Overview

URL vs-fr13478.level-cloud.com/
IP62.75.242.81
ASNAS8972 PlusServer AG
Location Germany
Report completed2019-04-20 09:08:41 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-04-20 2 vs-fr13478.level-cloud.com/ Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/installation/index.php Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/jui/css/chosen.css?9423ffe56dece3a3630f135 (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/jui/css/bootstrap-extended.css?9423ffe56de (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/jui/js/jquery-noconflict.js?9423ffe56dece3 (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/jui/css/bootstrap-responsive.min.css?9423f (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/jui/js/jquery-migrate.min.js?9423ffe56dece (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/system/js/keepalive.js?9423ffe56dece3a3630 (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/jui/js/chosen.jquery.min.js?9423ffe56dece3 (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/jui/css/bootstrap.min.css?9423ffe56dece3a3 (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/system/js/validate.js?9423ffe56dece3a3630f (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/media/system/js/punycode.js?9423ffe56dece3a3630f (...) Phishing
2019-04-20 2 vs-fr13478.level-cloud.com/installation/template/js/installation.js?9423ffe (...) Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 62.75.242.81

Date UQ / IDS / BL URL IP
2019-04-25 12:09:05 +0200
0 - 0 - 12 vv.vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-24 23:08:36 +0200
0 - 0 - 13 vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-24 18:08:35 +0200
0 - 0 - 13 vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-24 04:08:32 +0200
0 - 0 - 13 vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-24 00:08:30 +0200
0 - 0 - 13 vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-23 14:08:55 +0200
0 - 0 - 12 vv.vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-23 10:08:37 +0200
0 - 0 - 13 vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-22 22:08:52 +0200
0 - 0 - 12 vv.vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-22 12:09:03 +0200
0 - 0 - 12 vv.vs-fr13478.level-cloud.com/ 62.75.242.81
2019-04-18 00:08:40 +0200
0 - 0 - 13 vs-fr13478.level-cloud.com/ 62.75.242.81

Last 10 reports on ASN: AS8972 PlusServer AG

Date UQ / IDS / BL URL IP
2019-06-26 14:42:44 +0200
0 - 0 - 0 85.25.159.200 85.25.159.200
2019-06-25 02:51:13 +0200
0 - 1 - 0 talonserinme.icu/ 85.25.252.199
2019-06-21 17:59:40 +0200
0 - 0 - 0 best-profits2019.com/?u=950wmwc&o=rrxpzz6&t=a (...) 62.75.230.115
2019-06-20 21:20:28 +0200
0 - 1 - 0 www.legalizacijagradnje.com/mail-smtpr/englis (...) 85.25.214.31
2019-06-19 21:17:33 +0200
0 - 1 - 2 https://topsaleshop.su 188.138.105.88
2019-06-19 17:54:57 +0200
0 - 0 - 0 findgrandsuperprofit1.com/?u=d29pte4&o=vxxwam (...) 85.25.107.80
2019-06-19 00:27:05 +0200
0 - 0 - 0 babesmature.net 85.93.89.150
2019-06-18 16:32:21 +0200
0 - 0 - 0 commdfn.com 188.138.88.45
2019-06-18 15:23:26 +0200
0 - 0 - 0 terkintoparci.icu/?u=h2xkd0x&o=lxkgnum&t=48 85.25.252.199
2019-06-18 09:21:22 +0200
0 - 0 - 0 sharefolder.markenfilm.ch/zipdownload.php?f= 188.138.88.26

No other reports on domain: level-cloud.com



JavaScript

Executed Scripts (11)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (20)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         62.75.242.81
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/7.0.33, PleskLin, PleskLin
Location: installation/index.php
MS-Author-Via: DAV


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /installation/index.php HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 4781
Connection: keep-alive
X-Powered-By: PHP/7.0.33, PleskLin, PleskLin
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1; path=/; HttpOnly
Last-Modified: Sat, 20 Apr 2019 07:08:09 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
MS-Author-Via: DAV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4781
Md5:    a7a0d59abe09d5a99125ade1ab50ea9b
Sha1:   dde15f46f3a1d988413077124c6db071a1ab6bec
Sha256: f3a1e98ecec9624efd08d6ed374826e0b87e19cc7aa530325a08b580d247aaf0

