| huliondea.inovaperf.me/servento/ubontoo/Client/files/favicon.ico | 185.157.247.2 | 200 OK | 12 kB |
URL GET HTTP/2huliondea.inovaperf.me/servento/ubontoo/Client/files/favicon.ico IP185.157.247.2:443 ASN#34534 Fbw Networks SAS
Requested byhttps://huliondea.inovaperf.me/servento/ubontoo/Client/dep.html CertificateIssuerLet's Encrypt Subjecthuliondea.inovaperf.me Fingerprint33:4D:FC:46:74:86:C7:C3:9B:AC:1D:5A:2A:48:21:E3:88:C6:C3:C0 ValidityWed, 03 Apr 2024 01:48:55 GMT - Tue, 02 Jul 2024 01:48:54 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3 Hash3d22fa307cf71954f6abba566c4983a6 0dffa841021251b6a5533679321584c10d0e98cc 0aaf5804a0bfa2db97cbb1dd89d62307c7580007638c51a5751bfec9c152d595
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Credit Agricole | Quad9 DNS | malicious | Sinkholed |
GET /servento/ubontoo/Client/files/favicon.ico HTTP/1.1
Host: huliondea.inovaperf.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huliondea.inovaperf.me/servento/ubontoo/Client/dep.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:48:13 GMT
content-type: image/vnd.microsoft.icon
content-length: 11469
last-modified: Sun, 02 Aug 2020 16:45:18 GMT
etag: "5f26ed9e-2ccd"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
| huliondea.inovaperf.me/servento/ubontoo/Client/files/back-dep.PNG | 185.157.247.2 | 200 OK | 776 kB |
URL GET HTTP/2huliondea.inovaperf.me/servento/ubontoo/Client/files/back-dep.PNG IP185.157.247.2:443 ASN#34534 Fbw Networks SAS
Requested byhttps://huliondea.inovaperf.me/servento/ubontoo/Client/dep.html CertificateIssuerLet's Encrypt Subjecthuliondea.inovaperf.me Fingerprint33:4D:FC:46:74:86:C7:C3:9B:AC:1D:5A:2A:48:21:E3:88:C6:C3:C0 ValidityWed, 03 Apr 2024 01:48:55 GMT - Tue, 02 Jul 2024 01:48:54 GMT
File typePNG image data, 1366 x 768, 8-bit/color RGBA, non-interlaced Size776 kB (775946 bytes) Hashaddd437c3af0851c8e2ed6aa3419cff8 6444dea5b38efd380691b0f6a88fc140246522df 576bcd541bd8f83a65efff5da1d27c9a4cd6efa60be65bcc251494cbc9c56259
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Credit Agricole | Quad9 DNS | malicious | Sinkholed |
GET /servento/ubontoo/Client/files/back-dep.PNG HTTP/1.1
Host: huliondea.inovaperf.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huliondea.inovaperf.me/servento/ubontoo/Client/files/image-dep.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:48:14 GMT
content-type: image/png
content-length: 775946
last-modified: Tue, 12 Jul 2022 11:15:00 GMT
etag: "62cd57b4-bd70a"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
| huliondea.inovaperf.me/servento/ubontoo/Client/dep.html | 185.157.247.2 | 200 OK | 4.4 kB |
URL User Request GET HTTP/2huliondea.inovaperf.me/servento/ubontoo/Client/dep.html IP185.157.247.2:443 ASN#34534 Fbw Networks SAS
CertificateIssuerLet's Encrypt Subjecthuliondea.inovaperf.me Fingerprint33:4D:FC:46:74:86:C7:C3:9B:AC:1D:5A:2A:48:21:E3:88:C6:C3:C0 ValidityWed, 03 Apr 2024 01:48:55 GMT - Tue, 02 Jul 2024 01:48:54 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4986), with no line terminators Hash888ff289bad581635be2368df0468203 fca8f898b2c2c61855ef11638ff1a31621f6c111 645e644a542495a328d61c2ec433b12a5274b0a1522e778bb65baf4fe10ebebd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Credit Agricole | OpenPhish | phishing | Credit Agricole S.A. | Quad9 DNS | malicious | Sinkholed |
GET /servento/ubontoo/Client/dep.html HTTP/1.1
Host: huliondea.inovaperf.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:48:13 GMT
content-type: text/html
last-modified: Tue, 21 Feb 2023 19:38:56 GMT
etag: W/"63f51dd0-113b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
| huliondea.inovaperf.me/servento/ubontoo/Client/files/image-dep.css | 185.157.247.2 | 200 OK | 4.5 kB |
URL GET HTTP/2huliondea.inovaperf.me/servento/ubontoo/Client/files/image-dep.css IP185.157.247.2:443 ASN#34534 Fbw Networks SAS
Requested byhttps://huliondea.inovaperf.me/servento/ubontoo/Client/dep.html CertificateIssuerLet's Encrypt Subjecthuliondea.inovaperf.me Fingerprint33:4D:FC:46:74:86:C7:C3:9B:AC:1D:5A:2A:48:21:E3:88:C6:C3:C0 ValidityWed, 03 Apr 2024 01:48:55 GMT - Tue, 02 Jul 2024 01:48:54 GMT
File typeASCII text, with very long lines (5224), with no line terminators Hash7183362dea45ce45697ac702238e9e74 4cc88db8c6bb9e2444089d2b3e0b39d517d27411 c2b5c8befaad0cab02cc5b7394cbd7acebd102f3635d8720a872355ee393107d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Credit Agricole | Quad9 DNS | malicious | Sinkholed |
GET /servento/ubontoo/Client/files/image-dep.css HTTP/1.1
Host: huliondea.inovaperf.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://huliondea.inovaperf.me/servento/ubontoo/Client/dep.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 15:48:14 GMT
content-type: text/css
last-modified: Tue, 12 Jul 2022 17:49:22 GMT
etag: W/"62cdb422-11b8"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|