IP185.73.228.142:0 ASN#20853 eTOP sp. z o.o.
File typeHTML document, ASCII text Hash841e1411d107ad6e74f29d22e631026a 115a582073d3dac54e2e0480b2e6736305ed4447 35346bdc409948d7be4a1cb3b414d6271500a2dc02a56e0185c856e0a2285332
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: xzm1um.webwave.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 17:14:26 GMT
server: Apache
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
x-application-context: application:production
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
cacheable: true
age: 45275
set-cookie: cache-with-varnish=true
accept-ranges: bytes
content-length: 860
X-Firefox-Spdy: h2
|
| xzm1um.webwave.dev/files/assets/com/webwave/staticContent/websiteRestrictionContent-5fa59b9e86ca582636d1bb42c67c8368.css | 185.73.228.142 | | 102 B |
URL xzm1um.webwave.dev/files/assets/com/webwave/staticContent/websiteRestrictionContent-5fa59b9e86ca582636d1bb42c67c8368.css IP185.73.228.142:0 ASN#20853 eTOP sp. z o.o.
File typeASCII text, with no line terminators Hash360af84786242d957a8be2b3bb9044d7 cbce471157161028564b8f52a3da1b0866203d33 39f2701caeee6327ceb9e8f60bc21947c63cdf37525ad6b2b0be5c54286f5303
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. | Quad9 DNS | malicious | Sinkholed |
GET /files/assets/com/webwave/staticContent/websiteRestrictionContent-5fa59b9e86ca582636d1bb42c67c8368.css HTTP/1.1
Host: xzm1um.webwave.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xzm1um.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:49:02 GMT
server: Apache
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
last-modified: Wed, 24 Apr 2024 15:15:53 GMT
etag: "57-616d925867b38-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-length: 102
content-type: text/css
X-Firefox-Spdy: h2
|
| xzm1um.webwave.dev/files/assets/logo/brand-logo-dark-419d0d2aa630d34e8f97f934d09ab64f.svg | 185.73.228.142 | | 1.7 kB |
URL xzm1um.webwave.dev/files/assets/logo/brand-logo-dark-419d0d2aa630d34e8f97f934d09ab64f.svg IP185.73.228.142:0 ASN#20853 eTOP sp. z o.o.
File typeSVG Scalable Vector Graphics image Hash419d0d2aa630d34e8f97f934d09ab64f 30a4234250b9cb68b5c183d63a9f4c718db9b850 402bcde2f06bdd09958e8c6712c1e2f04f39a9b534102a8dc5f79e502c059b88
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. | Quad9 DNS | malicious | Sinkholed |
GET /files/assets/logo/brand-logo-dark-419d0d2aa630d34e8f97f934d09ab64f.svg HTTP/1.1
Host: xzm1um.webwave.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xzm1um.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:49:02 GMT
server: Apache
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
last-modified: Wed, 24 Apr 2024 15:16:16 GMT
etag: "1064-616d926df32b8-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-length: 1704
content-type: image/svg+xml
X-Firefox-Spdy: h2
|
| xzm1um.webwave.dev/files/assets/favicon-5586395bd576f096b0be07db8947b4eb.ico | 185.73.228.142 | 200 OK | 1.3 kB |
URL GET HTTP/2xzm1um.webwave.dev/files/assets/favicon-5586395bd576f096b0be07db8947b4eb.ico IP185.73.228.142:443 ASN#20853 eTOP sp. z o.o.
Requested byhttps://xzm1um.webwave.dev/ CertificateIssuerLet's Encrypt Subjectwebwave.dev Fingerprint24:7E:AD:96:4E:ED:AF:BA:19:35:ED:63:7A:76:78:D6:F2:32:9B:7F ValidityTue, 12 Mar 2024 15:23:56 GMT - Mon, 10 Jun 2024 15:23:55 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Hash5586395bd576f096b0be07db8947b4eb 6609da71788dd3b9a3bf0a3da1447163de9dec07 bdacdd8e2e07618d6b8a3d6133c26e72b42e283ceb7c618e200b6ffbfd4eb3ba
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. | Quad9 DNS | malicious | Sinkholed |
GET /files/assets/favicon-5586395bd576f096b0be07db8947b4eb.ico HTTP/1.1
Host: xzm1um.webwave.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xzm1um.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:49:02 GMT
server: Apache
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
last-modified: Wed, 24 Apr 2024 15:14:32 GMT
etag: "10be-616d920b88923-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
content-length: 1283
content-type: image/x-icon
X-Firefox-Spdy: h2
|
| xzm1um.webwave.dev/publishedWebsite/createRestrictionHrefValue/xzm1um | 185.73.228.142 | 200 OK | 76 B |
URL POST HTTP/2xzm1um.webwave.dev/publishedWebsite/createRestrictionHrefValue/xzm1um IP185.73.228.142:443 ASN#20853 eTOP sp. z o.o.
Requested byhttps://xzm1um.webwave.dev/ CertificateIssuerLet's Encrypt Subjectwebwave.dev Fingerprint24:7E:AD:96:4E:ED:AF:BA:19:35:ED:63:7A:76:78:D6:F2:32:9B:7F ValidityTue, 12 Mar 2024 15:23:56 GMT - Mon, 10 Jun 2024 15:23:55 GMT
File typeASCII text, with no line terminators Hash9696fa306cb3115ab9961fdc3bde73b1 08629874ff4460b11bd7dc8d4f332acf82ec124c 9bcc0a854aa9d752c55a038d5f08c6556f27a82ef4a30eb30cd97b62f09eb0ed
Analyzer | Verdict | Alert | OpenPhish | phishing | AT&T Inc. | Quad9 DNS | malicious | Sinkholed |
POST /publishedWebsite/createRestrictionHrefValue/xzm1um HTTP/1.1
Host: xzm1um.webwave.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xzm1um.webwave.dev
DNT: 1
Connection: keep-alive
Referer: https://xzm1um.webwave.dev/
Cookie: cache-with-varnish=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
date: Thu, 25 Apr 2024 05:49:02 GMT
server: Apache
content-security-policy: frame-ancestors 'self' webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
x-application-context: application:production
content-type: text/html;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
set-cookie: JSESSIONID=645B67ECB61E67C215D98ECF1C0CBD20.worker1_1; Path=/; Secure; HttpOnly
ww_worker=.worker1_1; path=/
ttl:
age: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
|