Overview

URL un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin
IP129.121.16.217
ASNAS36024 Colo4, LLC
Location United States
Report completed2019-04-19 23:00:39 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/ Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
2019-04-19 2 un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index (...) Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 129.121.16.217

Date UQ / IDS / BL URL IP
2019-06-06 08:24:09 +0200
1 - 0 - 16 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-06-05 17:33:25 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-06-05 14:17:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-29 22:39:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-24 07:48:47 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign.zip 129.121.16.217
2019-05-24 01:29:40 +0200
1 - 1 - 15 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:51 +0200
0 - 1 - 5 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:43 +0200
4 - 2 - 2 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:42 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:26 +0200
0 - 3 - 11 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217

Last 10 reports on ASN: AS36024 Colo4, LLC

Date UQ / IDS / BL URL IP
2019-07-01 04:16:53 +0200
0 - 0 - 0 theoldredcow.com/ 143.95.240.36
2019-06-30 01:15:41 +0200
0 - 0 - 0 theoldredcow.com/ 143.95.240.36
2019-06-30 01:15:33 +0200
0 - 0 - 0 thestatlerbrothers.com 129.121.15.232
2019-06-30 00:41:40 +0200
0 - 0 - 0 govtrack.us 72.249.66.95
2019-06-30 00:36:06 +0200
0 - 0 - 0 www.ggkit.com/ads/ads.asp 143.95.252.18
2019-06-30 00:35:02 +0200
0 - 0 - 0 theoldredcow.com 143.95.240.36
2019-06-27 10:51:37 +0200
0 - 0 - 0 theoldredcow.com/food/ 143.95.240.36
2019-06-26 21:33:06 +0200
0 - 0 - 3 serviceaccord.nl//vmail5103 207.210.202.209
2019-06-25 20:50:59 +0200
0 - 0 - 0 facebook-db.com 129.121.14.104
2019-06-25 17:03:44 +0200
0 - 0 - 0 lighthousechristianchurch15.org 143.95.246.205

Last 10 reports on domain: un-influenza.org

Date UQ / IDS / BL URL IP
2019-06-06 08:24:09 +0200
1 - 0 - 16 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-06-05 17:33:25 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-06-05 14:17:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-29 22:39:18 +0200
0 - 0 - 2 un-influenza.org/zdaddy/docusign/docusign-redson3 129.121.16.217
2019-05-24 07:48:47 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign.zip 129.121.16.217
2019-05-24 01:29:40 +0200
1 - 1 - 15 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:51 +0200
0 - 1 - 5 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:43 +0200
4 - 2 - 2 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:42 +0200
0 - 0 - 1 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217
2019-05-24 01:28:26 +0200
0 - 3 - 11 un-influenza.org/zdaddy/docusign/docusign-red (...) 129.121.16.217


JavaScript

Executed Scripts (5)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (19)


Request Response
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         129.121.16.217
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:08 GMT
Content-Length: 285
Connection: keep-alive
Location: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   285
Md5:    f2e766661e50505913b486f6c9ffbea4
Sha1:   073aaf9656b96cf614d58683478cee6fc4a5ea01
Sha256: a93a4b4d745f24e794e57799325094bf74aea4fa784ed1086673c528e8eec14d

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/ HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 29 Mar 2018 23:32:06 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   12546
Md5:    e5ef337efc02b35c3ad3e994d81fa1e7
Sha1:   63e7953b6fd0a8225cd396e30838e635084d16b9
Sha256: 45b519647158c516811b25029c37d8915dd0c4cb038dd53454ee25b99a3ad25f

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/converged.login.min.css HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:32 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   20367
Md5:    8b92545e9a2d18700ee6e1428a340665
Sha1:   4f7bf78aa683c2216f614cd886d227b76176c6eb
Sha256: 5d34502f84738ff7524cf00cdca5d74fb9ba7e666f5d5eaefd89ae8cc421f5a9
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/convergedloginpaginatedstrings-en.min.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:32 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3934
Md5:    ada563fcefa899d3e4173f9549a576bc
Sha1:   12d6f4a441ae2a95179ddf4227a47040eb9bd359
Sha256: 561f4a762558c69665d492fc9b67a620b81eaae50f9b4fb3809062bcad4c25b0

