| 2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/ |  172.66.44.91 | 200 OK | 39 kB |
URL User Request GET HTTP/22f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/ IP172.66.44.91:443
CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintEC:EE:5B:20:72:5D:AF:96:32:62:8A:71:7C:F9:5F:78:3F:91:EA:D6 ValidityFri, 14 Jul 2023 00:00:00 GMT - Sat, 13 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (11234), with CRLF line terminators Hashdfb69e00ae2a236799da49c20ddb445e 7db03c811e72e8e3e4000ba979fa1d07017c7c71 7e9283f6da98a7a53c5f05131c6ee0107004c76d96f34561106e1f05e453a9e4
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. | | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:29:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4f805bfeaacf8b393d7a6f1e74bf46ed"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NOs6UOxL7g9EqPNd0hvy0NX91xfOK4L6441UfISyCsIpLdQ6eZp%2F738Sav4PA0J4TrZ3x6kqa6QPlMUDV5d2Y4BvbGwJFadwtJoGrsvH7y6ZVKsh81%2Bt66xVG7aUhmetG26qMzCgyDzAriUxWj91Da4mbrwSYhAJl3E6mjRcMKRXfJO%2F2%2B78k%2Fw4pkq7log3ExTf%2FfCSLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3d58ff8ad56ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| 2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/style.css | 172.66.44.91 | 200 OK | 0 B |
URL GET HTTP/22f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/style.css IP172.66.44.91:443
Requested byhttps://2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintEC:EE:5B:20:72:5D:AF:96:32:62:8A:71:7C:F9:5F:78:3F:91:EA:D6 ValidityFri, 14 Jul 2023 00:00:00 GMT - Sat, 13 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. | | Quad9 DNS | malicious | Sinkholed |
GET /style.css HTTP/1.1
Host: 2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:29:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4f805bfeaacf8b393d7a6f1e74bf46ed"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d2U%2BYXc99SZLaW%2B0bLDNlOEayYrP0jIJkme86p3ZZOl%2FoCanPMhr7BCV0vFv6d1Zd%2Fj5Gydc3UOW0S%2Bmq2pBZquKMaVLWbfmWx6jpHy5ffY5mx7uWIDihOaPJIUiScviktxTAeSgJ6Lvvq7cui5%2BwlaxSPQFZp%2BOLCN7GvapiIsyjeaFJQSfzi4EeqbZq7J5YOquLw6NVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3d591b98456ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js | 142.250.74.170 | 200 OK | 88 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.7.1/jquery.min.js IP142.250.74.170:443
Requested byhttps://2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a
GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30462
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 21:48:35 GMT
expires: Tue, 22 Apr 2025 21:48:35 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 12 Sep 2023 02:38:22 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 283277
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
| 2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/att-favicon.png | 172.66.44.91 | 200 OK | 21 kB |
URL GET HTTP/22f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/att-favicon.png IP172.66.44.91:443
Requested byhttps://2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintEC:EE:5B:20:72:5D:AF:96:32:62:8A:71:7C:F9:5F:78:3F:91:EA:D6 ValidityFri, 14 Jul 2023 00:00:00 GMT - Sat, 13 Jul 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (11234), with CRLF line terminators Hashdfb69e00ae2a236799da49c20ddb445e 7db03c811e72e8e3e4000ba979fa1d07017c7c71 7e9283f6da98a7a53c5f05131c6ee0107004c76d96f34561106e1f05e453a9e4
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | AT&T Inc. | | Quad9 DNS | malicious | Sinkholed |
GET /att-favicon.png HTTP/1.1
Host: 2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2f1427810dffb30ff511a468440743e89c4f57b92c4894699e4f6da704.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:29:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4f805bfeaacf8b393d7a6f1e74bf46ed"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mWLHTW4jta3P1Twbrlfc4aVn3F0zg%2FkiQlxQZa3Km877Y7lMSHrqCd6WCe4cN%2FzoQa2pWRnuL88hCbx9b873SE1K%2BHzR%2BSa2uTHPPfScFq7BiH7dfxZO%2F56yR%2FF7UW3ruKrjlAfy2D%2F%2FX7qmXcSQZ87LfESXLM9zXsXU6Be3gMW9PbM1%2BGP9UGKqa%2FGmBD%2FKFb03hUmktw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a3d59289e056ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|