| inseveregiont.duckdns.org/style/CADIF_logo_horizontal_rvb_v4.png | 47.87.142.222 | 200 OK | 19 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/CADIF_logo_horizontal_rvb_v4.png IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typePNG image data, 350 x 105, 8-bit/color RGBA, non-interlaced\012- data Hash71cb5c78702e00ffb116f88d9280896a d32b9b4f245643b1e4477f923b12a4d17d50cc3d f8e9befa13e3ff93d974729ae3c727461555d582bb63bb388a4bd497619ef20b
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/CADIF_logo_horizontal_rvb_v4.png HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: image/png
content-length: 18782
last-modified: Sat, 27 May 2023 07:15:17 GMT
etag: "6471ae05-495e"
expires: Thu, 29 Jun 2023 12:29:45 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hashb85157c1ca7989c7bf757e43d01632f7 e32bb00f069d897e00c56cec96155d2c351b5d67 e30b4636b7524d0ebbfa9ad57b4d5d9188420ff139437bf8664920391569286f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 May 2023 12:29:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| inseveregiont.duckdns.org/style/js/popper.min.js | 47.87.142.222 | 200 OK | 9.4 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/popper.min.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typegzip compressed data, from Unix\012- data Hashb9fe2a83d1473a5f9f1d5aeac8ceb911 910a91ebb589d7e2cc894842486d7ece0b61727b 66228d57c34aaf3c57f8e8b6dd19697a2c86dcd62d27ff5fe694fd9ffddf78ad
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/popper.min.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:44 GMT
vary: Accept-Encoding
etag: W/"6471ae20-4f70"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/jquery.validate.min.js | 47.87.142.222 | 200 OK | 8.8 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/jquery.validate.min.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typegzip compressed data, from Unix\012- data Hash4cd344c80c26e71df1cfb405033a7102 e77399f744ec24afe18856a2f0a6da9bd6783f92 2544408a084b3f0906be83424d3d48aac1148b6ab21a528d4920f6a57e60df48
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/jquery.validate.min.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:43 GMT
vary: Accept-Encoding
etag: W/"6471ae1f-59fe"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/css/bootstrap.min.css | 47.87.142.222 | 200 OK | 26 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/css/bootstrap.min.css IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typegzip compressed data, from Unix\012- data Hash0f9068642fcad004c8de4b435b0709ae 99ad13b94f7ada7337796cb2b1ee05e9daff59fc 9fd774b98b9c51744708274f694466ac4e67f8f917d0acc3ccc03f8bd78a2bce
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/css/bootstrap.min.css HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: text/css
last-modified: Sat, 27 May 2023 07:15:23 GMT
vary: Accept-Encoding
etag: W/"6471ae0b-22688"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/angular.min.js | 47.87.142.222 | 200 OK | 66 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/angular.min.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typegzip compressed data, from Unix\012- data Hashf27b5f5ef5537e43c90671bd5899bbe3 afc4b93b984c37637794daea1afc55d026683bc9 0714393bab4711c9a6ee5e4863386e0ffa83250d8dbbdef0e231661931fe5e35
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/angular.min.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:38 GMT
vary: Accept-Encoding
etag: W/"6471ae1a-28cdb"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Hash31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://inseveregiont.duckdns.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 11:49:35 GMT
expires: Fri, 24 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 434411
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash95fb9634ddcd95a261bb9a2757a6ae8e e30d5b20450fdd6588dd8034ef0acbe38159a0bf 65f215904c284124663185e58f9c710e2050afe21509684a22ce96c09a425bf4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 May 2023 12:29:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Hash31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://inseveregiont.duckdns.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 11:49:35 GMT
expires: Fri, 24 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 434411
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/main.js | 47.87.142.222 | 200 OK | 52 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/main.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typegzip compressed data, from Unix\012- data Hash1bc8fceb5c93dc632ddc892c7e39898a e18921c7c40e0d28ad7d61cb1e8aae00ba312595 2fa62fa3de2e20b672dc85f76b3433981fd17de8c7c49371f5efe860c7214bcd
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/main.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:43 GMT
vary: Accept-Encoding
etag: W/"6471ae1f-1092"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Hash31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://inseveregiont.duckdns.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 11:49:35 GMT
expires: Fri, 24 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 434411
