Overview

URL www.e-gfr.com/Outlook/index.php
IP104.24.115.15
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2017-09-14 08:55:32 CEST
StatusLoading report..
urlQuery Alerts Phishing website detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-09-14 2 www.e-gfr.com/Outlook/index.php Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/ Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/ Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_ (...) Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_ (...) Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_ (...) Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_ (...) Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/icon.ico Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_ (...) Phishing
2017-09-14 2 www.e-gfr.com/16.00.1279.006/en-US/css/Fabric/0.10.3/fonts/office365icons.woff? Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_ (...) Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_ (...) Phishing
2017-09-14 2 www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2 Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 104.24.115.15


Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2017-09-21 12:27:02 +0200
0 - 0 - 1 biz7739567691.xinlimaoyi.com/ 162.159.238.165
2017-09-21 12:26:48 +0200
0 - 0 - 1 https://www.unknowncheats.me/forum/downloads. (...) 104.27.118.74
2017-09-21 12:26:45 +0200
0 - 0 - 0 midtowncomics.com 104.20.39.246
2017-09-21 12:24:32 +0200
0 - 0 - 0 www.clictune.com/id=491051 104.24.110.139
2017-09-21 12:17:28 +0200
0 - 0 - 0 www.spine.host/ga/?c\=_ga 104.28.8.40
2017-09-21 12:12:52 +0200
0 - 1 - 8 www.idiomassemfronteiras.org/idiomas-sem-fron (...) 104.18.40.189
2017-09-21 12:10:02 +0200
0 - 0 - 1 wang45348.honpu.com/ 162.159.224.166
2017-09-21 12:08:48 +0200
0 - 0 - 2 www.grainua.com/ 104.27.189.162
2017-09-21 12:07:36 +0200
0 - 0 - 1 supergeldmethode.com/ 104.27.152.99
2017-09-21 11:56:25 +0200
0 - 0 - 42 thewritingstudio.biz/wp-content/uploads/2013/ (...) 104.31.75.80

No other reports on domain: e-gfr.com



JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (40)


Request Response
                                        
                                            GET /Outlook/index.php HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.24.114.15
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 06:55:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099; expires=Fri, 14-Sep-18 06:54:59 GMT; path=/; domain=.e-gfr.com; HttpOnly
Location: ./office
Server: cloudflare-nginx
CF-RAY: 39e17028358e42c1-OSL


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.e-gfr.com/Outlook/office/
Server: cloudflare-nginx
CF-RAY: 39e1702c868b42c1-OSL


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   244
Md5:    190a7195de821e89cf237401db38203a
Sha1:   7ac9501bde9a4562993b787c27d52d4ccc377c41
Sha256: 64863fa82ba74c3cbaa8d2b7efa3648217bd52dff709ff45d6568f01e00365a8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/ HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 06:55:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: 837310bf67345bc4df91a513602723a2
Server: cloudflare-nginx
CF-RAY: 39e1702e270642c1-OSL


