| ottos-telegrampage2.pages.dev/index_files/glyph_alert_critical_big-2x.png | 172.66.44.52 | 200 OK | 5.8 kB |
URL GET HTTP/3ottos-telegrampage2.pages.dev/index_files/glyph_alert_critical_big-2x.png IP172.66.44.52:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectottos-telegrampage2.pages.dev FingerprintBC:EF:A5:5A:64:62:91:E8:55:51:AA:1E:B5:90:1E:47:2F:FC:6E:1F ValiditySat, 20 Apr 2024 21:34:05 GMT - Fri, 19 Jul 2024 21:34:04 GMT
File typePNG image data, 224 x 200, 8-bit/color RGBA, non-interlaced Hash6a0fb0e8e8a895eeb013429819d1807d 37d6b16548d41dbde47c3d2a089efa69481d900e 13e4806e5c517e074ab1ea26fe0f2b7b87eaa3988006f35ed0bd4c89502d0d79
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /index_files/glyph_alert_critical_big-2x.png HTTP/1.1
Host: ottos-telegrampage2.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 00:02:03 GMT
content-type: image/png
content-length: 5828
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4ab3f1ccde2f177a37b36750d865d39e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TWZZ3wfac7clgLpb0XJirsMY3dJ%2FeM7kG91jhY0cCBguTMQHlO2YYEjzkymBeFcnlXnLOKORcA1i%2FZPtz%2BlbRhOWPfMEkvYeDgUp7vCz%2BMpvMkkoHyx7SX%2BOBLnA1qJXhUhyz1HB04DZVE%2B6T3XgWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791d284ba5156cc-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ottos-telegrampage2.pages.dev/index_files/icon-PN-check.png | 172.66.44.52 | 200 OK | 2.2 kB |
URL GET HTTP/3ottos-telegrampage2.pages.dev/index_files/icon-PN-check.png IP172.66.44.52:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectottos-telegrampage2.pages.dev FingerprintBC:EF:A5:5A:64:62:91:E8:55:51:AA:1E:B5:90:1E:47:2F:FC:6E:1F ValiditySat, 20 Apr 2024 21:34:05 GMT - Fri, 19 Jul 2024 21:34:04 GMT
File typePNG image data, 121 x 133, 8-bit/color RGBA, non-interlaced Hashec06d032b1e2fa682c8ef3497bf982d2 06b4d2a83aed4b365140147985c2f12d3457ee61 4a77d272b8cf508cc4a7e0da5763faa9958e42a5554fdb5d29fc3be51d685653
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /index_files/icon-PN-check.png HTTP/1.1
Host: ottos-telegrampage2.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 00:02:03 GMT
content-type: image/png
content-length: 2236
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4d6e8a5b1e53525b7632b32bc1e32b2a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wkdc52okzYxYJ76%2BOHUAgc%2FeCk5M4o7lnVLxggfnO8W9eVuyKo4FD%2BI%2BWQ49BGNR2%2FJihEaZyuS2ZbG7E94Lvdu45eFR6kngRWcYyGU4AukASWXgYi3xGlkiuPY4onLX%2BRlMOBimJwuVBJlyrfAIFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791d284ba5056cc-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ottos-telegrampage2.pages.dev/index_files/contextualLoginElementalUIv2.css | 172.66.44.52 | 200 OK | 25 kB |
URL GET HTTP/3ottos-telegrampage2.pages.dev/index_files/contextualLoginElementalUIv2.css IP172.66.44.52:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectottos-telegrampage2.pages.dev FingerprintBC:EF:A5:5A:64:62:91:E8:55:51:AA:1E:B5:90:1E:47:2F:FC:6E:1F ValiditySat, 20 Apr 2024 21:34:05 GMT - Fri, 19 Jul 2024 21:34:04 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash19bbf07d6bc32ee601228322982e5ab8 4bb1277405f52314e1997b11ad673f6bf7fcb85a 69be7adca53f8e3b8d56a359e63ec6510fd119768ec947d343a853f698d7a5c5
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /index_files/contextualLoginElementalUIv2.css HTTP/1.1
Host: ottos-telegrampage2.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 00:02:03 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"63580cfd72b9a70cf033f17f1910dccb"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2bkKaDKWXtj6ZdsUxDz4ZNxct5ASbLZvV4He3WPkVKH9Vco%2FS0fxUb5JCuLRkpJG6lJ7s%2FSzgkg8sgBaIUQYv33WIeeYDAo4nnGI8MIHRIv%2F%2BLriDfZCh7MIf95Jx9D4smou7zyIWoU%2FdGbsB%2BCBSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791d284ba4c56cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Medium.woff2 | 192.229.221.25 | 200 OK | 18 kB |
URL GET HTTP/2www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Medium.woff2 IP192.229.221.25:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerDigiCert Inc Subjectwww.paypal.com Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18508, version 1.6553 Hash57518c06c06d691bd2def8d51db1f1c2 dab349042885997d8d08db8dc38d0b4907635e2e 2ae6779c6c3579643ab6deb5cfb822e843bf637d006a4ec25d9857ec7fb6d8c1
