| | 208.109.19.66 | 200 OK | 1.3 kB |
URL User Request GET HTTP/2IP208.109.19.66:443 ASN#398101 GO-DADDY-COM-LLC
CertificateIssuerLet's Encrypt Subjectuch.local-user.com FingerprintFC:7F:0D:1D:F3:35:1D:E7:9F:0B:F5:E6:AD:2D:20:4C:4B:F5:3C:8F ValidityMon, 01 Apr 2024 13:17:49 GMT - Sun, 30 Jun 2024 13:17:48 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashdc6a9b22852ae904eae44203f865495a 095e3d5d831b878d9500d017b4d38a894e20f6c8 87d4659bbcebe9ab67b611af3f42a59f719b4830ae15b9671746429a79538b19
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET / HTTP/1.1
Host: uch.local-user.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=7b2588c9a1d11dc056a3a2619b80faed; path=/
vary: Accept-Encoding
content-encoding: br
content-length: 1273
content-type: text/html; charset=UTF-8
date: Fri, 19 Apr 2024 06:56:52 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| uch.local-user.com/colors.css | 208.109.19.66 | 404 Not Found | 315 B |
URL GET HTTP/2uch.local-user.com/colors.css IP208.109.19.66:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://uch.local-user.com/ CertificateIssuerLet's Encrypt Subjectuch.local-user.com FingerprintFC:7F:0D:1D:F3:35:1D:E7:9F:0B:F5:E6:AD:2D:20:4C:4B:F5:3C:8F ValidityMon, 01 Apr 2024 13:17:49 GMT - Sun, 30 Jun 2024 13:17:48 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /colors.css HTTP/1.1
Host: uch.local-user.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uch.local-user.com/
Cookie: PHPSESSID=7b2588c9a1d11dc056a3a2619b80faed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-length: 315
content-type: text/html; charset=iso-8859-1
date: Fri, 19 Apr 2024 06:56:52 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| uch.local-user.com/styles.css | 208.109.19.66 | 200 OK | 1.4 kB |
URL GET HTTP/2uch.local-user.com/styles.css IP208.109.19.66:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://uch.local-user.com/ CertificateIssuerLet's Encrypt Subjectuch.local-user.com FingerprintFC:7F:0D:1D:F3:35:1D:E7:9F:0B:F5:E6:AD:2D:20:4C:4B:F5:3C:8F ValidityMon, 01 Apr 2024 13:17:49 GMT - Sun, 30 Jun 2024 13:17:48 GMT
File typeUnicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash75d33978013a77dfb5e3dbd374c283fc fdcaf90abbbf725baa348b72bb58a73b771bb748 e9ade1bb0c364516fa329f63c1f1d0a729f5053ad059209aa7787ff04948997d
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /styles.css HTTP/1.1
Host: uch.local-user.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uch.local-user.com/
Cookie: PHPSESSID=7b2588c9a1d11dc056a3a2619b80faed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Apr 2024 14:24:47 GMT
etag: "4410e8-1fd4-61509c06848ea-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1424
content-type: text/css
date: Fri, 19 Apr 2024 06:56:52 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| uch.local-user.com/javascript.js | 208.109.19.66 | 200 OK | 4.3 kB |
URL GET HTTP/2uch.local-user.com/javascript.js IP208.109.19.66:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://uch.local-user.com/ CertificateIssuerLet's Encrypt Subjectuch.local-user.com FingerprintFC:7F:0D:1D:F3:35:1D:E7:9F:0B:F5:E6:AD:2D:20:4C:4B:F5:3C:8F ValidityMon, 01 Apr 2024 13:17:49 GMT - Sun, 30 Jun 2024 13:17:48 GMT
Hash9f474df437d570a1d83265679e204ab7 184112ca0907837acad5b51c49b50e68fbdb1c3c fc19d4295dae3a373ccab00f96eae9ad1defa1d3ff2be293e6547857e648fd7c
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /javascript.js HTTP/1.1
Host: uch.local-user.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uch.local-user.com/
