Overview

URL un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html
IP129.121.16.217
ASNAS36024 Colo4, LLC
Location United States
Report completed2019-04-19 22:54:01 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 129.121.16.217

Date UQ / IDS / BL URL IP
2019-06-06 08:24:09 +0200
1 - 0 - 16 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-06-05 17:33:25 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-06-05 14:17:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-29 22:39:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-24 07:48:47 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign.zip 129.121.16.217
2019-05-24 01:29:40 +0200
1 - 1 - 15 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:51 +0200
0 - 1 - 5 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:43 +0200
4 - 2 - 2 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:42 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:26 +0200
0 - 3 - 11 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217

Last 10 reports on ASN: AS36024 Colo4, LLC

Date UQ / IDS / BL URL IP
2019-07-01 04:16:53 +0200
0 - 0 - 0 theoldredcow.com/ 143.95.240.36
2019-06-30 01:15:41 +0200
0 - 0 - 0 theoldredcow.com/ 143.95.240.36
2019-06-30 01:15:33 +0200
0 - 0 - 0 thestatlerbrothers.com 129.121.15.232
2019-06-30 00:41:40 +0200
0 - 0 - 0 govtrack.us 72.249.66.95
2019-06-30 00:36:06 +0200
0 - 0 - 0 www.ggkit.com/ads/ads.asp 143.95.252.18
2019-06-30 00:35:02 +0200
0 - 0 - 0 theoldredcow.com 143.95.240.36
2019-06-27 10:51:37 +0200
0 - 0 - 0 theoldredcow.com/food/ 143.95.240.36
2019-06-26 21:33:06 +0200
0 - 0 - 3 serviceaccord.nl//vmail5103 207.210.202.209
2019-06-25 20:50:59 +0200
0 - 0 - 0 facebook-db.com 129.121.14.104
2019-06-25 17:03:44 +0200
0 - 0 - 0 lighthousechristianchurch15.org 143.95.246.205

Last 10 reports on domain: un-influenza.org

Date UQ / IDS / BL URL IP
2019-06-06 08:24:09 +0200
1 - 0 - 16 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-06-05 17:33:25 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-06-05 14:17:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-29 22:39:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-24 07:48:47 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign.zip 129.121.16.217
2019-05-24 01:29:40 +0200
1 - 1 - 15 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:51 +0200
0 - 1 - 5 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:43 +0200
4 - 2 - 2 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:42 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:26 +0200
0 - 3 - 11 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217


JavaScript

Executed Scripts (5)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (18)


Request Response
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index.html HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Mar 2018 23:32:06 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12515
Md5:    cc9ee59a002a9dab27c237933827c03e
Sha1:   af4e66760a3fe3283a34f899230c2f498b2a0225
Sha256: dc0cc068438de9667cd9830dd84c4e5c049d8ed121dbea32d2e3304dac407a86

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         104.18.24.243
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 19 Apr 2019 20:53:28 GMT
Content-Length: 1831
Connection: keep-alive
Set-Cookie: __cfduid=db22749b4863d2ce42f57d0721c86b24e1555707208; expires=Sat, 18-Apr-20 20:53:28 GMT; path=/; domain=.msocsp.com; HttpOnly
Expires: Tue, 23 Apr 2019 16:57:26 GMT
X-Powered-By: Undertow/1
Etag: "0f44900bfde373e324284dfd4a2271c3bd062c54"
Last-Modified: Fri, 19 Apr 2019 16:57:26 GMT
X-Cache: HIT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ca1c4a6aecd428b-OSL


--- Additional Info ---
Magic:  data
Size:   1831
Md5:    929529d475fc037bd5a2e550a7266c50
Sha1:   0f44900bfde373e324284dfd4a2271c3bd062c54
Sha256: 5a33ef8930cafec1d568bf25f69c5f4e177741f070ba1b5c78f0262e0ab91b1f
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/convergedloginpaginatedstrings-en.min.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:32 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3934
Md5:    ada563fcefa899d3e4173f9549a576bc
Sha1:   12d6f4a441ae2a95179ddf4227a47040eb9bd359
Sha256: 561f4a762558c69665d492fc9b67a620b81eaae50f9b4fb3809062bcad4c25b0

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /ests/2.1.6916.13/content/images/favicon_a.ico HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         95.101.94.30
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Content-Length: 17174
Content-MD5: EuPayFgGHQiAI7K9SOL6lg==
Last-Modified: Tue, 21 Nov 2017 04:42:35 GMT
Access-Control-Expose-Headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
Cache-Control: public, max-age=604741
Date: Fri, 19 Apr 2019 20:53:28 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  MS Windows icon resource - 6 icons, 16-colors
Size:   17174
Md5:    12e3dac858061d088023b2bd48e2fa96
Sha1:   e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
Sha256: 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/microsoft_logo.svg HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:28 GMT
Content-Length: 3651
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:34 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   3651
Md5:    ee5c8d9fb6248c938fd0dc19370e90bd
Sha1:   d01a22720918b781338b5bbf9202b241a5f99ee4
Sha256: 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/converged.login.min.css HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:32 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20367
Md5:    8b92545e9a2d18700ee6e1428a340665
Sha1:   4f7bf78aa683c2216f614cd886d227b76176c6eb
Sha256: 5d34502f84738ff7524cf00cdca5d74fb9ba7e666f5d5eaefd89ae8cc421f5a9
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/convergedlogin_pcore.min.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:32 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   106112
Md5:    c2092d8a2984490284426d1837fc0a28
Sha1:   209b0aba94db4cfb616b8e9df07ab82a9a91b88d
Sha256: b7748df1bdc28bb10b47285051339de633459bc3fa5be3e7dfdd2c7e480f02e3

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /ests/2.1.6916.13/content/images/backgrounds/0-small.jpg?x=12f4b8b543125cc986c79cd85320812f HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html

                                         
                                         95.101.94.30
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1029
Content-MD5: EvS4tUMSXMmGx5zYUyCBLw==
Last-Modified: Tue, 21 Nov 2017 04:44:08 GMT
Access-Control-Expose-Headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
Cache-Control: public, max-age=604740
Date: Fri, 19 Apr 2019 20:53:29 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1029
Md5:    12f4b8b543125cc986c79cd85320812f
Sha1:   e3142c687fe873e1a6a7d29016c7a451b8a2850f
Sha256: c13db279143e1845ee4aaee5afedc5bd75e9f7d50024b63883b45332c4960b3b
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/microsoft_logo.svg HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html
Range: bytes=0-
If-Range: Fri, 24 Nov 2017 12:34:34 GMT

                                         
                                         129.121.16.217
HTTP/1.1 206 Partial Content
Content-Type: image/svg+xml
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Content-Length: 3651
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:34 GMT
Accept-Ranges: bytes
Content-Range: bytes 0-3650/3651


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   3651
Md5:    ee5c8d9fb6248c938fd0dc19370e90bd
Sha1:   d01a22720918b781338b5bbf9202b241a5f99ee4
Sha256: 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8647
Md5:    3feba590f4808e37e35e8b4b2abc552f
Sha1:   10d55e69d7f1a885b488672ece0474c1689829ea
Sha256: f506857574d9f0193736a055814952de5f7fc0b90c12737b3baa08ac15cb8b53

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /ests/2.1.6916.13/content/images/backgrounds/0.jpg?x=f5a9a9531b8f4bcc86eabb19472d15d5 HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index.html

                                         
                                         95.101.94.30
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 298105
Content-MD5: 9ampUxuPS8yG6rsZRy0V1Q==
Last-Modified: Tue, 21 Nov 2017 04:44:09 GMT
Access-Control-Expose-Headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
Cache-Control: public, max-age=604740
Date: Fri, 19 Apr 2019 20:53:29 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   298105
Md5:    f5a9a9531b8f4bcc86eabb19472d15d5
Sha1:   0aac0b09708622c679768aa62b11d95f0e8388de
Sha256: 62faab60433070e2ea52c235f0f18db228759f2a08bb6f9e5711630df8321214
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/sprite1.mouse.css HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1299
Md5:    53e9330025ffcf46d433f80434ee0b2e
Sha1:   a6ea580033226dcf7b08c2f248a15cc7f688ef21
Sha256: 578cf1503e7a7a4915f0812a11a45d119f7d878bf1f8c3b99fc95c8efdbd4871
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/sprite1.mouse.png HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Content-Length: 16664
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 600 x 75, 8-bit/color RGBA, non-interlaced
Size:   16664
Md5:    2835f067dcf4c8a12464856267ca8ff7
Sha1:   ab0a6ccd3932d913314b1ff617f236750781a835
Sha256: 4b5cc3fed2c03c158abc3634c1f7700079fbc1e6183aa5e47a2064cfed87977c
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.2.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:36 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   205283
Md5:    dc8d3e293a7d424ed49682301db6f292
Sha1:   caaa32b1a10a8316095906c734b2aa60918b795c
Sha256: 3bdc8a159c26ee09f240987709d8a28163b6e3baf7887a5909e0f79ca08c706d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.0.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:34 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   214546
Md5:    01a1326a9ec990116543970151880844
Sha1:   64de22af136a3f94dc5f658914e4475780b47e84
Sha256: b50d83ce1760def1512574928f67b67a8d3a4218159e8a5a790c907df2477c3b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.1.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:36 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   192001
Md5:    57157701e8bfff41f7d2adac412e0445
Sha1:   ed7b4081bd97050d2228cff7e59f803c7f7c482a
Sha256: e334106a53a2586f9d760fbaedb2c4283e671fadd3943a44bd81e170aa2e5cf0

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.3.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:36 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   178045
Md5:    2809c65706badf5d0e81bbf583ca3904
Sha1:   fe536dec4f2a4cacabcc9cace86a3ad095abe189
Sha256: b9b59bc636bf95006a78dce86e6e0a7a7c46d08c5c493062c14bf6c14442e36a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.mouse.css HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 20:53:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   52671
Md5:    8e5c67aa9bbe2cc96b558116ab304011
Sha1:   b4437ea203d56dc9a699178c25eba3422f56dab2
Sha256: fc7a9dea55bb90723de258bb083e25a1d0e641d3a26b2ea6c7cbc84624ceba06