Overview

URL netflix-prem.com
IP91.234.99.223
ASNAS198378 TELP Ltd.
Location Ukraine
Report completed2018-06-14 07:19:19 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2018-06-14 07:18:48 CEST 2  91.234.99.223 Client IP ETPRO CURRENT_EVENTS Possible Netflix Phishing Landing - Title over non SSL
2018-06-14 07:18:48 CEST 3  91.234.99.223 Client IP ET INFO JAVA - ClassID


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2018-06-14 2 netflix-prem.com/ Phishing
2018-06-14 2 netflix-prem.com/Files/index.html Phishing
2018-06-14 2 netflix-prem.com/Files/Login.php Phishing
2018-06-14 2 netflix-prem.com/Files/Images/nf-favicon-hires.ico Phishing
2018-06-14 2 netflix-prem.com/Files/Style/js2.js Phishing
2018-06-14 2 netflix-prem.com/Files/Style/js3.js Phishing
2018-06-14 2 netflix-prem.com/Files/Style/js1.js Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 4 reports on IP: 91.234.99.223

Date UQ / IDS / BL URL IP
2018-06-18 09:08:41 +0200
0 - 0 - 9 netflix-reg.com//goto 91.234.99.223
2018-06-11 07:49:35 +0200
0 - 0 - 7 https://netflix-clientbilling.com 91.234.99.223
2018-05-23 03:41:22 +0200
0 - 0 - 0 yt.appsvideos.net/?lang=en&wkr=edx&id=1251159 (...) 91.234.99.223
2018-05-23 03:35:52 +0200
0 - 0 - 0 yt.appsvideos.net 91.234.99.223

Last 10 reports on ASN: AS198378 TELP Ltd.

Date UQ / IDS / BL URL IP
2018-08-14 15:41:56 +0200
0 - 0 - 0 https://captianincric.info/tyhg/1upm5s4afz6o7 (...) 91.234.99.198
2018-08-14 14:32:00 +0200
0 - 0 - 1 https://chutihainyar.info/ajkam/ 91.234.99.198
2018-08-14 14:07:23 +0200
0 - 0 - 1 buharaideny.com 91.234.99.166
2018-08-14 01:21:41 +0200
0 - 0 - 1 sepholocharemes.cf/doc/Crossingmyarmsss/bd21e (...) 91.234.99.89
2018-08-12 07:29:43 +0200
0 - 0 - 1 kldnmv.net/ 91.234.99.10
2018-08-12 06:32:48 +0200
0 - 0 - 1 contecnmeonit.info/dfvc/index.php?cardio=exercise 91.234.99.186
2018-08-10 22:25:26 +0200
0 - 0 - 1 contecnmeonit.info/dfvc/index.php?cardio=exercise 91.234.99.186
2018-08-10 04:33:14 +0200
0 - 0 - 1 https://maryumaslam.info/dfvc/index.php?runni (...) 91.234.99.198
2018-08-09 21:45:57 +0200
0 - 0 - 0 onieupdate.com/ 91.234.99.198
2018-08-09 19:23:20 +0200
0 - 0 - 1 https://seq3-smsdeposit-ca.com/cibc/step3.html 91.234.99.166

No other reports on domain: netflix-prem.com



JavaScript

Executed Scripts (4)


Executed Evals (1)

#1 JavaScript::Eval (size: 14, repeated: 1) - SHA256: 0510de046e8325540849bad09f31eaaa3e9256fafd330c5d57327dc948812a33

                                        /*@cc_on!@*/ !1
                                    

Executed Writes (0)



HTTP Transactions (16)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.234.99.223
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
X-Powered-By: PHP/5.6.30
Location: Files/index.html
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Files/index.html HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:29:37 GMT
Etag: "36-56e90084c6f12"
Accept-Ranges: bytes
Content-Length: 54
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   54
Md5:    121f26530aec39d65a45355b838ad76a
Sha1:   fd5d5b57a0439c86b41c441f5399f71cb19e9b08
Sha256: 2f8a92e1e826459c9ac0dc4fb7f62f78be05f349a74aa25e16e1723782daf6ac

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.234.99.223
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Content-Length: 209
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   209
Md5:    18ffb59b61525f781cf9251045be575d
Sha1:   bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
Sha256: b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
                                        
                                            GET /Files/Login.php HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
X-Powered-By: PHP/5.6.30
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   5371
Md5:    f513ab53dbd46cd08f337149111d234d
Sha1:   48d36789c81b3791a39e54d9b5987b26102ed0c3
Sha256: 1d334f7430d2a0411812112de841d40dc662c6c79ff4a4d61020379e0cf91b01

Alerts:
  Blacklists:
    - fortinet: Phishing
  IDS:
    - ETPRO CURRENT_EVENTS Possible Netflix Phishing Landing - Title over non SSL
                                        
                                            GET /Files/Style/css2.css HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:56 GMT
Etag: "2b-56e900d096a82"
Accept-Ranges: bytes
Content-Length: 43
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   43
Md5:    43962af242a44d863a9f8d277df7c3db
Sha1:   67847d301f88303e848208897c7fe33ae2ee7855
Sha256: 9665c87b7234ca799f8f388d0d691b3587327e68bac389e265abd54cd784bfdd
                                        