GET /paypal-ui/fonts/PayPalSansBig-Medium.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ottos-telegrampage2.pages.dev/
Origin: https://ottos-telegrampage2.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Wed, 24 Apr 2024 00:02:03 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271cda-484c"
expires: Wed, 24 Apr 2024 01:02:03 GMT
last-modified: Sat, 13 Feb 2021 00:27:06 GMT
paypal-debug-id: 6b7a53e8c47b2
server: ECAcc (ska/F74B)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000006b7a53e8c47b2-ccfb246c86d3bb75-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18508
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Regular.woff2 | 192.229.221.25 | 200 OK | 25 kB |
URL GET HTTP/2www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Regular.woff2 IP192.229.221.25:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerDigiCert Inc Subjectwww.paypal.com Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), CFF, length 25368, version 1.6553 Hash186b9e5be0671c3c941a2a4966beb47a 0255bf2f48460eb212c93242740f5bef01e858c4 1f70ff447ed799a34f4c3ae37ef1f49ed4af71123ba2c2aefe354565354284be
GET /paypal-ui/fonts/PayPalSansBig-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://ottos-telegrampage2.pages.dev/
Origin: https://ottos-telegrampage2.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Wed, 24 Apr 2024 00:02:03 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271cda-6318"
expires: Wed, 24 Apr 2024 01:02:03 GMT
last-modified: Sat, 13 Feb 2021 00:27:06 GMT
paypal-debug-id: 68b1b20cb6d40
server: ECAcc (ska/F744)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000068b1b20cb6d40-6559e47b7df8266a-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 25368
X-Firefox-Spdy: h2
|
|
| ottos-telegrampage2.pages.dev/ | 172.66.44.52 | 200 OK | 127 kB |
URL GET HTTP/3ottos-telegrampage2.pages.dev/ IP172.66.44.52:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerLet's Encrypt Subjectottos-telegrampage2.pages.dev FingerprintBC:EF:A5:5A:64:62:91:E8:55:51:AA:1E:B5:90:1E:47:2F:FC:6E:1F ValiditySat, 20 Apr 2024 21:34:05 GMT - Fri, 19 Jul 2024 21:34:04 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (995) Size127 kB (126742 bytes) Hash31e5ee77dbba0086fa335ef071194b51 8c1ebf65571f4c268a19e18e652c9e54faafecde ffbe06d6ab94a8bcb8fc48d3d420cc19f5811835a0c621ab75b8ba0750d16406
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: ottos-telegrampage2.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/robots.txt
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 00:02:03 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e099542064ae407825c0debf2905dac2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o7LAaf2UcxHMsb7kaVrzu%2FInOcIlYtZimBbLhh6LjE%2Fc4uNCMjzZOY9rDeGBH0TazZfdHSjgEcATFwk0OBP5gRIYROPOAvB9rEzc8c7qxLHa%2FwF%2FQp%2FBCJ5MiZvuq42H5%2F5F786cKz3DqlfHjJXE7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791d284ba4f56cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.paypalobjects.com/webstatic/icon/pp64.png | 192.229.221.25 | 200 OK | 4.5 kB |
URL GET HTTP/2www.paypalobjects.com/webstatic/icon/pp64.png IP192.229.221.25:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerDigiCert Inc Subjectwww.paypal.com Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT
File typePNG image data, 64 x 64, 8-bit/color RGB, non-interlaced Hash5ff4fb77dc2ba5364283b18256b34e1a 37f8e1586e4a091d7a0a266842fd3a3d4e15c5aa 965b855f8212fb12dac35c751da64ae8c1a10ab93ac274c0f40c1d28d159ebce
GET /webstatic/icon/pp64.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Wed, 24 Apr 2024 00:02:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "53611ccb-11a6"
expires: Wed, 24 Apr 2024 01:02:04 GMT
last-modified: Wed, 30 Apr 2014 15:54:51 GMT
paypal-debug-id: 641bd7d7c3e9c
server: ECAcc (ska/F75E)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000641bd7d7c3e9c-8b253161f24a5ac9-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 4518
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico | 192.229.221.25 | | 1.4 kB |
