| mail.jngassociates.com/app/files/inF0loCk.png | 172.67.214.111 | 200 OK | 67 kB |
URL GET HTTP/3mail.jngassociates.com/app/files/inF0loCk.png IP172.67.214.111:443
Requested byhttps://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw== CertificateIssuerGoogle Trust Services LLC Subjectjngassociates.com Fingerprint5C:D4:8E:B5:11:B4:DF:D2:23:9C:6B:9E:85:57:99:78:02:95:4F:A7 ValidityMon, 01 Apr 2024 17:54:51 GMT - Sun, 30 Jun 2024 17:54:50 GMT
File typePNG image data, 725 x 272, 8-bit/color RGBA, non-interlaced Hashc6037b92cca3fc8de6a447ab665a4b48 ebd64384630ad5f7b5f8330857182af7d0568733 579688068d5233880af95e437cd2761356187ca24b446fc02f2719eff5741382
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /app/files/inF0loCk.png HTTP/1.1
Host: mail.jngassociates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 15:43:00 GMT
content-type: image/png
content-length: 67059
last-modified: Thu, 05 Oct 2023 18:32:00 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A1MrVi%2BFzTdeG2iLGEEEoQUg7VgvbY2rqV9rcEgPyGmMmi98wzvDalDtfTND8LcKC9hZY66%2FeBJjeXsxpiroNlsvBSQMQjUsPWjy8LTllG6x%2FvqoIQsSNbXkUVmsIBSyyLePEZNMBgxF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87763f589ba45687-OSL
alt-svc: h3=":443"; ma=86400
|
|
| mail.jngassociates.com/app/files/interview.css | 172.67.214.111 | 200 OK | 14 kB |
URL GET HTTP/3mail.jngassociates.com/app/files/interview.css IP172.67.214.111:443
Requested byhttps://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw== CertificateIssuerGoogle Trust Services LLC Subjectjngassociates.com Fingerprint5C:D4:8E:B5:11:B4:DF:D2:23:9C:6B:9E:85:57:99:78:02:95:4F:A7 ValidityMon, 01 Apr 2024 17:54:51 GMT - Sun, 30 Jun 2024 17:54:50 GMT
Hash6ef7d942517ddb2f651875d49c83a619 c25d8e61431e45968b4fff3da52d6f37d3f9d32d 4fd50347aea7eb925101489f56e47fcb26a87a6990fa15ed94bd3696c2e127c5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /app/files/interview.css HTTP/1.1
Host: mail.jngassociates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 15:43:00 GMT
content-type: text/css
last-modified: Thu, 05 Oct 2023 18:31:46 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SDMxN4Dl5KIJ8C%2FCx5ORkNs2k0MJDk9iFhVs8mOCHP%2ByIYAj0vWApilIf4N8q7O%2BQnx5%2BdNoqErqJS743HetEXCDkVlymovJIsPynidM0rBKXxqGhHjrZN8ENx%2BUUEbVyAf1IwfPyZv9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87763f589ba25687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mail.jngassociates.com/app/files/favicon.ico | 172.67.214.111 | 200 OK | 38 kB |
URL GET HTTP/3mail.jngassociates.com/app/files/favicon.ico IP172.67.214.111:443
Requested byhttps://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw== CertificateIssuerGoogle Trust Services LLC Subjectjngassociates.com Fingerprint5C:D4:8E:B5:11:B4:DF:D2:23:9C:6B:9E:85:57:99:78:02:95:4F:A7 ValidityMon, 01 Apr 2024 17:54:51 GMT - Sun, 30 Jun 2024 17:54:50 GMT
File typeMS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel Hashad971586d24796b16779d8a83fba25eb ca0e4bd9b4d425b89d9605c57702425e5a19c353 78dac669a1d69af7af596bb9b2256bb9c77986d9083f55d6436f3553101d7c76
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /app/files/favicon.ico HTTP/1.1
Host: mail.jngassociates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 20 Apr 2024 15:43:01 GMT
content-type: image/x-icon
last-modified: Thu, 05 Oct 2023 18:31:24 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PWIyioKuL%2BSKgh3CQR02PY8V0zxCoqRDa0LDfgS%2Bh8oGqeRGBonHFDNGBJwCEsidNa2rAODB8dV5XU3wghDyyqzA%2Bc%2FYTygskHD4cC7I0DM7dhoFn1jVYEEndDaecVv8PZLhyIymeEwq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87763f5c1f6b5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mail.jngassociates.com/app/files/style-info.css | 172.67.214.111 | 200 OK | 40 kB |
URL GET HTTP/3mail.jngassociates.com/app/files/style-info.css IP172.67.214.111:443
Requested byhttps://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw== CertificateIssuerGoogle Trust Services LLC Subjectjngassociates.com Fingerprint5C:D4:8E:B5:11:B4:DF:D2:23:9C:6B:9E:85:57:99:78:02:95:4F:A7 ValidityMon, 01 Apr 2024 17:54:51 GMT - Sun, 30 Jun 2024 17:54:50 GMT
File typeASCII text, with very long lines (1496) Hashcb8213c7f98a160e343d6c99e94575c9 5c1adfaa79a50ecbdee093ac8e00cb4f1cb38763 a19685dd02320285f9953a7b42b797311af3758f3939f835b19a32e22b6ceb08
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /app/files/style-info.css HTTP/1.1
Host: mail.jngassociates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 20 Apr 2024 15:43:00 GMT
content-type: text/css
last-modified: Thu, 05 Oct 2023 18:31:50 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ec5zYIen9ZAWH%2BhETcfutOXePTQ4HUyGEjp1WFj9kG5TNxMLtfN%2BT8p24v3v6aAuIjK8DhxcMz0t11VrZuHTl%2BclFKQOSF%2Bt88X1JSg8AlFzsUnnYGp9sSeghCiILnpz9a%2BoPWFNF8MB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87763f588b9c5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw== | 172.67.214.111 | 200 OK | 10 kB |
URL User Request GET HTTP/2mail.jngassociates.com/app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw== IP172.67.214.111:443
CertificateIssuerGoogle Trust Services LLC Subjectjngassociates.com Fingerprint5C:D4:8E:B5:11:B4:DF:D2:23:9C:6B:9E:85:57:99:78:02:95:4F:A7 ValidityMon, 01 Apr 2024 17:54:51 GMT - Sun, 30 Jun 2024 17:54:50 GMT
File typeHTML document, ASCII text, with very long lines (1881), with CRLF line terminators Hash9acb711258227354ddaaa54165b67c32 280df98fd65f1ed3e6e46b1aa5e7916029d122e3 3c39a9906d5fe47a9d1286eec63c9f105c720c75242a23fa9ce380a6bce23daa
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Facebook |
GET /app/login.php?MTcxMzYxOTg5OTJiMjE1NGU2NzgzNzJlMDliYWQ4NDA0NjBmYmEzOTZkOTMzNDk3MjUyYTVjNjE3NTYyNzBmM2NiNjI3MjcwM2Q3ODNmNjExNw== HTTP/1.1
Host: mail.jngassociates.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 20 Apr 2024 15:42:59 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9muQsk5pFC3FyqvWlZ%2Fe3tTEGmkqmFHbzhf5%2FFigzuuCugfSdvSidrn3%2BkHFFqQHFbu24uTfZpODzDWJs51TZfJs5Oo5f%2FC2VEpmUPtOJNEafkYeNumSvYNUJwsEYl%2FWp2iYhSyTjChc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87763f55cc165695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|