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.msocsp.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 118
Content-Type: application/ocsp-request

                                         
                                         104.18.24.243
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 19 Apr 2019 21:00:08 GMT
Content-Length: 1831
Connection: keep-alive
Set-Cookie: __cfduid=dccca7b1d3965810cd8e42685d1095f641555707608; expires=Sat, 18-Apr-20 21:00:08 GMT; path=/; domain=.msocsp.com; HttpOnly
Expires: Tue, 23 Apr 2019 19:31:28 GMT
X-Powered-By: Undertow/1
Etag: "5c09caa120e3705d15b14824c5878751512f221b"
Last-Modified: Fri, 19 Apr 2019 19:31:28 GMT
X-Cache: HIT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ca1ce6a1aaf4261-OSL


--- Additional Info ---
Magic:  data
Size:   1831
Md5:    b8aff8b3d9caa52def80d1d358ab6192
Sha1:   5c09caa120e3705d15b14824c5878751512f221b
Sha256: 661d87d9b1519fa01c4fb454d75e1bba87ece9f23bfa5499252415e9a86aef50
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/microsoft_logo.svg HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:08 GMT
Content-Length: 3651
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:34 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   3651
Md5:    ee5c8d9fb6248c938fd0dc19370e90bd
Sha1:   d01a22720918b781338b5bbf9202b241a5f99ee4
Sha256: 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/convergedlogin_pcore.min.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:32 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   106112
Md5:    703bf6ccdb1ddeb91ac972c95daae3d7
Sha1:   5c5a4af736cc6db408ce4997fb0b907e3e320bc5
Sha256: 55fd5ab3b41db5da4f699a28f38af982c48c64712045138a34f3bb20507b899b

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/microsoft_logo.svg HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/
Range: bytes=0-
If-Range: Fri, 24 Nov 2017 12:34:34 GMT

                                         
                                         129.121.16.217
HTTP/1.1 206 Partial Content
Content-Type: image/svg+xml
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Content-Length: 3651
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:34 GMT
Accept-Ranges: bytes
Content-Range: bytes 0-3650/3651


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   3651
Md5:    ee5c8d9fb6248c938fd0dc19370e90bd
Sha1:   d01a22720918b781338b5bbf9202b241a5f99ee4
Sha256: 04d29248ee3a13a074518c93a18d6efc491bf1f298f9b87fc989a6ae4b9fad7a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8647
Md5:    3feba590f4808e37e35e8b4b2abc552f
Sha1:   10d55e69d7f1a885b488672ece0474c1689829ea
Sha256: f506857574d9f0193736a055814952de5f7fc0b90c12737b3baa08ac15cb8b53

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /ests/2.1.6916.13/content/images/favicon_a.ico HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         95.101.94.30
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Content-Length: 17174
Content-MD5: EuPayFgGHQiAI7K9SOL6lg==
Last-Modified: Tue, 21 Nov 2017 04:42:35 GMT
Access-Control-Expose-Headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
Cache-Control: public, max-age=604341
Date: Fri, 19 Apr 2019 21:00:08 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  MS Windows icon resource - 6 icons, 16-colors
Size:   17174
Md5:    12e3dac858061d088023b2bd48e2fa96
Sha1:   e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
Sha256: 90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
                                        
                                            GET /ests/2.1.6916.13/content/images/backgrounds/0-small.jpg?x=12f4b8b543125cc986c79cd85320812f HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/

                                         
                                         95.101.94.30
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 1029
Content-MD5: EvS4tUMSXMmGx5zYUyCBLw==
Last-Modified: Tue, 21 Nov 2017 04:44:08 GMT
Access-Control-Expose-Headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
Cache-Control: public, max-age=604340
Date: Fri, 19 Apr 2019 21:00:09 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   1029
Md5:    12f4b8b543125cc986c79cd85320812f
Sha1:   e3142c687fe873e1a6a7d29016c7a451b8a2850f
Sha256: c13db279143e1845ee4aaee5afedc5bd75e9f7d50024b63883b45332c4960b3b
                                        
