| | 72.167.206.184 | 200 OK | 328 B |
URL User Request GET HTTP/2IP72.167.206.184:443 ASN#398101 GO-DADDY-COM-LLC
CertificateIssuerLet's Encrypt Subjectcpanel.metamailinfo.com Fingerprint49:86:26:D2:55:D4:91:1C:3E:7B:5E:3F:5A:3B:A8:6D:14:9F:B0:F7 ValidityThu, 04 Apr 2024 18:58:56 GMT - Wed, 03 Jul 2024 18:58:55 GMT
File typeHTML document, ASCII text, with very long lines (872), with no line terminators Hashdfdda3a4216c4a489fc325e684cf5177 3ed0f6c26530be857df55956e43aa7e3b5786400 f6f63cbef1ce2559bcfe38ef0e1f6363bcaa68dd60eebb61ee793a3a64799604
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. |
GET / HTTP/1.1
Host: metamailinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:44:06 GMT
etag: "1432d9-368-615506debc980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 328
content-type: text/html
date: Fri, 19 Apr 2024 15:38:34 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| metamailinfo.com/static/css/main.cf63c09b.css | 72.167.206.184 | 200 OK | 33 kB |
URL GET HTTP/2metamailinfo.com/static/css/main.cf63c09b.css IP72.167.206.184:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectcpanel.metamailinfo.com Fingerprint49:86:26:D2:55:D4:91:1C:3E:7B:5E:3F:5A:3B:A8:6D:14:9F:B0:F7 ValidityThu, 04 Apr 2024 18:58:56 GMT - Wed, 03 Jul 2024 18:58:55 GMT
File typeASCII text, with very long lines (59616) Hashaeb043daf0fd8b04658efef3369e1545 98b9ed2d6446b99a24f50aa7675c9895ce07703c 58f0aaefb934521c185f7c02f8ee33fb85f69abc7fedcbefef662f94dd84a6c7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. |
GET /static/css/main.cf63c09b.css HTTP/1.1
Host: metamailinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:44:06 GMT
etag: "1432e2-25fc0-615506debc980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 32799
content-type: text/css
date: Fri, 19 Apr 2024 15:38:35 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| metamailinfo.com/static/js/main.28ba35d3.js | 72.167.206.184 | 200 OK | 110 kB |
URL GET HTTP/2metamailinfo.com/static/js/main.28ba35d3.js IP72.167.206.184:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectcpanel.metamailinfo.com Fingerprint49:86:26:D2:55:D4:91:1C:3E:7B:5E:3F:5A:3B:A8:6D:14:9F:B0:F7 ValidityThu, 04 Apr 2024 18:58:56 GMT - Wed, 03 Jul 2024 18:58:55 GMT
File typeJavaScript source, ASCII text, with very long lines (65465) Size110 kB (110235 bytes) Hashe28bc68d134be237307200c0b28c8e05 903eabc81a53ad70365b15519182856f73ddba8e 631dde1400433f9906ea5422c448b9b4f72641f9008c74e4c511283c295c6062
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. |
GET /static/js/main.28ba35d3.js HTTP/1.1
Host: metamailinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:44:06 GMT
etag: "1432de-58579-615506debc980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 110235
content-type: application/javascript
date: Fri, 19 Apr 2024 15:38:35 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap | 142.250.74.106 | 200 OK | 1.5 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap IP142.250.74.106:443
Requested byhttps://metamailinfo.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hash62bffb57e4dff7ac62073a5ba4c586a7 7016a2793f1ed78a086fe8a0dc9347a2befb3396 343367c16bdf4bc449b1d74fecd8ec589a83e7276e85224fc32f96374b632724
GET /css2?family=Roboto:ital,wght@0,300;0,400;0,500;0,700;1,300;1,400;1,500;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 19 Apr 2024 15:38:35 GMT
date: Fri, 19 Apr 2024 15:38:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| metamailinfo.com/apple-touch-icon.png | 72.167.206.184 | 200 OK | 3.9 kB |
URL GET HTTP/2metamailinfo.com/apple-touch-icon.png IP72.167.206.184:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectcpanel.metamailinfo.com Fingerprint49:86:26:D2:55:D4:91:1C:3E:7B:5E:3F:5A:3B:A8:6D:14:9F:B0:F7 ValidityThu, 04 Apr 2024 18:58:56 GMT - Wed, 03 Jul 2024 18:58:55 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash3e9533e36b37b665d85d920c8a58283d 7c0b7cd6fa47ca73ee7c7971f84c6728a5db811f 16161eafeb5ffaa11292d6defea260b5ab286329ea801f6e924a8feab65840eb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. |
