| pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php |  162.241.226.181 | 200 OK | 5.9 kB |
URL User Request GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeJavaScript source, ASCII text, with very long lines (2153), with CRLF line terminators Hash77f6a5f0d3736d5158663d25f5abb5ef 8a0e0f1767bcc9fbe9a80b9d00244c6c85b8cf44 8e95d269a3964a051f5cfc5f491662a89e55dbb15047180e92c6b3f3f59ebd53
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/login.php HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39; path=/
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
content-length: 5881
content-type: text/html; charset=UTF-8
date: Tue, 23 Apr 2024 06:30:05 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/css/login2.css | 162.241.226.181 | 200 OK | 13 kB |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/css/login2.css IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeASCII text, with CRLF line terminators Hash46d129ecb214327cf6f27c8117d7bc10 0156f942ff16455a5ad557292f983a556b322d86 aff97ad268ac1d54077e85c725f1cc8f3e6a5d2e13a59f54e47055de1eb8fd2a
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/styles/css/login2.css HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Apr 2024 02:42:18 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Wed, 24 Apr 2024 06:30:06 GMT
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
content-length: 12702
content-type: text/css
date: Tue, 23 Apr 2024 06:30:06 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/img/TN-en-20231009-popsignuptwoweeks-perspective_alpha_website_medium.jpg | 162.241.226.181 | 200 OK | 201 kB |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/img/TN-en-20231009-popsignuptwoweeks-perspective_alpha_website_medium.jpg IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3 Size201 kB (200565 bytes) Hash317459eb7cd30f30ee0d396e97cc89ad d72132c4f70d09c53857fb536c1fa646b0a185c5 afab2838e43f9c777377d6e8183c1603e9f21d4cecdcd77b8e28524fe77dcb1a
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/styles/img/TN-en-20231009-popsignuptwoweeks-perspective_alpha_website_medium.jpg HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Apr 2024 02:42:18 GMT
accept-ranges: bytes
content-length: 200565
cache-control: max-age=86400
expires: Wed, 24 Apr 2024 06:30:06 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
content-type: image/jpeg
date: Tue, 23 Apr 2024 06:30:06 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.main.js | 162.241.226.181 | 404 Not Found | 315 B |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.main.js IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/js/jquery.main.js HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Tue, 23 Apr 2024 06:30:06 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.mask.js | 162.241.226.181 | 404 Not Found | 315 B |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.mask.js IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/js/jquery.mask.js HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Tue, 23 Apr 2024 06:30:06 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery-3.5.1.min.js | 162.241.226.181 | 404 Not Found | 315 B |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery-3.5.1.min.js IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/js/jquery-3.5.1.min.js HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Tue, 23 Apr 2024 06:30:06 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/css/login.css | 162.241.226.181 | 200 OK | 95 kB |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/css/login.css IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typegzip compressed data, from Unix Hashc29e0c5617e6eefadb10ef3dcfbe051f 63b53386c9a15bc14d8ae7e9b647c938f2d09aad 8672acb1fa6699c97f1c8275a23d61849aa76a942909bbcf23b925111b955849
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/styles/css/login.css HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Apr 2024 02:42:18 GMT
accept-ranges: bytes
cache-control: max-age=86400
expires: Wed, 24 Apr 2024 06:30:06 GMT
vary: Accept-Encoding
content-encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
content-type: text/css
date: Tue, 23 Apr 2024 06:30:06 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.mask.js | 162.241.226.181 | 404 Not Found | 315 B |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.mask.js IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/js/jquery.mask.js HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Tue, 23 Apr 2024 06:30:07 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.main.js | 162.241.226.181 | 404 Not Found | 315 B |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/js/jquery.main.js IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/js/jquery.main.js HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Tue, 23 Apr 2024 06:30:07 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/img/nficon2016.png | 162.241.226.181 | 200 OK | 1.8 kB |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/img/nficon2016.png IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced Hash3d194514babc5d7d010308a0f808ca51 867e51e9b4a474c19da52d6454076c007a9d01f2 7341f7b8b0ae3c0da4aea559efc31f0b53d9db9dd291664fdcf7d618fd95ed8a
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/styles/img/nficon2016.png HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Apr 2024 02:42:18 GMT
accept-ranges: bytes
content-length: 1755
cache-control: max-age=86400
expires: Wed, 24 Apr 2024 06:30:08 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
content-type: image/png
date: Tue, 23 Apr 2024 06:30:08 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/img/nficon2023.ico | 162.241.226.181 | 200 OK | 9.9 kB |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/img/nficon2023.ico IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeMS Windows icon resource - 1 icon, 48x48, 32 bits/pixel Hash58f54d9ea15176671802bebeee4da4cb 4ba1cb97814772435962f3ac25af0def81851735 9c5f7722c5df8eb24dda20ecc01c9f73e3103e10052fd980da4e7d9f753a97d3
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/styles/img/nficon2023.ico HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Apr 2024 02:42:18 GMT
accept-ranges: bytes
content-length: 9854
cache-control: max-age=31536000
expires: Wed, 23 Apr 2025 06:30:08 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
content-type: image/x-icon
date: Tue, 23 Apr 2024 06:30:08 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/fonts/nf-icon-v1-93.woff | 162.241.226.181 | 200 OK | 74 kB |
URL GET HTTP/2pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/fonts/nf-icon-v1-93.woff IP162.241.226.181:443 ASN#46606 UNIFIEDLAYER-AS-1
Requested byhttps://pwy.cyv.mybluehost.me/Filnacome/cll/cool/login.php CertificateIssuerLet's Encrypt Subjectautodiscover.pwy.cyv.mybluehost.me Fingerprint23:7F:E7:DD:EC:ED:6B:58:D8:7D:10:68:5F:5F:8C:C0:ED:03:B8:BE ValidityFri, 12 Apr 2024 15:24:13 GMT - Thu, 11 Jul 2024 15:24:12 GMT
File typeWeb Open Font Format, CFF, length 73572, version 0.0 Hash7cf6156cc481244b5a254362d7b73f00 4391003d1cb06d2bd1921a5813a57604fa7d9935 98713b53a74ebe7e326353080c5f1653e83af61d6363c0b3c4c67d6d24197b4d
| Analyzer | Verdict | Alert |
|---|
| urlquery | phishing | Phishing - Netflix |
GET /Filnacome/cll/cool/styles/fonts/nf-icon-v1-93.woff HTTP/1.1
Host: pwy.cyv.mybluehost.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://pwy.cyv.mybluehost.me/Filnacome/cll/cool/styles/css/login.css
Cookie: PHPSESSID=1cb8672df613371f740c34a21a0f3f39
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Fri, 12 Apr 2024 02:42:18 GMT
accept-ranges: bytes
content-length: 73572
cache-control: max-age=86400
expires: Wed, 24 Apr 2024 06:30:07 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
x-newfold-cache-level: 2
content-type: font/woff
date: Tue, 23 Apr 2024 06:30:07 GMT
server: Apache
X-Firefox-Spdy: h2
|
|