                                            GET /Files/Images/icon_lock_12x15_yellow.png HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:29:57 GMT
Etag: "46d-56e90098888f2"
Accept-Ranges: bytes
Content-Length: 1133
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 12 x 15, 8-bit/color RGBA, non-interlaced
Size:   1133
Md5:    e1e0d08ffacc387b396dd3d05905a4ba
Sha1:   0840b4d1bd7468147171498ab4b1042addb1a16c
Sha256: c31e5ae9166763db7211b4719f4b8cbe34e7b15c0c4fa510e9f60510d94fb1ce
                                        
                                            GET /Files/Images/nf-favicon-hires.ico HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:19 GMT
Etag: "66c2-56e900accb922"
Accept-Ranges: bytes
Content-Length: 26306
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 4 icons, 16x16, 256-colors
Size:   26306
Md5:    08243bf774488ebb713162fb3a9b8b16
Sha1:   b76e2bc10f53e3ac9ee677ea5d503e10355da6db
Sha256: 9fa6c8f794fcbfdde1de5c4c9b14e5159b84ce0e1705315d575db3d894751afd

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Files/Style/css3.css HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:57 GMT
Etag: "29ea-56e900d175502"
Accept-Ranges: bytes
Content-Length: 10730
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   10730
Md5:    93dfff3019bc47df872bcbbd9289495d
Sha1:   b123f2cac06391e27f8a08d736737ac5e03e4539
Sha256: d7d01e005fc69e932089df3497391f2c5ebef0d9e944038e5b81e0812a15e4c6
                                        
                                            GET /Files/Style/css1.css HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:57 GMT
Etag: "8d76-56e900d169d6a"
Accept-Ranges: bytes
Content-Length: 36214
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   36214
Md5:    66981f7ac529cc4b734cbde8f115c17e
Sha1:   e15c2231e485615910bb0eb4308374822117277a
Sha256: 89ff8c8b376e5733e05dfe32a6c6c834f2a04b93b0165cee16d2032a47b15b9c
                                        
                                            GET /Files/Images/question_mark.png HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:20 GMT
Etag: "234-56e900ae4ec72"
Accept-Ranges: bytes
Content-Length: 564
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 21 x 21, 8-bit/color RGBA, non-interlaced
Size:   564
Md5:    bc0b7911c45148779ec108ac79a02f50
Sha1:   6a88eb2e0e21af28af7cb91997c455cc72f4b5df
Sha256: 973576ba6483c6c75d1d55339c1cac5d742abef700ede0903341ab222a2ee7c2
                                        
                                            GET /Files/Style/js2.js HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:59 GMT
Etag: "63e0-56e900d3bdc92"
Accept-Ranges: bytes
Content-Length: 25568
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   25568
Md5:    0f1aa27d342ce4c8d2249f60af257841
Sha1:   bf33c625c2a553c8c551d90968e6cb57e27642f1
Sha256: ab37de7856c1f7e9f272ac206947a3301d1281849bb529fa5aa01d2338c2f51e

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /Files/Images/logo-shadow2x.png HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Style/css1.css

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:15 GMT
Etag: "dd9-56e900a9a0892"
Accept-Ranges: bytes
Content-Length: 3545
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 300 x 85, 8-bit colormap, non-interlaced
Size:   3545
Md5:    b6710fde3c261e1af25890251ce396c0
Sha1:   a6818c2dc2176af1878a56689b2012518792df24
Sha256: ce5ea4082631428eafcff63b01c85d0a3065eb81baa023128fc022f74ae2220d
                                        
                                            GET /Files/Style/js3.js HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:31:01 GMT
Etag: "190c8-56e900d56a022"
Accept-Ranges: bytes
Content-Length: 102600
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   102600
Md5:    89b2d96eb225544fc1a071b7cb98c9cf
Sha1:   e918718ff1c119ca72b6ca30c4195b627cfb4f6d
Sha256: 7c7c559bbf66e9223fb4988f54f6ffc4ca1cc62fd826fc00bbd8d48615d90dd1

Alerts:
  Blacklists:
    - fortinet: Phishing
  IDS:
    - ET INFO JAVA - ClassID
                                        
                                            GET /Files/Images/login_lifestyle_tall_close_crop.jpg HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Style/css3.css

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:30:13 GMT
Etag: "150d2-56e900a7a862a"
Accept-Ranges: bytes
Content-Length: 86226
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   86226
Md5:    e4663f0595b02fb1c3947fc1f15eb812
Sha1:   aa95614c743b24ea31e59184e73c92a86ab1c1ad
Sha256: baafd74a4cb4dc594b614eeb45c7267bb1af729d9271752460348ece16532d04
                                        
                                            GET /Files/Style/js1.js HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://netflix-prem.com/Files/Login.php

                                         
                                         91.234.99.223
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 14 Jun 2018 05:18:22 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Last-Modified: Thu, 14 Jun 2018 01:31:01 GMT
Etag: "5c1f9-56e900d54bbc2"
Accept-Ranges: bytes
Content-Length: 377337
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   377337
Md5:    5110bffaafc51582478209b0bfb8387b
Sha1:   c93f9d3ba20e12190a68b3ed1a62ad12c97384ae
Sha256: 3c6174161d4269e3ebc614a3f2359ce16cc200b49aca1d218d14c185b6d4079b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: netflix-prem.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         91.234.99.223
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 14 Jun 2018 05:18:25 GMT
Server: Apache/2.4.29 (Unix) OpenSSL/1.0.1e-fips
Content-Length: 209
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   209
Md5:    18ffb59b61525f781cf9251045be575d
Sha1:   bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
Sha256: b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642