GET /apple-touch-icon.png HTTP/1.1
Host: metamailinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:43:46 GMT
etag: "1432d1-f4f-615506cba9c80"
accept-ranges: bytes
content-length: 3919
content-type: image/png
date: Fri, 19 Apr 2024 15:38:35 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| metamailinfo.com/favicon-16x16.png | 72.167.206.184 | 200 OK | 822 B |
URL GET HTTP/2metamailinfo.com/favicon-16x16.png IP72.167.206.184:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectcpanel.metamailinfo.com Fingerprint49:86:26:D2:55:D4:91:1C:3E:7B:5E:3F:5A:3B:A8:6D:14:9F:B0:F7 ValidityThu, 04 Apr 2024 18:58:56 GMT - Wed, 03 Jul 2024 18:58:55 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hashbe9b2c044c6f5e1706f07c040da977e7 ed7227409e617008c554bd89f92d42ce74b2fb2a 95d92c83de08c2a0cd4b4c4c564debf02db09b1bcfc6957e9f63d2344e866bd4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. |
GET /favicon-16x16.png HTTP/1.1
Host: metamailinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:43:46 GMT
etag: "1432dc-336-615506cba9c80"
accept-ranges: bytes
content-length: 822
content-type: image/png
date: Fri, 19 Apr 2024 15:38:35 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| ipapi.co/json// | 172.67.69.226 | 200 OK | 361 B |
IP172.67.69.226:443
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectipapi.co FingerprintF4:65:F9:9B:26:CD:26:53:C7:F0:24:4D:F3:3B:E2:8E:8F:8F:60:D7 ValiditySat, 09 Mar 2024 17:29:09 GMT - Fri, 07 Jun 2024 17:29:08 GMT
Hash3ea894357e15788b101c2525a13d7ced e75b69db5ebe486b46035f39fc9c8c4374aec970 1f97c1464ed28eaafaf0cdfe7bff7aa3ede2a10054dbd8c2d3c98fcd3281c035
GET /json// HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metamailinfo.com
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 15:38:35 GMT
content-type: application/json
allow: OPTIONS, HEAD, POST, GET, OPTIONS
x-frame-options: DENY
vary: Host, origin
access-control-allow-origin: https://metamailinfo.com
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I7loUppl0dstBLzh5on5UoQsWumQY5SfXnkUYxPPPOGANxMLAxiCjK3uT7b96f1bqNujBrRo5rcjc%2Bq7P9T2uod6JcvoTlBL%2FGlj1dC37%2FZL0Fi%2By7%2B2FHcB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876dfb853d6356c1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| shell.anotherlevel.app/api/activity/shadow | 146.70.81.214 | 200 OK | 85 B |
URL OPTIONS HTTP/1.1shell.anotherlevel.app/api/activity/shadow IP146.70.81.214:443
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectshell.anotherlevel.app FingerprintEA:D1:63:A0:7C:50:51:93:B7:F7:BE:3A:0C:16:04:37:27:34:9E:31 ValiditySat, 13 Apr 2024 12:01:29 GMT - Fri, 12 Jul 2024 12:01:28 GMT
Hash09992d46ca1266fe7a2d1a86e7680954 234ac709243c39d74e48ddc45a6de589336ad724 5bca00413d504d784b3974bb8d78ec197273152c0e4ce073d51250e69e8ee53c
POST /api/activity/shadow HTTP/1.1
Host: shell.anotherlevel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 105
Origin: https://metamailinfo.com
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 19 Apr 2024 15:38:36 GMT
Content-Type: application/json
Content-Length: 85
Connection: keep-alive
access-control-allow-origin: *
access-control-allow-credentials: true
|
|
| metamailinfo.com/static/media/fb-hzzrndfaaptmyurd.b1cfbf0dc49d882cc320.svg | 72.167.206.184 | 200 OK | 1.1 kB |
URL GET HTTP/2metamailinfo.com/static/media/fb-hzzrndfaaptmyurd.b1cfbf0dc49d882cc320.svg IP72.167.206.184:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectcpanel.metamailinfo.com Fingerprint49:86:26:D2:55:D4:91:1C:3E:7B:5E:3F:5A:3B:A8:6D:14:9F:B0:F7 ValidityThu, 04 Apr 2024 18:58:56 GMT - Wed, 03 Jul 2024 18:58:55 GMT
File typeSVG Scalable Vector Graphics image Hash665dd80e557128ca83c069e756e8a687 25684ac0c8c748a9c6fdc9cf2b74b1f197ff061b be1a79177f078daadb07a28bed64ce33c1a143fb1e2dc21865482f9b504528e2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook | OpenPhish | phishing | Facebook, Inc. |
GET /static/media/fb-hzzrndfaaptmyurd.b1cfbf0dc49d882cc320.svg HTTP/1.1
