| evolvedfightslez.com/members/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php | 99.192.140.107 | 302 Found | 0 B |
URL User Request GET HTTP/1.1evolvedfightslez.com/members/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php IP99.192.140.107:443
CertificateIssuerLet's Encrypt Subjectevolvedfightlez.elxcomplete.com FingerprintB2:F0:4E:FD:43:98:FF:10:DD:E1:4E:26:A1:27:81:D4:32:44:D0:54 ValidityMon, 25 Mar 2024 19:45:13 GMT - Sun, 23 Jun 2024 19:45:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /members/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php/elxprotect/login.php HTTP/1.1
Host: evolvedfightslez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Tue, 16 Apr 2024 14:26:09 GMT
Server: Apache
X-Powered-By: PHP/8.1.16
Set-Cookie: elxprotectid=CrGGaCeuUxzrdQjx; path=/; domain=.evolvedfightslez.com
PHPSESSID=a730fa9fbcb46be6c8f9bf7238404b5f; path=/
elxprotect_goback=%2Fmembers%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php; path=/; domain=.evolvedfightslez.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: /elxprotect/login.php
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| evolvedfightslez.com/elxprotect/login.php | 99.192.140.107 | 200 OK | 1.9 kB |
URL User Request GET HTTP/1.1evolvedfightslez.com/elxprotect/login.php IP99.192.140.107:443
CertificateIssuerLet's Encrypt Subjectevolvedfightlez.elxcomplete.com FingerprintB2:F0:4E:FD:43:98:FF:10:DD:E1:4E:26:A1:27:81:D4:32:44:D0:54 ValidityMon, 25 Mar 2024 19:45:13 GMT - Sun, 23 Jun 2024 19:45:12 GMT
File typeHTML document, ASCII text Hash00eb28214f4ffa3de9e4ba58df8f9327 b777936a437f728ebfee9f9dde7e2701bd9ae28b b13c777b537a62d256f277fff5bb41db5958c7ba5740f8b3185c0dfb3a1a7a4b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /elxprotect/login.php HTTP/1.1
Host: evolvedfightslez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: elxprotectid=CrGGaCeuUxzrdQjx; PHPSESSID=a730fa9fbcb46be6c8f9bf7238404b5f; elxprotect_goback=%2Fmembers%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 14:26:09 GMT
Server: Apache
X-Powered-By: PHP/8.1.16
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-Length: 1879
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| evolvedfightslez.com/elxprotect/css/style.css | 99.192.140.107 | 200 OK | 5.7 kB |
URL GET HTTP/1.1evolvedfightslez.com/elxprotect/css/style.css IP99.192.140.107:443
Requested byhttps://evolvedfightslez.com/elxprotect/login.php CertificateIssuerLet's Encrypt Subjectevolvedfightlez.elxcomplete.com FingerprintB2:F0:4E:FD:43:98:FF:10:DD:E1:4E:26:A1:27:81:D4:32:44:D0:54 ValidityMon, 25 Mar 2024 19:45:13 GMT - Sun, 23 Jun 2024 19:45:12 GMT
File typeASCII text, with very long lines (492) Hash74cec4f232ac02ae6826ad7a280faa56 72497ce51fac464bc315996704e1ad4e4fcf8249 ed0f881d251120332447ca8b22bc7462316b7be51ab259b4ed74d57cb484d521
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /elxprotect/css/style.css HTTP/1.1
Host: evolvedfightslez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evolvedfightslez.com/elxprotect/login.php
Cookie: elxprotectid=CrGGaCeuUxzrdQjx; PHPSESSID=a730fa9fbcb46be6c8f9bf7238404b5f; elxprotect_goback=%2Fmembers%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 14:26:09 GMT
Server: Apache
Last-Modified: Tue, 02 Apr 2019 22:13:21 GMT
ETag: "7110df3fa-1621-5859371e3e240"
Accept-Ranges: bytes
Content-Length: 5665
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
|
|
| evolvedfightslez.com/elxprotect/captcha.php?r=1378636425 | 99.192.140.107 | 200 OK | 2.7 kB |
URL GET HTTP/1.1evolvedfightslez.com/elxprotect/captcha.php?r=1378636425 IP99.192.140.107:443
