| hudsonvalleymakersproject.com/secured/index.php | 69.49.228.234 | 200 OK | 12 kB |
URL User Request GET HTTP/1.1hudsonvalleymakersproject.com/secured/index.php IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typeHTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Hash248c8dd5eaeca1344b4890160b9878aa 9f3df0cd0624edf681979c672f75d8fccab6487d 54a0c9f64fd489edaa0c7419be395872d72e6ef0771049b1a4a487131953fa8f
Analyzer | Verdict | Alert | OpenPhish | phishing | Office365 |
GET /secured/index.php HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:31 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| code.jquery.com/jquery-3.1.1.min.js | 151.101.66.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.1.1.min.js IP151.101.66.137:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32030) Hashe071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf
GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 04:46:32 GMT
age: 19997393
x-served-by: cache-lga21947-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 118, 21924
x-timer: S1714797993.802987,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js | 104.17.25.14 | 200 OK | 6.2 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP104.17.25.14:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19015) Hash70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hudsonvalleymakersproject.com
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 04:46:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 290066
expires: Thu, 24 Apr 2025 04:46:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6eHMC0BYzhDaT6Qa5OMqRDT%2BrSqiqQm%2FpxSVjF6xFcMmEZ21H1g3F1VUKTUtE4ntnn7Vvan4XoARDhWjxkBndiG%2Fk0MuSVIW2Ug8t7633YNvmgB8WmWvxC9dBGFEOX5xmc22Uinb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87e5d8ff0de30afe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.2.1.slim.min.js | 151.101.66.137 | 200 OK | 24 kB |
URL GET HTTP/2code.jquery.com/jquery-3.2.1.slim.min.js IP151.101.66.137:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32012) Hash5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hudsonvalleymakersproject.com
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 04 May 2024 04:46:32 GMT
age: 80614
x-served-by: cache-lga21963-LGA, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 43, 6360
x-timer: S1714797993.819628,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.138 | 200 OK | 30 kB |
URL GET HTTP/3ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.138:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (32065) Hash2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:24:47 GMT
expires: Fri, 02 May 2025 23:24:47 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 105705
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| hudsonvalleymakersproject.com/secured/css/hover.css | 69.49.228.234 | 200 OK | 115 kB |
URL GET HTTP/1.1hudsonvalleymakersproject.com/secured/css/hover.css IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
Size115 kB (114697 bytes) Hashfac4178c15e5a86139c662dafc809501 ef1481841399156a880ec31b07dda9cfaa1ace39 bb88454962767eb6f2ddb1aabaaf844d8a57de7e8f848d7f6928f81b54998452
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /secured/css/hover.css HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:31 GMT
Server: Apache
Last-Modified: Mon, 11 Jun 2018 14:44:34 GMT
Accept-Ranges: bytes
Content-Length: 114697
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| hudsonvalleymakersproject.com/secured/images/outlook1.png | 69.49.228.234 | 200 OK | 771 B |
URL GET HTTP/1.1hudsonvalleymakersproject.com/secured/images/outlook1.png IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typePNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced Hashc3fc46c5799c76f9107504028f39190f 519096ad3f03410cf9ce3c9b9fcca6b439d97b23 57898461712a639d119bdf88b7145919dcc8956c7a271d2e4a1084b29eae6785
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /secured/images/outlook1.png HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:32 GMT
Server: Apache
Last-Modified: Sat, 18 Jan 2020 21:38:46 GMT
Accept-Ranges: bytes
Content-Length: 771
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 | 104.21.26.223 | 200 OK | 43 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 IP104.21.26.223:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com FingerprintB7:87:04:20:5C:0E:FA:B1:92:D1:3B:91:3F:39:7C:48:5C:CB:01:EA ValidityFri, 03 May 2024 11:08:04 GMT - Thu, 01 Aug 2024 11:08:03 GMT
File typeASCII text, with very long lines (60130) Hasha12ec7ebe75a4d59a5dd6b79e2ba2e16 28f5dcc595ee6d4163481ef64170180502c8629b fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda
GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hudsonvalleymakersproject.com/
Origin: https://hudsonvalleymakersproject.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 04:46:33 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 365d682e9b4889986ad44f252accf6b0.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: aJ2WiiFAvuJwJlISPq1etKrzo2TvWPEkdUWZhtOZaXRObxc-kt2GEA==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l9DurEGi%2BHYEtUnW7tgoojm9H4Ry01a%2BDoO4S%2FXrZBcRkuDLlNdJ86KfH5chvz6%2B%2FJzkPJX3%2FsEaLvppU%2F5EkT48ARywf%2B%2F3EjRG9XIf6n%2FWwkGMZPbi1vrNdXZWlJG%2FwsOf1M%2FytA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e5d9016923568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hudsonvalleymakersproject.com/secured/images/office3651.png | 69.49.228.234 | 200 OK | 18 kB |
URL GET HTTP/1.1hudsonvalleymakersproject.com/secured/images/office3651.png IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typePNG image data, 187 x 188, 8-bit/color RGBA, non-interlaced Hashfe22440d79ffa34950f512ef4a718b2a 0e147e59544ee6580d3095353d4420849fa5eb8a a2f26b68a6c8810c1aeb4048c938f835a86ba83756a7a440f989b967e78f3ba8
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /secured/images/office3651.png HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:32 GMT
Server: Apache
Last-Modified: Tue, 21 Jan 2020 14:30:14 GMT
Accept-Ranges: bytes
Content-Length: 18025
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| hudsonvalleymakersproject.com/secured/images/adobe.jpg | 69.49.228.234 | 200 OK | 31 kB |
URL GET HTTP/1.1hudsonvalleymakersproject.com/secured/images/adobe.jpg IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x400, components 3 Hashbe5274af7d8bd25b8148a190ff515399 b8d0850fd92ee935287e17988b89e53607808c8c 26c62dbdf527b8dcbf378ea62f129cbbba3b244730687909ba21ecd729c9d2e6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /secured/images/adobe.jpg HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:32 GMT
Server: Apache
Last-Modified: Tue, 21 Jan 2020 12:44:54 GMT
Accept-Ranges: bytes
Content-Length: 30925
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| hudsonvalleymakersproject.com/secured/images/other1.png | 69.49.228.234 | 200 OK | 22 kB |
URL GET HTTP/1.1hudsonvalleymakersproject.com/secured/images/other1.png IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typePNG image data, 190 x 187, 8-bit/color RGBA, non-interlaced Hash6843a244e12fab158aa189680b5e7049 0e1c691f87cc4fa35c88344974f2829c40176b70 3a9b144d6482b78afc4e0a940a1d3c22240f14fa535b808cf4dab9635339569f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /secured/images/other1.png HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:32 GMT
Server: Apache
Last-Modified: Sat, 18 Jan 2020 22:01:38 GMT
Accept-Ranges: bytes
Content-Length: 21882
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| hudsonvalleymakersproject.com/secured/images/gmail.png | 69.49.228.234 | 200 OK | 67 kB |
URL GET HTTP/1.1hudsonvalleymakersproject.com/secured/images/gmail.png IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typePNG image data, 1280 x 1280, 8-bit/color RGBA, non-interlaced Hashdce2f2b0e50cb1dbb0246d152791cb46 d0a69c159304edc08db005163e7a0daf5a1e98a6 acf087c1757f08b0cfd53d59066544d7ef0bfcc50999e77c5813739cd9dc1479
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /secured/images/gmail.png HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:32 GMT
Server: Apache
Last-Modified: Mon, 13 Jan 2020 22:06:14 GMT
Accept-Ranges: bytes
Content-Length: 66743
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
|
|
| hudsonvalleymakersproject.com/favicon.ico | 69.49.228.234 | 404 Not Found | 315 B |
URL GET HTTP/1.1hudsonvalleymakersproject.com/favicon.ico IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typeHTML document, ASCII text Hasha34ac19f4afae63adc5d2f7bc970c07f a82190fc530c265aa40a045c21770d967f4767b8 d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /favicon.ico HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Sat, 04 May 2024 04:46:32 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
|
|
| hudsonvalleymakersproject.com/secured/images/8.jpg | 69.49.228.234 | 200 OK | 161 kB |
