780, version 1.0 Hash8dae809192c44690275a3624133293e7 969c98c4d7eb00386ebbd61a63288972d138ecb8 c3de27b2cbd6deda629c9b442700cf54c0dda74e494b1c75a57d822068a047f8
GET /s/sourcesanspro/v22/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://1-3r7.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:40:02 GMT
expires: Fri, 18 Apr 2025 17:40:02 GMT
cache-control: public, max-age=31536000
age: 37847
last-modified: Thu, 01 Jun 2023 22:52:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 1-3r7.pages.dev/images/gaber.png | 172.66.47.22 | 200 OK | 217 kB |
URL GET HTTP/31-3r7.pages.dev/images/gaber.png IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typePNG image data, 2436 x 2415, 8-bit/color RGBA, non-interlaced Size217 kB (217446 bytes) Hash4f529ab865273ec37cd447c529b4db7b 46610761ef6623dc614656b3f4bdafb2be31b91f 4f0e71f3e3d7757fc73e39c14a23528f9e87d3f52da981c890f7f91e229c9b5f
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET /images/gaber.png HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/main-style.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:10:49 GMT
content-type: image/png
content-length: 217446
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "2d366f8033bb6ebcd1d8e67f20864de1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HGaiuVnlqS1Kz1s%2BccXnOk86E5rMP4Q67bs5McKCwbC37c2m2NlrmxhtyS89Zr1s07hS3Ovfwb2w8Omink6isvB10o%2Fd12r0zhZacaM4do%2B3qyEIrW3WtHUYqfVniUuWUNc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c07f8aab527-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 1-3r7.pages.dev/main-style.css | 172.66.47.22 | 200 OK | 4.1 kB |
URL GET HTTP/31-3r7.pages.dev/main-style.css IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typeUnicode text, UTF-8 text, with very long lines (492), with CRLF line terminators Hasha08fd2585c7b02b9b17273c1fb78d41f 789d3c18c3fd277893b4d432325a092b650b12e8 b43ac270ffd09e7d80104be9129e23bcbe0f9c94284c57bd16667e84c4120e58
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET /main-style.css HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:10:48 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4eca2768509e30a1a5ed8c5cbb2ed169"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VnfptXPq1%2F3raO%2BFQFQon8e1a6B%2BpYL65CsjNYrk%2FN1Blcd%2BYthUOqYQ0S8Vq%2BsltRFxpAvhsf5M%2BjsCO3a21PkeUGaZcjCWOPG%2BFcHfahly93QZ57fFWpkFuE6tOuz7LHo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c04bf1fb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 1-3r7.pages.dev/style.css | 172.66.47.22 | 200 OK | 6.4 kB |
URL GET HTTP/31-3r7.pages.dev/style.css IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typeASCII text, with CRLF line terminators Hash61d6a86264001b13eb1f1dfc802cff2f 93d4ae0ed9baee71d427768baf732af4071204e4 ca6c9b2eecced538a6d8d1c3076a01336093d27e042f603855cb205cc373223c
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET /style.css HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:10:48 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f7c47dbb717b23cc7ea11356aebfabba"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DjzXSChrqCHbS%2Fte%2Fn3HY%2FYL9RjjDBU9VGRp0E1h%2FnL9yP4IPp58lzHJugVNBRYI8UZu3VGuaD98PyxAKkJjMlz8YWxCrKF%2FFItdTT%2Fxs8A%2FLVjHE3jGHs%2FAe%2FipxYQ8VlI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c04bf1eb527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 172.66.47.22 | 200 OK | 6.9 kB |
URL User Request GET HTTP/2IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typeHTML document, ASCII text, with very long lines (352), with CRLF line terminators Hash876592ad5564eae04b556c4e660cd36f 52837bd2d0bf2b178004c06efe69b5234306ae25 0269a62d108eff15754dbe1e1dc07435c59bd6748b0310117aeaa846b065d7d8
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET / HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 04:10:48 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e9c36547df7b204ca7d17d8f33ed8477"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8e2aPbu65xQTQ5nlehwPUVm5cgaLHQUfCEgoaff%2FA8QHKC2jxwSAi2HKIoHbd%2F2mkVtAyOU8xHu4HD3n2%2BEDCune2JiLf%2B%2FjQzIfVGnZW7yA4kJ3poniSieMsluSljl7484%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c017db81c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 1-3r7.pages.dev/images/favicon.ico | 172.66.47.22 | 200 OK | 3.6 kB |
URL GET HTTP/31-3r7.pages.dev/images/favicon.ico IP172.66.47.22:443
CertificateIssuerGoogle Trust Services LLC Subject1-3r7.pages.dev FingerprintFC:30:B0:8D:B0:5B:EC:16:08:9C:76:CD:9C:4D:47:27:0E:CE:40:0D ValidityMon, 15 Apr 2024 01:34:27 GMT - Sun, 14 Jul 2024 01:34:26 GMT
File typeHTML document, ASCII text, with very long lines (3894), with no line terminators Hash8aac76f3852d98d31c39b4cea9e93324 310c36de78cd275dcdad376b5a64972b0e6f65c7 1d41a03ff6704d304c8c37dd278dfa2ca26ab37bdc1b5f994345e028cbe1d087
Analyzer | Verdict | Alert | OpenPhish | phishing | WhatsApp |
GET /images/favicon.ico HTTP/1.1
Host: 1-3r7.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://1-3r7.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 19 Apr 2024 04:10:48 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e9c36547df7b204ca7d17d8f33ed8477"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NPGY%2FhZtKOnuNLWjYXBoFTXWKrMFvtxssiKOS7BuBwHPFAmOhpCtVWldrNp0qRnN4G0e9Sbfhlc8Yt75vGztj7LL%2Br2mEUMNQMxvOkpMVJDbQM2r0LvOxdfIJk78WOfzD3s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876a0c061fc8b527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|