Cookie: PHPSESSID=7b2588c9a1d11dc056a3a2619b80faed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Apr 2024 14:24:47 GMT
etag: "4410eb-3910-61509c06ae4e6-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4301
content-type: application/javascript
date: Fri, 19 Apr 2024 06:56:52 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/ests/2.1/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg | 152.199.23.37 | 200 OK | 673 B |
URL GET HTTP/2aadcdn.msftauth.net/ests/2.1/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg IP152.199.23.37:443
Requested byhttps://uch.local-user.com/ CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashbc3d32a696895f78c19df6c717586a5d 9191cb156a30a3ed79c44c0a16c95159e8ff689d 0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68
GET /ests/2.1/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uch.local-user.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
age: 2156984
cache-control: public, max-age=31536000
content-md5: DhdidjYrlCeaRJJRG/y9mA==
content-type: image/svg+xml
date: Fri, 19 Apr 2024 06:56:52 GMT
etag: 0x8D7B029B6833F84
last-modified: Thu, 13 Feb 2020 02:09:09 GMT
server: ECAcc (ska/F6CF)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 048e1288-101e-00be-0788-7e8e7f000000
x-ms-version: 2009-09-19
content-length: 673
X-Firefox-Spdy: h2
|
|
| uch.local-user.com/images/microsoft_logo.png | 208.109.19.66 | 200 OK | 7.4 kB |
URL GET HTTP/2uch.local-user.com/images/microsoft_logo.png IP208.109.19.66:443 ASN#398101 GO-DADDY-COM-LLC
Requested byhttps://uch.local-user.com/ CertificateIssuerLet's Encrypt Subjectuch.local-user.com FingerprintFC:7F:0D:1D:F3:35:1D:E7:9F:0B:F5:E6:AD:2D:20:4C:4B:F5:3C:8F ValidityMon, 01 Apr 2024 13:17:49 GMT - Sun, 30 Jun 2024 13:17:48 GMT
File typePNG image data, 271 x 76, 8-bit/color RGBA, non-interlaced Hash863ff02774b032d021656deefc3cb4b8 93dc87a3c121c98c4040af4f4ad08257d4978540 fb0de19fd4aa91f117322b41a04d759a134b7b14a3f857f13b2e91a4db1e2b0e
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /images/microsoft_logo.png HTTP/1.1
Host: uch.local-user.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uch.local-user.com/
Cookie: PHPSESSID=7b2588c9a1d11dc056a3a2619b80faed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Apr 2024 14:25:37 GMT
etag: "442abf-1cd2-61509c3679f41"
accept-ranges: bytes
content-length: 7378
content-type: image/png
date: Fri, 19 Apr 2024 06:56:52 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| aadcdn.msftauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico | 152.199.23.37 | 200 OK | 17 kB |
URL GET HTTP/2aadcdn.msftauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico IP152.199.23.37:443
Requested byhttps://uch.local-user.com/ CertificateIssuerDigiCert Inc Subjectaadcdn.msftauth.net Fingerprint3C:9E:70:F5:B3:D1:80:80:8C:97:1C:7B:7E:A8:2C:D8:7B:94:95:0B ValidityFri, 01 Dec 2023 00:00:00 GMT - Sun, 01 Dec 2024 23:59:59 GMT
File typeMS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors Hash12e3dac858061d088023b2bd48e2fa96 e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uch.local-user.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 361342
cache-control: public, max-age=604800
content-md5: EuPayFgGHQiAI7K9SOL6lg==
content-type: image/x-icon
date: Fri, 19 Apr 2024 06:56:53 GMT
etag: 0x8D641014D44D8FD
last-modified: Fri, 02 Nov 2018 20:25:16 GMT
server: ECAcc (ska/F77B)
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: f37ae205-a01e-0081-5add-8e2671000000
x-ms-version: 2009-09-19
content-length: 17174
X-Firefox-Spdy: h2
|
|