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | | 472 B |
IP142.250.74.131:0
Hash95fb9634ddcd95a261bb9a2757a6ae8e e30d5b20450fdd6588dd8034ef0acbe38159a0bf 65f215904c284124663185e58f9c710e2050afe21509684a22ce96c09a425bf4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 May 2023 12:29:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| inseveregiont.duckdns.org//style/fermeture-agence-travaux-DAB_septembre2020.jpg | 47.87.142.222 | 200 OK | 165 kB |
URL GET HTTP/2inseveregiont.duckdns.org//style/fermeture-agence-travaux-DAB_septembre2020.jpg IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=3264, bps=0, compression=none, PhotometricIntepretation=RGB, description=11 d\303\251cembre 2015, manufacturer=Canon, model=Canon EOS-1D Mark IV, orientation=upper-left, width=4896], baseline, precision 8, 960x640, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 26228-27759, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 75594131500502762294377185280.000000, slope 18524499018441621041854808064.000000\012- data Size165 kB (165217 bytes) Hash9185fa780a0576f2043bb631d7b4269c 4a4da7e75f2fc8df41652d9c3ffa277c301bbf04 e07a9ccc231bfc6a4f4ef7d64b1c2df670d9ac347d0d3e4cb4ad04c2133e07f5
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET //style/fermeture-agence-travaux-DAB_septembre2020.jpg HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/style/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:46 GMT
content-type: image/jpeg
content-length: 165217
last-modified: Sat, 27 May 2023 07:15:18 GMT
etag: "6471ae06-28561"
expires: Thu, 29 Jun 2023 12:29:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/favicon.png | 47.87.142.222 | 200 OK | 1.8 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/favicon.png IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data Hashed9c56116b458dfeef180879add56940 f661f922f0bfdf0d2d470aea158eb77d49b5bb26 0c6849d4541c1b5d297b7e48dc2c13d43c357610effd13e1a90929b6638205e0
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/favicon.png HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:46 GMT
content-type: image/png
content-length: 1793
last-modified: Sat, 27 May 2023 07:15:17 GMT
etag: "6471ae05-701"
expires: Thu, 29 Jun 2023 12:29:46 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/css/main.css | 47.87.142.222 | 200 OK | 10 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/css/main.css IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (10363) Hash3e134a4208430eab2fc0af8430e8ebdb f4b06b2f49aff304b0ae36dae0eb5a8ec7af9e2d 68c7d8b42c960fd8544cca7013af1451f1d5da5224dd318da5d2c91548eb3076
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/css/main.css HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: text/css
last-modified: Sat, 27 May 2023 07:15:24 GMT
vary: Accept-Encoding
etag: W/"6471ae0c-287c"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/bootstrap.min.js | 47.87.142.222 | 200 OK | 59 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/bootstrap.min.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (59058), with no line terminators Hash0f9ea8d6bb66dbed6e0966f9da35b7fd 8095a33f75ca53aa5409b8bf00ea30372755092d 306ab8dd287ef041231a510b7e4c027a11e28b20c3408a9185d895c091dc72a4
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/bootstrap.min.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:39 GMT
vary: Accept-Encoding
etag: W/"6471ae1b-e6b2"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800 | 142.250.74.106 | 200 OK | 25 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800 IP142.250.74.106:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash1a3f8ed669bfb23c7a7c50993f691d3c 00f509af3fc8fb6ad3d1b67e7068217829c2b2ba a2a539ffc2d9864af69560f5b77f29da9bd5aa8e9141e8ca2e9a0930bb8ca965
GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 30 May 2023 12:29:46 GMT
date: Tue, 30 May 2023 12:29:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/jquery.min.js | 47.87.142.222 | 200 OK | 88 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/jquery.min.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (65451) Hashf832e36068ab203a3f89b1795480d0d7 2115753ca5fb7032aec498db7bb5dca624dbe6be 4c24dfd28784ad2befb3dafaac6bf1ed4e7cd58cce713d9a0b228d426e812baf
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/jquery.min.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:42 GMT
vary: Accept-Encoding
etag: W/"6471ae1e-15850"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/jquery.CardValidator.js | 47.87.142.222 | 200 OK | 6.4 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/jquery.CardValidator.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (6584), with no line terminators Hash94109c4b72b3b549981f01aa349ecfb5 6dbbb7240782176f84dd152f1ff24a2016885f32 82f4e52bb661a7b18588554b4e05fdd89a9f94f4a4b0324b651a06fb3be7e5c5
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/jquery.CardValidator.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:40 GMT
vary: Accept-Encoding