Requested byhttps://evolvedfightslez.com/elxprotect/login.php CertificateIssuerLet's Encrypt Subjectevolvedfightlez.elxcomplete.com FingerprintB2:F0:4E:FD:43:98:FF:10:DD:E1:4E:26:A1:27:81:D4:32:44:D0:54 ValidityMon, 25 Mar 2024 19:45:13 GMT - Sun, 23 Jun 2024 19:45:12 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 100x46, components 3 Hash447ac0be9a8d4027e9b242919c5ad419 98587ebe0829a295359952ed1f930d820a350e65 77f8e5ee261c880cc4cec8dd18be8b6fc5ed1089b88130419daaed24ed901d42
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /elxprotect/captcha.php?r=1378636425 HTTP/1.1
Host: evolvedfightslez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evolvedfightslez.com/elxprotect/login.php
Cookie: elxprotectid=CrGGaCeuUxzrdQjx; PHPSESSID=a730fa9fbcb46be6c8f9bf7238404b5f; elxprotect_goback=%2Fmembers%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 14:26:09 GMT
Server: Apache
X-Powered-By: PHP/8.1.16
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: SAMEORIGIN
Content-Length: 2716
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| fonts.googleapis.com/css?family=Open+Sans | 142.250.74.74 | 200 OK | 20 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans IP142.250.74.74:443
Requested byhttps://evolvedfightslez.com/elxprotect/login.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hash3895f0370ccce9075c9af22bb2536670 37182520f9adbad6e9e19bac8602d9b26ecca72e a1ea1fc2e915f387b7a4decce82c71dcea243a6b0e633d24dce8ed5bac2544ba
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evolvedfightslez.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 14:26:09 GMT
date: Tue, 16 Apr 2024 14:26:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| evolvedfightslez.com/favicon.ico | 99.192.140.107 | 200 OK | 1.2 kB |
URL GET HTTP/1.1evolvedfightslez.com/favicon.ico IP99.192.140.107:443
Requested byhttps://evolvedfightslez.com/elxprotect/login.php CertificateIssuerLet's Encrypt Subjectevolvedfightlez.elxcomplete.com FingerprintB2:F0:4E:FD:43:98:FF:10:DD:E1:4E:26:A1:27:81:D4:32:44:D0:54 ValidityMon, 25 Mar 2024 19:45:13 GMT - Sun, 23 Jun 2024 19:45:12 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashfa026ee7f70eff684779a309b6ecb0b3 73fce90ee2eca500fa80a8d3bcb138e17e10c982 0d0b04908487f113d92db88f0696178682391712254a71fa9a3dd09d0a4614c2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /favicon.ico HTTP/1.1
Host: evolvedfightslez.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://evolvedfightslez.com/elxprotect/login.php
Cookie: elxprotectid=CrGGaCeuUxzrdQjx; PHPSESSID=a730fa9fbcb46be6c8f9bf7238404b5f; elxprotect_goback=%2Fmembers%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php%2Felxprotect%2Flogin.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 14:26:10 GMT
Server: Apache
Last-Modified: Fri, 04 Oct 2019 18:04:04 GMT
ETag: "512874c73-47e-5941987068d00"
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 | 142.250.74.163 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 IP142.250.74.163:443
Requested byhttps://evolvedfightslez.com/elxprotect/login.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18668, version 1.0 Hash8655d20bbcc8cdbfab17b6be6cf55df3 90edbfa9a7dabb185487b4774076f82eb6412270 e7af9d60d875eb1c1b1037bbbfdec41fcb096d0ebcf98a48717ad8b07906ced6
GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://evolvedfightslez.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 13:47:34 GMT
expires: Wed, 16 Apr 2025 13:47:34 GMT
cache-control: public, max-age=31536000
age: 2315
last-modified: Thu, 14 Dec 2023 02:00:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|