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/jui/css/chosen.css?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 12266
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-2fea"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text
Size:   12266
Md5:    b46fe947e9e5bf2a6e44cbda6f283638
Sha1:   868fe7b640cb6dff8ed5813b7b54fab334ebbfa5
Sha256: df64c1ae4d0e2cce3a4815ba95b77ee96dafcdf07a5e788175e1c931b45b6cd2

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/jui/css/bootstrap-extended.css?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 9094
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-2386"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   9094
Md5:    1799173b53c3ad2c3c3999544fb61ad5
Sha1:   e70783c5c151b25c226981b68e02b546c8c15f3f
Sha256: 493f3c34e6c26833692f8199f6a25b773ce0a6abe9bbc24777bedc53d32422d2

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /installation/template/css/template.css?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 5618
Last-Modified: Sat, 20 Apr 2019 00:48:37 GMT
Connection: keep-alive
Etag: "5cba6c65-15f2"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C program text, with very long lines
Size:   5618
Md5:    60d0fcafec8671fa84df73f14645b201
Sha1:   f31d23a9cf3726b6517ad29d67e8e0ec49ecb212
Sha256: fb990524caaf2e250216e39a83680d2c8f243765d66d2855d639162bf8ecdfed
                                        
                                            GET /media/jui/js/jquery-noconflict.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 21
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Etag: "15-586eb98957018"
Accept-Ranges: bytes
X-Powered-By: PleskLin, PleskLin
MS-Author-Via: DAV


--- Additional Info ---
Magic:  ASCII text
Size:   21
Md5:    e2060c4e5e5955c824723b13a212d3ec
Sha1:   18420ce484978f8ba3d7371febf1638828bb7a67
Sha256: 5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/jui/css/bootstrap-responsive.min.css?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 16693
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-4135"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   16693
Md5:    9bdc6723fcb7d44cc3353a662fa33bde
Sha1:   cb836de0db480e4562d90e7f5453d969aed5a26c
Sha256: eef7b3fb8ceb63aff0c881abf54be72d4a7de4b9f0764b0f8d642edad24c8bff

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/jui/js/jquery-migrate.min.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 10056
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-2748"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   10056
Md5:    7121994eec5320fbe6586463bf9651c2
Sha1:   90532aff6d4121954254cdf04994d834f7ec169b
Sha256: 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/system/js/core.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 8808
Last-Modified: Sat, 20 Apr 2019 00:48:39 GMT
Connection: keep-alive
Etag: "5cba6c67-2268"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  UTF-8 Unicode English text, with very long lines, with no line terminators
Size:   8808
Md5:    2389024c3d3ddc855b456962dce68cf0
Sha1:   3ea6f77dbaa51af3747a525d02d76ac064b2d2bd
Sha256: ee43222bc3a3d6c1cab5dc4115bd2a3c2b348f4b4e448283e0eaca84de6763d6
                                        
                                            GET /media/system/js/keepalive.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 306
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Sat, 20 Apr 2019 00:48:39 GMT
Etag: "1ce-586eb989cf9cf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PleskLin, PleskLin
MS-Author-Via: DAV


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   306
Md5:    7c38920647aa197ba2edf27e46609d81
Sha1:   c7b76583a40b44919634866261dc4dfa7047c047
Sha256: e1da2a24649323458694f8f4e929487f9953979906a7c1786a59e9f7c4196b56

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/jui/js/bootstrap.min.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 29126
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-71c6"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   29126
Md5:    a125594de09167bd2e9015d790029a64
Sha1:   b0567b7e3db8ddbdc5806f5c4e2fa7a8abc9b692
Sha256: b240d68de7c3795c87771f510527c201d7d67f0e065d973b16bf86855932f9a2
                                        
                                            GET /media/jui/js/chosen.jquery.min.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 34010
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-84da"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   34010
Md5:    71f0d55ee2fdd4fcac6ba1f0c89bf858
Sha1:   f9c5c387c78ad9d1a511305db52a11b850d4032e
Sha256: 34abf95ce642d44c150822c944809a697d4936b7ea4d2712eaa44ff11f8533bb

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/jui/js/jquery.min.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 96606
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-1795e"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   96606
Md5:    59c2901ee162828f22bab14459431652
Sha1:   6cec0ee04bc7138b6eedad0009a49d155451bce8
Sha256: 46438fa269f3c172286b81be52a5de84753d68dcc6580f6a98b7942cf129bdc1
                                        
                                            GET /media/jui/css/bootstrap.min.css?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 106242
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-19f02"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII English text, with very long lines
Size:   106242
Md5:    b55f601eaa282fd2fb5373aeec9b0753
Sha1:   dfd6d5562fd5f995e9565042cfcbc198677a3476
Sha256: 8c2034182d8adb53aa9f43e93efbca41003b7ec616549aa36222173253e61342

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/system/js/validate.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 3118
Last-Modified: Sat, 20 Apr 2019 00:48:39 GMT
Connection: keep-alive
Etag: "5cba6c67-c2e"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   3118
Md5:    8bd6cc914254f4b4988600565fccd527
Sha1:   6896fee52ea2fd7bf3a55e4f842b508a9c6f7470
Sha256: 0a9f6f9796f9e88f2873f6ec8b6c144647a6ba7c2cae0960fa23cd7868d32227

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /media/system/js/punycode.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 2828
Last-Modified: Sat, 20 Apr 2019 00:48:39 GMT
Connection: keep-alive
Etag: "5cba6c67-b0c"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines
Size:   2828
Md5:    c7a5239df8747280acd9e6f4aed2a103
Sha1:   b49fd6432d61a892ce49debcf95463e8926b4f50
Sha256: 9db556428f30ccec5848a10b11361b1653c41644aae2378864af9ceebeb077ba

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /installation/favicon.ico HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 2019
Last-Modified: Sat, 20 Apr 2019 00:48:37 GMT
Connection: keep-alive
Etag: "5cba6c65-7e3"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit/color RGBA, non-interlaced
Size:   2019
Md5:    1194d7d32448e1f90741a97b42af91fa
Sha1:   650aa3c9b17e4d83aa4857d6e9fe8e3ece935724
Sha256: 7bd9b59d14b126e8c5abcb1c89b60c79e2b2e17c15745fe8d385204d87c40765
                                        
                                            GET /installation/template/js/installation.js?9423ffe56dece3a3630f135714ecd062 HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 13911
Last-Modified: Sat, 20 Apr 2019 00:48:37 GMT
Connection: keep-alive
Etag: "5cba6c65-3657"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII C++ program text
Size:   13911
Md5:    5ec78b2e351b82279a94c546f761c864
Sha1:   781a168169125c92b669d0a0fcc80b10ff7446d6
Sha256: 1cc651244b74e962e7a01f19080424ffa63f7697e36cfb628b541ef63439fcdc

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /installation/template/images/joomla.png HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/installation/index.php
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 9075
Last-Modified: Sat, 20 Apr 2019 00:48:37 GMT
Connection: keep-alive
Etag: "5cba6c65-2373"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 300 x 60, 8-bit/color RGBA, non-interlaced
Size:   9075
Md5:    79628771a0f7d6c4ac325f3db4024362
Sha1:   f540a662e1644c357bf33a4c4bcc0d79087951db
Sha256: 8fbe800d60bbed59fa27e57ee50ae25d10eb7ec022afe198a489f16c4b89905c
                                        
                                            GET /media/jui/img/glyphicons-halflings-white.png HTTP/1.1 
Host: vs-fr13478.level-cloud.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://vs-fr13478.level-cloud.com/media/jui/css/bootstrap.min.css?9423ffe56dece3a3630f135714ecd062
Cookie: 9d4bb4a09f511681369671a08beff228=h8r0o3hhsdibutf2j3ct2a22b1

                                         
                                         62.75.242.81
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sat, 20 Apr 2019 07:08:09 GMT
Content-Length: 8743
Last-Modified: Sat, 20 Apr 2019 00:48:38 GMT
Connection: keep-alive
Etag: "5cba6c66-2227"
X-Powered-By: PleskLin
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 469 x 159, 8-bit colormap, non-interlaced
Size:   8743
Md5:    fae32a0c3539b45c9851bc9e922a5152
Sha1:   4eab0ec913285e616316e3668e519dbe86778d39
Sha256: 5bf94075cb5c2bd2019d48f79a08a44430788726db4ef65d8ca4d547c1db4d95