URL GET www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico IP192.229.221.25:0
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerDigiCert Inc Subjectwww.paypal.com Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT
File typeMS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel Hashe1528b5176081f0ed963ec8397bc8fd3 ff60afd001e924511e9b6f12c57b6bf26821fc1e 1690c4e20869c3763b7fc111e2f94035b0a7ee830311dd680ac91421daad3667
GET /en_US/i/icon/pp_favicon_x.ico HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/x-icon
date: Wed, 24 Apr 2024 00:02:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5d5637bd-1536"
expires: Wed, 24 Apr 2024 01:02:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 24d3439d2f8c5
server: ECAcc (ska/F6D8)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000024d3439d2f8c5-1240c8c31ae4cbf8-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1403
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/logos/svg/paypal-mark-color.svg | 192.229.221.25 | 200 OK | 1.1 kB |
URL GET HTTP/2www.paypalobjects.com/paypal-ui/logos/svg/paypal-mark-color.svg IP192.229.221.25:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerDigiCert Inc Subjectwww.paypal.com Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash8b08f5bc6380fe2f488b3aba9b2dd606 ef0a9aa4ceee7b025be816802efbb2682526f83e 6bc53efc03e44751a8e8a3d40df4e5ce5298e1ac7956eacffb9603edd6935b72
GET /paypal-ui/logos/svg/paypal-mark-color.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 24 Apr 2024 00:02:03 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"62aa5e30-436"
expires: Wed, 24 Apr 2024 01:02:03 GMT
last-modified: Wed, 15 Jun 2022 22:33:20 GMT
paypal-debug-id: ce17e6d7adad6
server: ECAcc (ska/F686)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000ce17e6d7adad6-8a91de907aba95a6-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 548
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/webstatic/mktg/icons/sprite_countries_flag4.png | 192.229.221.25 | 200 OK | 110 kB |
URL GET HTTP/2www.paypalobjects.com/webstatic/mktg/icons/sprite_countries_flag4.png IP192.229.221.25:443
Requested byhttps://ottos-telegrampage2.pages.dev/robots.txt CertificateIssuerDigiCert Inc Subjectwww.paypal.com Fingerprint4B:C0:E1:F0:16:B3:A4:B3:63:08:41:DF:F2:EF:8D:65:54:1D:30:B1 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 31 Oct 2024 23:59:59 GMT
File typePNG image data, 22 x 7296, 8-bit/color RGBA, interlaced Size110 kB (110177 bytes) Hash7dd4d2c768276d0408abd27e2ffc9f61 bf2004fa43ade4af35d789e1d0b385b39e7f8214 21f89c7c27f0eab13388645aea1eedb4a342c06333a14d74c1a10dfca04d6455
GET /webstatic/mktg/icons/sprite_countries_flag4.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ottos-telegrampage2.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Wed, 24 Apr 2024 00:02:03 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271d86-1ae61"
expires: Wed, 24 Apr 2024 01:02:03 GMT
last-modified: Sat, 13 Feb 2021 00:29:58 GMT
paypal-debug-id: 69f19aff5383c
server: ECAcc (ska/F6B3)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000069f19aff5383c-b36241f9af5cd94a-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 110177
X-Firefox-Spdy: h2
|
|
| ottos-telegrampage2.pages.dev/robots.txt | 172.66.44.52 | 200 OK | 87 kB |
URL User Request GET HTTP/2ottos-telegrampage2.pages.dev/robots.txt IP172.66.44.52:443
CertificateIssuerLet's Encrypt Subjectottos-telegrampage2.pages.dev FingerprintBC:EF:A5:5A:64:62:91:E8:55:51:AA:1E:B5:90:1E:47:2F:FC:6E:1F ValiditySat, 20 Apr 2024 21:34:05 GMT - Fri, 19 Jul 2024 21:34:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | PayPal Inc. | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /robots.txt HTTP/1.1
Host: ottos-telegrampage2.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 00:02:03 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e099542064ae407825c0debf2905dac2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hRL5jsfb1CPZfE0Hy3BSAy084ZPg%2BsJpiJ8PX5fpHEoY0sE1ndydmUAgsnp%2Fn7eVFbv%2B4Jdm6jykatRVIYo6KY17p7B0uxSnfSTMu9DcM4cGtiqvx1UGOcze0by6HF4RuTUT3wyvedSleR4hRpUY7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8791d282992656c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|