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/ HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Sep 2017 06:55:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare-nginx
CF-RAY: 39e17032c408427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7326
Md5:    48c542269f2ac1d98a575e40163900ee
Sha1:   238e7407d4596441adfc6ad03da3ec1a78a8cbe3
Sha256: e25b36d094708c17d07fc6756334b493b5028ae4b11abdd986a25d55ada2550b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:03 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1703983ec42a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   396
Md5:    85202f223f4e94f0b085d648caa574e3
Sha1:   220a50b8479415893fde02c31ed9d92ff4584e9d
Sha256: af68c66d733a7673412bcf670afe7911e6e4005eae7743b4dde50d82ae247d86
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/GeminiHomeV2.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:03 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e17039750b427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   695
Md5:    f46fe1eec2ba358474fce876c76eab91
Sha1:   c5f72d8f38b58d7f828b845804941b91004233be
Sha256: 19440caa0b2b50e05899ec7f90c44737a64310ffe3e89c4f4fabb43025255347
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/conciergehelper.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:03 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1703987044291-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1393
Md5:    ec7945be2485a51277d79eddde09f1e2
Sha1:   6c0bdbf20ab65339495d70939a06559328ef89a0
Sha256: f18e3c3c8f1b1dbfb98f60f8f0a227f55e203091a35935eed767246dd70f6d78
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/AppTile.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:03 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1703981c94267-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   529
Md5:    048496088bbc49395717874430c28fe1
Sha1:   3824a55e7a1d13c7a84e4206d55ebff97e7e8e59
Sha256: 190cdf7a739a1015f7e75b1ed59a7abb57a104befa234e197b3bf44b9da31fa6
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/MasterStyles15MVC.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1703a4529427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   307
Md5:    55ddd3d849ee866818e926c8c40c0239
Sha1:   e19731271c3107fe03b1426715d452186b03dfec
Sha256: 501f4fa0cbbb2bd14500fb76753cd666e9d60c72f72bbd0ac5c7d8281669bdaa
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/shellg2corecss_11377998.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1703db5c7427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   311
Md5:    c1f7e48bb70fc5f1695def4dfa6c702d
Sha1:   37d3cef95656e2e2498fd25ffdce83788b133b31
Sha256: 8828bba4e5d8aea9f61ac078f7d8485bd3ca314f317c0425bafa6e2e8f7944f1
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/MasterStyles15.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:02 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e17039817e42c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   25509
Md5:    3797e9a59cb14d1c3a6e43d1b09b94ee
Sha1:   6f0fbe600c3376d0537757fe800e7435c04fc13e
Sha256: e38dfd897ec39829975e628b498b4fca8cb4fe054a99b0d79d1d624f5a39276e
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/shellg2pluscss_baae2042.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1703e42bc4267-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   311
Md5:    3c5ba576bdae6573431ebf2079482f59
Sha1:   ac1f2a19c70f3614e06fb9ff84f00c3943054c4d
Sha256: 02bee0bbd657dcc951b566a74c98990a2da059cebc040ce975658be64b744ca7
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/data.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 06:55:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:03 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1703dd7d54291-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1776
Md5:    2f9dea5fc7dac468b47f6b8c362f6fee
Sha1:   0bdaf928a745af9cab761b7ed5255083b9bbc5d3
Sha256: fbe2b81eba7d3b5596768118f70df4bb596ba401170fd6751ef86fe32e66273a
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/shellg2coremincss_ba45585d.css HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Sep 2017 06:55:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:03 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1703cd46b42a9-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   6398
Md5:    9a4499a4e4b5c0b0a1fefdf52ae3b403
Sha1:   e2b40efb78b77cf0afb9726005c7d4636bd88d24
Sha256: f014a7582969985aa0fed70eacbc7795a22e58e1c5d9e6911338a7dfe543a690
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/GeminiHome.js HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 06:55:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:04 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e1703e95ec427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1080
Md5:    ac112ed73de2a3f98ec6444a273cadaa
Sha1:   74bc882360bddadae9dc76b9d96dde2c9d2172cb
Sha256: 4960ce2c917c38c39cecb1062eb83c1bbf85971a03a83299bc0cadcea84b2cc0

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/O365ShellG2Plus.js HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1704072d842c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   305
Md5:    8cc7fb1e039bdcab520b274e9d60fcf1
Sha1:   c1affe1a4c34621b50070ea9a58fbbf27553e5a3
Sha256: 1bcebfdab13218ba9d2a7db969475b387ccc0cdf7ccb004fff28a7502ae29bda

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/UpsellControl.js HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Sep 2017 06:55:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:04 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e170406639427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   298
Md5:    616d73840e9b1d949586fe2e933c8b19
Sha1:   0f1aa66dbce7b6d15fb901cb6b20a7f3268e2206
Sha256: 83713dfac99fa41331e4336033cc0dba9536fe9736bc1bece360915f12b4e780

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ss.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1609
Content-Transfer-Encoding: binary
Cache-Control: max-age=404108, public, no-transform, must-revalidate
Last-Modified: Mon, 11 Sep 2017 23:08:57 GMT
Expires: Mon, 18 Sep 2017 23:08:57 GMT
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1609
Md5:    f0e4fe7d8adaa4eb5fd3c3caa6a40c27
Sha1:   e3cd6582c3924c5ca4450744120c51816bc3e50d
Sha256: 28d195ed370f9c0163ab3f09a83ff927836b0091c62e21956ceeb31d35ca768b
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/css/apple-touch-icon-72x72.png HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Sep 2017 06:55:04 GMT
Content-Length: 1391
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:04 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 39e17041234e4267-OSL