etag: W/"6471ae1c-18df"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/css/helpers.css | 47.87.142.222 | 200 OK | 41 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/css/helpers.css IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (40872) Hash22b3a980c8bc77a2c4729d67969639ba 5d490a43a5f2d536ac229ef14b698566ef695b27 2a6536dfb04e99526ca10907b63b77bd89acf583d1e0a5351a64983b65a860ab
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/css/helpers.css HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: text/css
last-modified: Sat, 27 May 2023 07:15:24 GMT
vary: Accept-Encoding
etag: W/"6471ae0c-9fa9"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/css/fonts.css | 47.87.142.222 | 200 OK | 1.4 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/css/fonts.css IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (1392), with no line terminators Hash76d22431d1cc244efa31a561960637cb ced6af66a619548f1704b4313e997656312ce562 f07db09887b5b391db409a4d75df40d21088edb0c01aac4bb0e560e00ade610d
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/css/fonts.css HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: text/css
last-modified: Sat, 27 May 2023 07:15:23 GMT
vary: Accept-Encoding
etag: W/"6471ae0b-556"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/ | 47.87.142.222 | 200 OK | 24 kB |
URL User Request GET HTTP/2inseveregiont.duckdns.org/ IP47.87.142.222:443
CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET / HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/jquery.mask.js | 47.87.142.222 | 200 OK | 18 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/jquery.mask.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
Hash219d169a80568884a3d6baab3e5e7def 61d00104de8c972c820cd9b527d8e2edb30e5c4a cf1f0d954cbbbcb32d170b1ff68c5b082a1086f34f2bbee825ca88b7c9fb213a
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/jquery.mask.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:41 GMT
vary: Accept-Encoding
etag: W/"6471ae1d-47fe"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/fontawesome.js | 47.87.142.222 | 200 OK | 1.1 MB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/fontawesome.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
Size1.1 MB (1061194 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/fontawesome.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:41 GMT
vary: Accept-Encoding
etag: W/"6471ae1d-10314a"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/jquery.min.js | 47.87.142.222 | 200 OK | 88 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/jquery.min.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (65451) Hashf832e36068ab203a3f89b1795480d0d7 2115753ca5fb7032aec498db7bb5dca624dbe6be 4c24dfd28784ad2befb3dafaac6bf1ed4e7cd58cce713d9a0b228d426e812baf
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/jquery.min.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:46 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:42 GMT
vary: Accept-Encoding
etag: W/"6471ae1e-15850"
expires: Wed, 31 May 2023 00:29:46 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| inseveregiont.duckdns.org/style/js/style.js | 47.87.142.222 | 200 OK | 2.1 kB |
URL GET HTTP/2inseveregiont.duckdns.org/style/js/style.js IP47.87.142.222:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerLet's Encrypt Subjectinseveregiont.duckdns.org Fingerprint71:71:49:E0:3B:1D:55:67:83:24:97:18:AD:49:AF:91:54:E0:C3:98 ValiditySat, 27 May 2023 06:14:28 GMT - Fri, 25 Aug 2023 06:14:27 GMT
File typeASCII text, with very long lines (2282), with no line terminators Hash5ff06fa2a6b13a453894eab1a1866dd4 3f1f9af77cedd2747f52dba66c132fb1e7c3a458 becfbf71b2793122b2b7c56f7158a8c4018219b98c8cea0ca9c7240cfb71d6dc
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - DynDNS domain | openphish | Credit Agricole S.A. | |
GET /style/js/style.js HTTP/1.1
Host: inseveregiont.duckdns.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://inseveregiont.duckdns.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 30 May 2023 12:29:45 GMT
content-type: application/javascript
last-modified: Sat, 27 May 2023 07:15:44 GMT
vary: Accept-Encoding
etag: W/"6471ae20-859"
expires: Wed, 31 May 2023 00:29:45 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v35/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 | 216.58.207.227 | 200 OK | 50 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v35/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 IP216.58.207.227:443
Requested byhttps://inseveregiont.duckdns.org/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6 ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 50440, version 1.0\012- data Hash8d73136b592a1ac8169d957e49e381e8 9fef34759e0c807db6e6456b6eff648ba4692bf3 3642c7e774562f7483d7b0de93dd1759fc6928e85eebd7e62ddae72e9d46c9cb
GET /s/opensans/v35/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://inseveregiont.duckdns.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:35:18 GMT
expires: Wed, 22 May 2024 17:35:18 GMT
cache-control: public, max-age=31536000
age: 586468
last-modified: Tue, 02 May 2023 15:13:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|