URL GET HTTP/1.1hudsonvalleymakersproject.com/secured/images/8.jpg IP69.49.228.234:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerLet's Encrypt Subjectcpcalendars.hudsonvalleymakersproject.com FingerprintA4:8A:97:3C:62:78:DE:E3:8F:CA:31:5D:16:5F:77:59:5B:79:ED:E8 ValidityWed, 01 May 2024 00:07:30 GMT - Tue, 30 Jul 2024 00:07:29 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=709, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1200], baseline, precision 8, 1200x646, components 3 Size161 kB (161118 bytes) Hashf17b5b1163efb6d2d47de6bae6d3a9cd 6d6964b34bc44c6d2b106ade1ae675985b96d012 7829f065e0e10c8466f3d57766e0719421b7b652f6a1082f21b98702f1b28a30
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Adobe |
GET /secured/images/8.jpg HTTP/1.1
Host: hudsonvalleymakersproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/secured/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 May 2024 04:46:32 GMT
Server: Apache
Last-Modified: Tue, 21 Jan 2020 13:41:42 GMT
Accept-Ranges: bytes
Content-Length: 161118
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css | 104.18.11.207 | 200 OK | 25 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css IP104.18.11.207:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65325) Hash450fc463b8b1a349df717056fbb3e078 895125a4522a3b10ee7ada06ee6503587cbf95c5 2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hudsonvalleymakersproject.com
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 04:46:32 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:51:41
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: dcb0a390c4c55f9bb20119a0d6fec2a5
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e5d8feed6f56c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kit.fontawesome.com/585b051251.js | 172.64.147.188 | 200 OK | 10 kB |
URL GET HTTP/2kit.fontawesome.com/585b051251.js IP172.64.147.188:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerDigiCert Inc Subject*.fontawesome.com Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typegzip compressed data, from Unix Hashe65df30f9f1ea07a62e7287357a19efa db168ccb66c4b7dda6285e2bd017841326e9b8df 679889b6b9ede52594afcc887eca3d32643ca87fad87f6a0033a683bce0b14bf
GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hudsonvalleymakersproject.com
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 04:46:32 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F8wOLQya1bwnFzFFhCrD
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87e5d8ff0a0d56c5-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Yellowtail&display=swap | 142.250.74.170 | 200 OK | 9.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Yellowtail&display=swap IP142.250.74.170:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash25e5870b9d4109dc7a5805452db2b71d 79591606185b98fe38fe8c573861233fa44d9a43 5c271e57a86de51fe6bc0844afb91584218cb32f8f34096df1fd5a18765b867e
GET /css?family=Yellowtail&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 04:46:33 GMT
date: Sat, 04 May 2024 04:46:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 49 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (48664) Hash14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://hudsonvalleymakersproject.com
DNT: 1
Connection: keep-alive
Referer: https://hudsonvalleymakersproject.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 04:46:32 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:46:36
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: b97d9be63edc06b638a788301cffa4ab
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e5d8ff0d9856c9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 | 104.21.26.223 | 200 OK | 27 kB |
URL GET HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 IP104.21.26.223:443
Requested byhttps://hudsonvalleymakersproject.com/secured/index.php CertificateIssuerGoogle Trust Services LLC Subjectka-f.fontawesome.com FingerprintB7:87:04:20:5C:0E:FA:B1:92:D1:3B:91:3F:39:7C:48:5C:CB:01:EA ValidityFri, 03 May 2024 11:08:04 GMT - Thu, 01 Aug 2024 11:08:03 GMT
File typeASCII text, with very long lines (26500) Hash76f34b71fc9fb641507ff6a822cc07f5 73ed2f8f21cd40fb496e61306acbb5849d4dbff4 6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hudsonvalleymakersproject.com/
Origin: https://hudsonvalleymakersproject.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 04:46:33 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41fc52a84466debf784d2dbdb0b64b36.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: zeocIGn-tQE9Glm4V9M8FOzVJciyPy4FhDNnpAOYTTwgZ6diJpiZHA==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iXF2JNCwKgNSjOf1GFeYbg6X%2BrvWtwA%2FXbyMupO9okF1OsytYFp3kUob41xi9lrWzF2E%2FE4KoukQIXprz%2BEp6LXRt234Snnw6t4IlLOJ0eUynpjJFDqIH4cLR6vYYNIMi%2BBck%2Bokpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e5d9017928568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|