--- Additional Info ---
Magic:  PNG image, 72 x 72, 8-bit colormap, non-interlaced
Size:   1391
Md5:    98c8c7ebd75fd18ccc345de4a11031b0
Sha1:   369daf8069a88e9ff76173e983d5c7435eff2632
Sha256: 6c519b7788593316c4ebd54d26e2fcdda5e20bd7d6ed59d6e3ea2078bf5ac308

Alerts:
  urlquery:
    - Phishing website detected
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Regular-final.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=04460a01-9096-4813-bac3-ef63770c0edb; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Regular-final.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=60b286c1-bca7-421f-af99-a84cf0bd39d0; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/PortalIcons.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/MasterStyles15.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=607ab043-d7aa-4e3b-99e4-e648fa60364e; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-SemiLight-final.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=3efbb427-4f52-4460-9953-3dc9f14a3af8; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/PortalIcons.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/MasterStyles15.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=b47366b4-52e8-434b-b58f-13c0db49aed2; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Light-final.woff HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=32ae281f-630a-47e8-9097-9e41c356d933; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-SemiLight-final.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=8f9001f6-66f8-40c2-8767-c677348391ba; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /16.00.1279.006/en-US/css/webfonts/SegoeUI-Light-final.ttf HTTP/1.1 
Host: prod.msocdn.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Origin: http://www.e-gfr.com

                                         
                                         88.221.73.168
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Cache-Control: private
Server: Microsoft-IIS/8.5
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=Edge
Content-Length: 1245
Date: Thu, 14 Sep 2017 06:55:04 GMT
Connection: keep-alive
Set-Cookie: s.SessID=706a9df9-43b3-406b-9071-d7439b8c4f9f; path=/; secure; HttpOnly
Timing-Allow-Origin: *


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/css/banner.png HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/MasterStyles15.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Sep 2017 06:55:05 GMT
Content-Length: 4079
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:05 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 39e1704306ab427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   4079
Md5:    854b0d32cf66f555e750bc7e2c5c99e7
Sha1:   bd9ea0561c4730a44c23fc33239979719a45c1ba
Sha256: 93ee4de61be217c38ee16a572de5b7ad5e5af581c24735388f6bd5917fa5bb0a
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/O365ShellG2Plus.js HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1704967e2427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   305
Md5:    8cc7fb1e039bdcab520b274e9d60fcf1
Sha1:   c1affe1a4c34621b50070ea9a58fbbf27553e5a3
Sha256: 1bcebfdab13218ba9d2a7db969475b387ccc0cdf7ccb004fff28a7502ae29bda

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/icon.ico HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 14 Sep 2017 06:55:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:05 GMT
Cache-Control: public, max-age=14400
Server: cloudflare-nginx
CF-RAY: 39e17041c0994291-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   306
Md5:    67176c3a53f8c16f395262704b132e50
Sha1:   888331c9a757425278c53e5a6df4f89e37858d9c
Sha256: c47f8c8a30a9186bff0a7ef337c4611b2c049e1f97ba1cff3fbfcb5ac6c1f071

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/SuiteServiceProxy.htm HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare-nginx
CF-RAY: 39e1704a825b4291-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   313
Md5:    137a6247f276038ce2fa398bea4b53b5
Sha1:   b28028db500331184b57d17bcd043acbb7d46491
Sha256: 8b304ae920d6b8837180e1d478cee713f5c702b705d9aae3918a6591f6ca3d31

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/css/aol.png HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/MasterStyles15.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Sep 2017 06:55:06 GMT
Content-Length: 1452
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:06 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 39e17043a37942c1-OSL


--- Additional Info ---
Magic:  PNG image, 80 x 70, 8-bit/color RGBA, non-interlaced
Size:   1452
Md5:    17ef4c1e36253395f769541243a027a7
Sha1:   7b2b5438e4c23e162d3a9de8d567e00e3de45b03
Sha256: bba1c4e890bde6f4c4531d1503e284d0e7e510b3b72940778750b19852b47ce4
                                        