Host: metamailinfo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 05 Apr 2024 02:44:06 GMT
etag: "1432ee-9f0-615506debc980-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1082
content-type: image/svg+xml
date: Fri, 19 Apr 2024 15:38:37 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| shell.anotherlevel.app/api/set_status/null/login | 146.70.81.214 | 200 OK | 36 B |
URL GET HTTP/1.1shell.anotherlevel.app/api/set_status/null/login IP146.70.81.214:443
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectshell.anotherlevel.app FingerprintEA:D1:63:A0:7C:50:51:93:B7:F7:BE:3A:0C:16:04:37:27:34:9E:31 ValiditySat, 13 Apr 2024 12:01:29 GMT - Fri, 12 Jul 2024 12:01:28 GMT
Hash765920e039936e6a4efcef8bf71b17ee 752c679ee557891cae4eefd593c77913f7372dc2 3a81f99aaef5363691cb6067c2fe3c2b5eea5da386a7f80fcf7eafdd42e90de1
GET /api/set_status/null/login HTTP/1.1
Host: shell.anotherlevel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metamailinfo.com
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Fri, 19 Apr 2024 15:38:37 GMT
Content-Type: application/json
Content-Length: 36
Connection: keep-alive
access-control-allow-origin: *
access-control-allow-credentials: true
|
|
| shell.anotherlevel.app/stealth | 146.70.81.214 | | 0 B |
URL shell.anotherlevel.app/stealth IP146.70.81.214:0
CertificateIssuerLet's Encrypt Subjectshell.anotherlevel.app FingerprintEA:D1:63:A0:7C:50:51:93:B7:F7:BE:3A:0C:16:04:37:27:34:9E:31 ValiditySat, 13 Apr 2024 12:01:29 GMT - Fri, 12 Jul 2024 12:01:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stealth HTTP/1.1
Host: shell.anotherlevel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://metamailinfo.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cj14E1ZjCE3prIbD/VMzfw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.22.1
Date: Fri, 19 Apr 2024 15:38:37 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1VnSkkN4HtAO01RupZ53s51yDj4=
Sec-WebSocket-Extensions: permessage-deflate; server_max_window_bits=12
|
|
| ipapi.co/json// | 172.67.69.226 | 200 OK | 8.0 kB |
IP172.67.69.226:443
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectipapi.co FingerprintF4:65:F9:9B:26:CD:26:53:C7:F0:24:4D:F3:3B:E2:8E:8F:8F:60:D7 ValiditySat, 09 Mar 2024 17:29:09 GMT - Fri, 07 Jun 2024 17:29:08 GMT
Hash3ea894357e15788b101c2525a13d7ced e75b69db5ebe486b46035f39fc9c8c4374aec970 1f97c1464ed28eaafaf0cdfe7bff7aa3ede2a10054dbd8c2d3c98fcd3281c035
GET /json// HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://metamailinfo.com
DNT: 1
Connection: keep-alive
Referer: https://metamailinfo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 19 Apr 2024 15:38:37 GMT
content-type: application/json
allow: OPTIONS, HEAD, POST, GET, OPTIONS
x-frame-options: DENY
vary: Host, origin
access-control-allow-origin: https://metamailinfo.com
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gLwQ4Y%2FUaotsNIHIMDENgKZH0lXABDwIhIlwSQPxbL5AAMCrtfg9oWSppCzDrvnQclCvtgP5ZxUUuy0Sx%2B8gke6oJ20v0nsUW2j6M%2FCC2xfC70qhuzxwBMnE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 876dfb91d95d56c1-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| shell.anotherlevel.app/stealth | 146.70.81.214 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1shell.anotherlevel.app/stealth IP146.70.81.214:443
Requested byhttps://metamailinfo.com/ CertificateIssuerLet's Encrypt Subjectshell.anotherlevel.app FingerprintEA:D1:63:A0:7C:50:51:93:B7:F7:BE:3A:0C:16:04:37:27:34:9E:31 ValiditySat, 13 Apr 2024 12:01:29 GMT - Fri, 12 Jul 2024 12:01:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stealth HTTP/1.1
Host: shell.anotherlevel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://metamailinfo.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cj14E1ZjCE3prIbD/VMzfw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.22.1
Date: Fri, 19 Apr 2024 15:38:37 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1VnSkkN4HtAO01RupZ53s51yDj4=
Sec-WebSocket-Extensions: permessage-deflate; server_max_window_bits=12
|
|