                                            GET /ests/2.1.6916.13/content/images/backgrounds/0.jpg?x=f5a9a9531b8f4bcc86eabb19472d15d5 HTTP/1.1 
Host: secure.aadcdn.microsoftonline-p.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/

                                         
                                         95.101.94.30
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Content-Length: 298105
Content-MD5: 9ampUxuPS8yG6rsZRy0V1Q==
Last-Modified: Tue, 21 Nov 2017 04:44:09 GMT
Access-Control-Expose-Headers: x-ms-request-id,x-ms-version,x-ms-lease-status,x-ms-blob-type
Cache-Control: public, max-age=604340
Date: Fri, 19 Apr 2019 21:00:09 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   298105
Md5:    f5a9a9531b8f4bcc86eabb19472d15d5
Sha1:   0aac0b09708622c679768aa62b11d95f0e8388de
Sha256: 62faab60433070e2ea52c235f0f18db228759f2a08bb6f9e5711630df8321214
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/sprite1.mouse.css HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1299
Md5:    53e9330025ffcf46d433f80434ee0b2e
Sha1:   a6ea580033226dcf7b08c2f248a15cc7f688ef21
Sha256: 578cf1503e7a7a4915f0812a11a45d119f7d878bf1f8c3b99fc95c8efdbd4871
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/sprite1.mouse.png HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Content-Length: 16664
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 600 x 75, 8-bit/color RGBA, non-interlaced
Size:   16664
Md5:    2835f067dcf4c8a12464856267ca8ff7
Sha1:   ab0a6ccd3932d913314b1ff617f236750781a835
Sha256: 4b5cc3fed2c03c158abc3634c1f7700079fbc1e6183aa5e47a2064cfed87977c
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.0.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:34 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   214477
Md5:    a44797bb67708e5f3d5316b6359040eb
Sha1:   f92d0ea8f3fc9523d9fb7a23e1443bd6fef842d0
Sha256: d69ed354b6775d19a4a6fbd5c8c202c05127bd994215d07694b67d4480ee01eb

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.1.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:36 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   192001
Md5:    57157701e8bfff41f7d2adac412e0445
Sha1:   ed7b4081bd97050d2228cff7e59f803c7f7c482a
Sha256: e334106a53a2586f9d760fbaedb2c4283e671fadd3943a44bd81e170aa2e5cf0

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.2.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:36 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   205331
Md5:    d068fdaac3cb0c633682e5fd27f92e1f
Sha1:   8165e313e25ed86a31d1a32595d54b4db4130502
Sha256: 71250d6323baca658e2359738c3195f1f62469884f76b8ca750414889cff11dc

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.mouse.css HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:38 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   53358
Md5:    7f43998f35d37cfaa21c2c073c77e1a8
Sha1:   474dbd95ba3ac51fd14fce730f05befb631fffea
Sha256: 95b4f5a9bad93300c8abde0adc0a3c5983983c5efdbae44cd5e211cad6541e8c
                                        
                                            GET /zdaddy/docusign/docusign-redson3/login/office_signin/index_files/boot.worldwide.3.mouse.js.download HTTP/1.1 
Host: un-influenza.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://un-influenza.org/zdaddy/docusign/docusign-redson3/login/office_signin/index_files/prefetch.html

                                         
                                         129.121.16.217
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.2
Date: Fri, 19 Apr 2019 21:00:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 24 Nov 2017 12:34:36 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   178201
Md5:    3c60be1cf36c87550cda89c34603f89c
Sha1:   1188752dac6a7c30b15514cf71462bf78abb9994
Sha256: f6582ac552e66126c5ef32ec36ad8476b00443b244befa5771e1f6889ed33ef2

Alerts:
  Blacklists:
    - fortinet: Phishing