                                            GET /16.00.1279.006/en-US/css/Fabric/0.10.3/fonts/office365icons.woff? HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e17045171a427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   289
Md5:    ef6ba523847fa7a4a749883a6f411c75
Sha1:   49f4ae94a58efbd2c382a0414fc8294180628e57
Sha256: 7abe54ebe6019317257a2a3527e0bef59ff7ea366e1653f0e9fa9d440ff9c314

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/shellwofficons_f991c945.woff HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/shellg2coremincss_ba45585d.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1704564174267-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   309
Md5:    774983173d52c455d7f18374f70af61c
Sha1:   1469f49a8cf3e46862ca6934cbcfe33752a621b6
Sha256: bf5e3eb3ef4cf1fbc90e48f7fad1e51bf3152b90341647579fb7bc7aed045f94

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/css/oth.png HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/MasterStyles15.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Sep 2017 06:55:06 GMT
Content-Length: 16162
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:06 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 39e1704977e3427f-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   16162
Md5:    e7e0afa65309105e24355344ac1b91c6
Sha1:   a55132115d60eca8d3a1bb1bdb9efc1147a0bf76
Sha256: 933099b34ed040d254b9f5b2fced95e76fad3f0fd933929c111259722d8ccd33
                                        
                                            GET /16.00.1279.006/en-US/css/Fabric/0.10.3/fonts/office365icons.ttf? HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/EmbeddedFonts.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1704f73414291-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   288
Md5:    0c393341d36c36911a3d251960880137
Sha1:   d57bf2050d021216041d309acb19c6859bbfac31
Sha256: 0ed7d2a7b71eeb308e439622f1bd731b95db92aaa315bd9ce6b64d03d89349c7
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/shellttficons_9739c58c.ttf HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/shellg2coremincss_ba45585d.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 39e1705105d042c1-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   311
Md5:    78fb7c1d2d5ecbe6a7b9fc4784184e5d
Sha1:   294e4f2d40e60d81d83b6d038ccc1370124b3ad4
Sha256: fd94b9944b64051afac79a229863fbe58cb64abe0f04c6ca1115528c4386ed4f

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/css/home_bkgd_1.png HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/Office%20365_files/GeminiHomeV2.css
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Sep 2017 06:55:07 GMT
Content-Length: 22035
Connection: keep-alive
Last-Modified: Thu, 14 Sep 2017 06:55:01 GMT
CF-Cache-Status: MISS
Vary: Accept-Encoding
Expires: Thu, 14 Sep 2017 10:55:07 GMT
Cache-Control: public, max-age=14400
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 39e17042e59442a9-OSL


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   22035
Md5:    ef4ac468dabdd214d220eec6be716215
Sha1:   1b9b21bed6c063265ff77c3077e60040072e1217
Sha256: b21a9de9414be9988efb7b56c4d2ab101aee02ebf6e80a16bfa43dfa7234da9b
                                        
                                            GET /pp.l?CID=4d282929-551c-4ee1-998d-17a012b75264&pageId=home&d={B:{S:%27L%27,LT:4905,UT:-1,MT:1544},C:{LT:1505372107497}} HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: cloudflare-nginx
CF-RAY: 39e170580273427f-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   249
Md5:    ce205d4563b80ed59103f56f18eb23be
Sha1:   fe4b9cfde56ed1c2ec017164c5e371ef3c7ebf19
Sha256: 9f5a537ca68565b51142bcc1da1583304e48283b4f914eb1179ddc41e47df87d
                                        
                                            GET /Outlook/office/837310bf67345bc4df91a513602723a2 HTTP/1.1 
Host: www.e-gfr.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d9f11a1a0b36e3fc1fad2c1a007d662321505372099

                                         
                                         104.24.114.15
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Sep 2017 06:55:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.e-gfr.com/Outlook/office/837310bf67345bc4df91a513602723a2/
Server: cloudflare-nginx
CF-RAY: 39e17030377742c1-OSL


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing