Report - parisgroupsrealty.com/

Report Overview

Submitted URL
parisgroupsrealty.com/
IP
91.235.116.232
ASN
#51177 THC Projects SRL
Submitted
2023-05-26 21:25:50
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
leostop.com	513163	2014-05-22	2014-12-29	2023-05-26	432 B	645 B	172.67.196.212
parisgroupsrealty.com	unknown	2022-09-24	2022-09-24	2023-05-24	19 kB	4.2 MB	91.235.116.232
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2023-05-26	465 B	2.0 kB	104.17.24.14
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-26	2.3 kB	4.9 kB	142.250.74.131
netdna.bootstrapcdn.com	3413	2012-05-25	2012-09-07	2023-05-26	1.0 kB	68 kB	104.18.10.207
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-26	1.6 kB	26 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-26	976 B	26 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-26	medium	parisgroupsrealty.com/
2023-05-26	medium	parisgroupsrealty.com/js/owl.carousel.js
2023-05-26	medium	parisgroupsrealty.com/cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js
2023-05-26	medium	parisgroupsrealty.com/js/popper.min.js
2023-05-26	medium	parisgroupsrealty.com/js/jquery-3.0.0.min.js
2023-05-26	medium	parisgroupsrealty.com/js/jquery.min.js
2023-05-26	medium	parisgroupsrealty.com/js/bootstrap.bundle.min.js
2023-05-26	medium	parisgroupsrealty.com/js/plugin.js
2023-05-26	medium	parisgroupsrealty.com/js/custom.js
2023-05-26	medium	parisgroupsrealty.com/js/jquery.mCustomScrollbar.concat.min.js
2023-05-26	medium	parisgroupsrealty.com/js/owl.carousel.js
2023-05-26	medium	parisgroupsrealty.com/cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js
2023-05-26	medium	parisgroupsrealty.com/

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	parisgroupsrealty.com/	370 B	2023-03-14	2023-05-26
Pretty URL parisgroupsrealty.com/ IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 15:16:15 Last Seen2023-05-26 23:25:52 Times Seen2 Hash 6884841378f7951f6cab69c71c742b11 cbce1a054889fc5b2991ed71e3590599e1be69cb 5e8fb20f55132cd71b354e0dbed90c207bc37347c1c615718628fe419a3ec951 Loading...

	parisgroupsrealty.com/	216 B	2023-03-14	2023-05-26
Pretty URL parisgroupsrealty.com/ IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-14 15:16:15 Last Seen2023-05-26 23:25:52 Times Seen2 Hash 08c92125f45a6a2e844f414642519453 90f7bcdae1cab10f2f092d031cd11be0b3bf9fcf b367ffaa0c2976ba112d14a1e11e81d221924a296b272a942be6fc2f3f3d0020 Loading...

	parisgroupsrealty.com/js/popper.min.js	19 kB	2023-03-07	2024-04-21
Pretty URL parisgroupsrealty.com/js/popper.min.js IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:49 Last Seen2024-04-21 22:35:51 Times Seen202 Hash ccc533cf501d3f124323b95318c6bbb8 947b7849caa627e6f13941ce7d358fbe74cf3b68 6527e14ac1690f2e8b1fe033fe68d7673b27015a2affab7fe064aa39bb0f7d85 Loading...

	parisgroupsrealty.com/js/bootstrap.bundle.min.js	71 kB	2023-03-07	2024-04-24
Pretty URL parisgroupsrealty.com/js/bootstrap.bundle.min.js IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:38 Last Seen2024-04-24 23:51:07 Times Seen370 Hash 62e633210885066c625c46081cc2b339 8709e629eeefeb122c09d1d5f902854845a0b496 efcad26419c1257989e551ae58bf2692e9ef872f7883df51c39ddbb2c8c74949 Loading...

	parisgroupsrealty.com/js/custom.js	9.9 kB	2023-03-14	2023-05-26
Pretty URL parisgroupsrealty.com/js/custom.js IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 15:16:15 Last Seen2023-05-26 23:25:52 Times Seen3 Hash 4064a32b82af1a9a28db1fecee172ae1 619536c59e2acf4055961764d0bf9c90ab7a8f4c 9c1897d76ba2b930ad3b6836ca2e7990c40c88549e86111408804c3243c6e012 Loading...

	parisgroupsrealty.com/js/jquery.mCustomScrollbar.concat.min.js	46 kB	2023-03-07	2024-04-24
Pretty URL parisgroupsrealty.com/js/jquery.mCustomScrollbar.concat.min.js IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:34 Last Seen2024-04-24 03:32:53 Times Seen2265 Hash 42a368e95b4a38989c8984c672d29ec0 70b2b29b138b9ddcdcbb58bd5d825f780eadcdfa fd8027b53a97cbd5782e85c5908e563c39776703ff9279f50658e630927b4167 Loading...

	parisgroupsrealty.com/js/jquery.min.js	87 kB	2023-03-07	2024-04-21
Pretty URL parisgroupsrealty.com/js/jquery.min.js IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:49 Last Seen2024-04-21 22:35:51 Times Seen273 Hash cbde2a48700724f03cee8c63d5911fbb c867c50e43b7f62a4238b84e9f7fd2fffc0c6da5 c90c190b73facc126891f2f132ec481e9d65f0eb550e34610e244adfaec23492 Loading...

	parisgroupsrealty.com/js/jquery-3.0.0.min.js	11 kB	2023-03-07	2024-04-21
Pretty URL parisgroupsrealty.com/js/jquery-3.0.0.min.js IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:49 Last Seen2024-04-21 22:35:51 Times Seen253 Hash 68c83ed206a2b972d61a89dfb6d250d0 1d310c0931fd748d904facfead4deaf7ad5739d1 263eb1915970b23889768338a7e7c82a23908b944100e50443183905636de4ff Loading...

	parisgroupsrealty.com/js/plugin.js	919 kB	2023-03-07	2024-04-21
Pretty URL parisgroupsrealty.com/js/plugin.js IP 91.235.116.232 ASN #51177 THC Projects SRL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:49 Last Seen2024-04-21 22:35:51 Times Seen45 Hash 1627446b73ab91f2df237b4fb989a9cf 392dca8a67c0804b18b90ee6171e9ef015f8e5da 0a403468ff0fb786bebdddc7625da883b09f9f8e83ba5475ad3ea729241447eb Loading...

HTTP Transactions (58)

URL IP Response Size

parisgroupsrealty.com/

91.235.116.232

200 OK

2.6 kB

URL User Request GET HTTP/2
parisgroupsrealty.com/
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size
2.6 kB (2561 bytes)
Hash
a2bdd00e474bb256591b8ae4fe79b781
4de1429cf5ab83d4e20e2e4af9c7652d9cbb245a
6bd9e4bbb4e308d0e5092740f232a7f9a7a0628478af1dc4a1d56d91a1b308ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 25 Mar 2020 15:36:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2561
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.css

104.17.24.14

200 OK

955 B

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT

File type
ASCII text, with very long lines (3885), with no line terminators
Size
955 B (955 bytes)
Hash
d7b336b9735d553126c374715bd6dd41
bae79ef61b23b0a9e20ebad9a701de5bfa9f6fd1
6a5ed4bb4bb22800c5f3d7057a35cbdd8bb49686d8df119a8452122aa7b40b80

HTTP Headers

GET /ajax/libs/fancybox/2.1.5/jquery.fancybox.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 21:25:31 GMT
content-type: text/css; charset=utf-8
content-length: 955
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e58-f2d"
last-modified: Mon, 04 May 2020 16:10:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 756678
expires: Wed, 15 May 2024 21:25:31 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bpdrtIU7Fa7hBS%2BbfuBRXMyOMU3AAJEhu0KjfVo3rVMij9ONJfCt38N1u13QT9pJWKHox%2BEMBLb5WmxI8An8tMUp%2FCTQWo5iL5GSmqyUEM2N4Ob8DzCx6OO3dAE6nkVGuf%2F3XAkg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd91758cc20b509-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

parisgroupsrealty.com/css/owl.theme.default.min.css

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/css/owl.theme.default.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

HTTP Headers

GET /css/owl.theme.default.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/style.css

91.235.116.232

200 OK

3.0 kB

URL GET HTTP/3
parisgroupsrealty.com/css/style.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with CRLF line terminators
Size
3.0 kB (2952 bytes)
Hash
e0c0eef399905f04a249f206524fbd09
0eb9d18c91d09b6972cad08f89244a6ea3629121
07cf1f1cb51499ab8cb7aeb4e288caba1b60db66260027e30e77a37cb6a4314b

HTTP Headers

GET /css/style.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Fri, 27 Mar 2020 15:23:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2952
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/js/owl.carousel.js

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/js/owl.carousel.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/owl.carousel.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/responsive.css

91.235.116.232

200 OK

1.3 kB

URL GET HTTP/3
parisgroupsrealty.com/css/responsive.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1319 bytes)
Hash
45505b1a3f85354a675ab35b7e17913d
735966370476e27af232dd400e5259b4d5a8af01
1e114532b3365e025b98d9d10b0c64a382c3c1010419504d19135c74036945f6

HTTP Headers

GET /css/responsive.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 25 Mar 2020 15:37:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1319
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/owl.carousel.min.css

91.235.116.232

200 OK

890 B

URL GET HTTP/3
parisgroupsrealty.com/css/owl.carousel.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (3081)
Size
890 B (890 bytes)
Hash
351b4e5f569a83790bed10824208390d
c20bb4cbb04f19dd2ffc4e8734b96fe06cdc9b48
813f1398bf1531b20c365414d810e75f2ae867a70391794ca28eb57e18117c66

HTTP Headers

GET /css/owl.carousel.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 890
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/jquery.mCustomScrollbar.min.css

91.235.116.232

200 OK

3.8 kB

URL GET HTTP/3
parisgroupsrealty.com/css/jquery.mCustomScrollbar.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (42839), with no line terminators
Size
3.8 kB (3806 bytes)
Hash
f59e3f4c0087b4d8ddc27bdd9c9ab92b
fac9b521062feb5250c04d62128a8c3ddb312632
247184981eb6f698a94e431a83d68c6b0df623cce57b6e29dc5a6c11e23aa195

HTTP Headers

GET /css/jquery.mCustomScrollbar.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3806
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/bootstrap.min.css

91.235.116.232

200 OK

19 kB

URL GET HTTP/3
parisgroupsrealty.com/css/bootstrap.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (65324)
Size
19 kB (19043 bytes)
Hash
fee68c0f2f583161134a1fcb5950501d
8e52dd818562db0ba0764bba172cb91ce248d8b0
34959e43e6ecf368807a84f92ad9aa6e2dcd5f0c5c1e57da55e8f3248d9d9255

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19043
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"

parisgroupsrealty.com/js/popper.min.js

91.235.116.232

200 OK

6.6 kB

URL GET HTTP/3
parisgroupsrealty.com/js/popper.min.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (19013)
Size
6.6 kB (6646 bytes)
Hash
ccc533cf501d3f124323b95318c6bbb8
947b7849caa627e6f13941ce7d358fbe74cf3b68
6527e14ac1690f2e8b1fe033fe68d7673b27015a2affab7fe064aa39bb0f7d85

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/popper.min.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: application/javascript
last-modified: Wed, 10 Jul 2019 19:24:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6646
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/js/jquery-3.0.0.min.js

91.235.116.232

200 OK

3.3 kB

URL GET HTTP/3
parisgroupsrealty.com/js/jquery-3.0.0.min.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text
Size
3.3 kB (3288 bytes)
Hash
68c83ed206a2b972d61a89dfb6d250d0
1d310c0931fd748d904facfead4deaf7ad5739d1
263eb1915970b23889768338a7e7c82a23908b944100e50443183905636de4ff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery-3.0.0.min.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: application/javascript
last-modified: Wed, 10 Jul 2019 19:24:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3288
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/js/jquery.min.js

91.235.116.232

200 OK

30 kB

URL GET HTTP/3
parisgroupsrealty.com/js/jquery.min.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (65290)
Size
30 kB (29687 bytes)
Hash
cbde2a48700724f03cee8c63d5911fbb
c867c50e43b7f62a4238b84e9f7fd2fffc0c6da5
c90c190b73facc126891f2f132ec481e9d65f0eb550e34610e244adfaec23492

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.min.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: application/javascript
last-modified: Wed, 10 Jul 2019 19:24:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29687
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/js/bootstrap.bundle.min.js

91.235.116.232

200 OK

20 kB

URL GET HTTP/3
parisgroupsrealty.com/js/bootstrap.bundle.min.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (65297)
Size
20 kB (19842 bytes)
Hash
62e633210885066c625c46081cc2b339
8709e629eeefeb122c09d1d5f902854845a0b496
efcad26419c1257989e551ae58bf2692e9ef872f7883df51c39ddbb2c8c74949

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bootstrap.bundle.min.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: application/javascript
last-modified: Wed, 10 Jul 2019 19:24:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 19842
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/images/toogle-icon.png

91.235.116.232

200 OK

1.1 kB

URL GET HTTP/3
parisgroupsrealty.com/images/toogle-icon.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 39 x 27, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1111 bytes)
Hash
cdfa95205131aed24955be36823607d2
60c3a6c93716385671db21421823bc4878983e57
04a55b63b96fef95dc693377c3eee28ac698c42bebc920968331857180a6cd1a

HTTP Headers

GET /images/toogle-icon.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 15:50:10 GMT
accept-ranges: bytes
content-length: 1111
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/css/font-awesome.min.css

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/css/css/font-awesome.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

HTTP Headers

GET /css/css/font-awesome.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/icomoon.css

91.235.116.232

200 OK

4.0 kB

URL GET HTTP/3
parisgroupsrealty.com/css/icomoon.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text
Size
4.0 kB (3964 bytes)
Hash
e841f7cdec90ebf92272192c8e8bc027
adb98f477baaa9e703034dbb04e374f65800124a
c009b6d8414d258f737d128b4519be3f3a13fcd81b7b3682753ff06de3b54d13

HTTP Headers

GET /css/icomoon.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3964
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/normalize.css

91.235.116.232

200 OK

1.9 kB

URL GET HTTP/3
parisgroupsrealty.com/css/normalize.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text
Size
1.9 kB (1891 bytes)
Hash
8d9d541cc4c37ce152038f142628e199
b2e67ca61fc06e08530de1a70c476c72000fa297
1b9540dbd7121fe2712bcf8c78054bdfa4215254efec58a9724e5d9d55e9517c

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1891
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/animate.min.css

91.235.116.232

200 OK

3.4 kB

URL GET HTTP/3
parisgroupsrealty.com/css/animate.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (53660)
Size
3.4 kB (3388 bytes)
Hash
a332e9019e2a787d926d9fa1abaeb9d4
0b841113e864a4f89e12387d816546cf5bdc86fe
86abaffb470415e30702185491101c1f3767a73b2283305428d2450e358442ac

HTTP Headers

GET /css/animate.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3388
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/images/toogle-icon1.png

91.235.116.232

200 OK

1.1 kB

URL GET HTTP/3
parisgroupsrealty.com/images/toogle-icon1.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 39 x 27, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1076 bytes)
Hash
fce041f99c3ffece2b2b4dd8753d0f50
0c215fa0ca622ad26ed966c6962b3d18ee8f4e85
3d114b5a1877a5a0e0b10e087d4173736d01a858d39792e6b1c0ce75fe744bb6

HTTP Headers

GET /images/toogle-icon1.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 20:52:46 GMT
accept-ranges: bytes
content-length: 1076
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/swiper.min.css

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/css/swiper.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

HTTP Headers

GET /css/swiper.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/meanmenu.css

91.235.116.232

200 OK

786 B

URL GET HTTP/3
parisgroupsrealty.com/css/meanmenu.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with CRLF line terminators
Size
786 B (786 bytes)
Hash
00294f3d8a54d4083e10a75b1fa5b5f1
7ebb52584dddecfc0ce9cd48b9c01ba9d883540a
a599cf444dcb981d4291e0cc1f89575117c6569e78ec8eb3452c63d35b2affef

HTTP Headers

GET /css/meanmenu.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Sat, 13 Jul 2019 16:18:38 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 786
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/jquery.fancybox.min.css

91.235.116.232

200 OK

3.2 kB

URL GET HTTP/3
parisgroupsrealty.com/css/jquery.fancybox.min.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (14143), with no line terminators
Size
3.2 kB (3210 bytes)
Hash
ba919c6d4aced8bb72840a2618f397a3
b6148ec09012fa119d02e0fc64d8e91ec272cd30
71655a3a80f0ede6a9011e1ab7d584473c29026c09f500cbe9bef99da96c70fe

HTTP Headers

GET /css/jquery.fancybox.min.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3210
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/images/logo.png

91.235.116.232

200 OK

5.2 kB

URL GET HTTP/3
parisgroupsrealty.com/images/logo.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 171 x 43, 8-bit/color RGBA, non-interlaced\012- data
Size
5.2 kB (5171 bytes)
Hash
1ee31816b77c997e5832cf249e8581c3
032a60ae45139bd347d0a00417a746e5ca494dc5
09d9df9b8bd1852acc5eb543fdb498dbbb2a57a5085371d19c6049d06be1331c

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 15:48:44 GMT
accept-ranges: bytes
content-length: 5171
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/slick.css

91.235.116.232

200 OK

470 B

URL GET HTTP/3
parisgroupsrealty.com/css/slick.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text
Size
470 B (470 bytes)
Hash
f46bd015743c36e5514de87e0c1b40e5
11d17a03235ff610f893d04c5c6a30c7b1b401d3
00f74ce6434ed37ab229be8039bcdf6495a2fa58cc1e4ee65c5e623ec6b7af17

HTTP Headers

GET /css/slick.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 470
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/jquery-ui.css

91.235.116.232

200 OK

7.8 kB

URL GET HTTP/3
parisgroupsrealty.com/css/jquery-ui.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (2363)
Size
7.8 kB (7835 bytes)
Hash
c4a88ec0cb998929a670c0c58d7dc526
03135a88e8dbc36020dd453d1e7407ce9a3a2cc2
44f8a56d427917b5fa0dd7933ba545679be5e6b3b93099e64a4e29c2159f57c0

HTTP Headers

GET /css/jquery-ui.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7835
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/css/nice-select.css

91.235.116.232

200 OK

870 B

URL GET HTTP/3
parisgroupsrealty.com/css/nice-select.css
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text
Size
870 B (870 bytes)
Hash
7641aec4b8c405f570860925f7f64580
84460de5f6746a823d71cd2df0328ffa21f8431a
685f9eca266a49de2eaa2f052eee413ecef3ec2bca80b6d7e04c70dc02d0906a

HTTP Headers

GET /css/nice-select.css HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: text/css
last-modified: Wed, 10 Jul 2019 19:24:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 870
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 21:25:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 21:25:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

parisgroupsrealty.com/js/plugin.js

91.235.116.232

200 OK

223 kB

URL GET HTTP/3
parisgroupsrealty.com/js/plugin.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (32000), with CRLF line terminators
Size
223 kB (222756 bytes)
Hash
1627446b73ab91f2df237b4fb989a9cf
392dca8a67c0804b18b90ee6171e9ef015f8e5da
0a403468ff0fb786bebdddc7625da883b09f9f8e83ba5475ad3ea729241447eb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/plugin.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: application/javascript
last-modified: Wed, 10 Jul 2019 19:24:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 222756
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/js/custom.js

91.235.116.232

200 OK

2.2 kB

URL GET HTTP/3
parisgroupsrealty.com/js/custom.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with CRLF line terminators
Size
2.2 kB (2214 bytes)
Hash
4064a32b82af1a9a28db1fecee172ae1
619536c59e2acf4055961764d0bf9c90ab7a8f4c
9c1897d76ba2b930ad3b6836ca2e7990c40c88549e86111408804c3243c6e012

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/custom.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: application/javascript
last-modified: Fri, 03 Apr 2020 22:26:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2214
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/js/jquery.mCustomScrollbar.concat.min.js

91.235.116.232

200 OK

12 kB

URL GET HTTP/3
parisgroupsrealty.com/js/jquery.mCustomScrollbar.concat.min.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
ASCII text, with very long lines (32001)
Size
12 kB (12358 bytes)
Hash
42a368e95b4a38989c8984c672d29ec0
70b2b29b138b9ddcdcbb58bd5d825f780eadcdfa
fd8027b53a97cbd5782e85c5908e563c39776703ff9279f50658e630927b4167

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.mCustomScrollbar.concat.min.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: application/javascript
last-modified: Wed, 10 Jul 2019 19:24:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12358
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/images/banner-img.png

91.235.116.232

200 OK

80 kB

URL GET HTTP/3
parisgroupsrealty.com/images/banner-img.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 521 x 457, 8-bit/color RGBA, non-interlaced\012- data
Size
80 kB (80022 bytes)
Hash
98d3796616f6920241f6753eac0d4ee3
77e3a3e930bb0aa43816d642366aff41af08705d
0228d5b55e1fe5d1af4327b87ca8b8c5a1e79c26344762dde089552776c06c03

HTTP Headers

GET /images/banner-img.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 15:56:46 GMT
accept-ranges: bytes
content-length: 80022
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 21:25:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

parisgroupsrealty.com/images/play-icon.png

91.235.116.232

200 OK

2.1 kB

URL GET HTTP/3
parisgroupsrealty.com/images/play-icon.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 77 x 77, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2084 bytes)
Hash
ff3eff455bef2293ce17ef6c3606ec25
3dbea8ef38abcc2444f7882c1b433456438ea261
2d6981113149bd7223937923c794d7dd04cfd1a7fe7a341a96724985db7b0761

HTTP Headers

GET /images/play-icon.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 17:23:46 GMT
accept-ranges: bytes
content-length: 2084
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/images/img-2.png

91.235.116.232

200 OK

478 kB

URL GET HTTP/3
parisgroupsrealty.com/images/img-2.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 548 x 548, 8-bit/color RGBA, non-interlaced\012- data
Size
478 kB (477914 bytes)
Hash
f2a8f7c2ac963ce9fe7d7506555e08fe
b6349d48169e2e45ee5b90de8cd24fa5cc36402f
0744dbd9b4871101b4e89e86b80301e9d9a8bd83ce5a2ba8bba4a4ace59d1e58

HTTP Headers

GET /images/img-2.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 16:34:00 GMT
accept-ranges: bytes
content-length: 477914
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

parisgroupsrealty.com/images/img-1.png

91.235.116.232

200 OK

212 kB

URL GET HTTP/3
parisgroupsrealty.com/images/img-1.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 709 x 448, 8-bit/color RGBA, non-interlaced\012- data
Size
212 kB (211545 bytes)
Hash
9ab2b3304b1c55ca96b5ff7d6b074d2c
e0e08eb222a03cb271828d5d8e69e5827dd140b4
4be2747e90ac602662378ff3dee0ca50b0036cef2c191f32af8df36a5e82a1f5

HTTP Headers

GET /images/img-1.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 16:33:26 GMT
accept-ranges: bytes
content-length: 211545
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 21:25:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

parisgroupsrealty.com/images/map-bg.png

91.235.116.232

200 OK

44 kB

URL GET HTTP/3
parisgroupsrealty.com/images/map-bg.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 340 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
44 kB (44421 bytes)
Hash
cbff1c02d76a9c6bcf0360c99e7aa3a8
1172fb8d5fa7733c768573f4777756b04c0f85a9
849372927cbf7c34b452bff37ed9d0493d543f2488778a8353422077511b37e1

HTTP Headers

GET /images/map-bg.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 19:54:36 GMT
accept-ranges: bytes
content-length: 44421
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

netdna.bootstrapcdn.com/font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3

104.18.10.207

200 OK

44 kB

URL GET HTTP/3
netdna.bootstrapcdn.com/font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Size
44 kB (44432 bytes)
Hash
3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849

HTTP Headers

GET /font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://parisgroupsrealty.com
DNT: 1
Connection: keep-alive
Referer: https://netdna.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 May 2023 21:25:32 GMT
content-type: font/woff
content-length: 44432
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "3293616ec0c605c7c2db25829a0a509e"
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 01/04/2023 08:53:03
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1076
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 81a6bb72cc181b912d85295f9be79654
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7cd9175c59c90afa-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://parisgroupsrealty.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:36 GMT
expires: Thu, 23 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
age: 248936
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 21:25:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 21:25:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

parisgroupsrealty.com/images/news-bg.png

91.235.116.232

200 OK

60 kB

URL GET HTTP/3
parisgroupsrealty.com/images/news-bg.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 1920 x 1176, 8-bit/color RGB, non-interlaced\012- data
Size
60 kB (60284 bytes)
Hash
d1720c64b2c3fc390c0f5bfcc95c0001
e4adc3bd0553d512e71a00cc4be2d1f14950177e
bd716ff562dadf5f9562c0c31ffc725176c2a20b526e0fb66d8a5c8ff9c17d64

HTTP Headers

GET /images/news-bg.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:32 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 17:40:56 GMT
accept-ranges: bytes
content-length: 60284
date: Fri, 26 May 2023 21:25:32 GMT
server: LiteSpeed

parisgroupsrealty.com/js/owl.carousel.js

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/js/owl.carousel.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/owl.carousel.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:32 GMT
server: LiteSpeed

parisgroupsrealty.com/images/news-img.png

91.235.116.232

200 OK

816 kB

URL GET HTTP/3
parisgroupsrealty.com/images/news-img.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 939 x 531, 8-bit/color RGBA, non-interlaced\012- data
Size
816 kB (816273 bytes)
Hash
7a361d72eb7f9b56c0e05068368910de
ac712340773ab564fb44fe3ec2a60e689a08f0a0
994a88db7da4652b82ff1069a1296a6f39630622f43ce4d775548361894b1754

HTTP Headers

GET /images/news-img.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:31 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 17:42:14 GMT
accept-ranges: bytes
content-length: 816273
date: Fri, 26 May 2023 21:25:31 GMT
server: LiteSpeed

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://parisgroupsrealty.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 18:05:59 GMT
expires: Sun, 19 May 2024 18:05:59 GMT
cache-control: public, max-age=31536000
age: 530373
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

216.58.207.227

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://parisgroupsrealty.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:42 GMT
expires: Thu, 23 May 2024 00:16:42 GMT
cache-control: public, max-age=31536000
age: 248930
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

parisgroupsrealty.com/images/banner-bg.png

91.235.116.232

200 OK

654 kB

URL GET HTTP/3
parisgroupsrealty.com/images/banner-bg.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 1920 x 899, 8-bit/color RGB, non-interlaced\012- data
Size
654 kB (654122 bytes)
Hash
44464ee51c8322330308c8404e0ad48c
6002a3db59e39876b89795dfa5b42be1f23bac70
fce26bee54688b0cbdf8b938b6e8173aa8d7f0c9b80602275f285824b1718975

HTTP Headers

GET /images/banner-bg.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:32 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 16:01:34 GMT
accept-ranges: bytes
content-length: 654122
date: Fri, 26 May 2023 21:25:32 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 21:25:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

parisgroupsrealty.com/cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /cdnjs.cloudflare.com/ajax/libs/fancybox/2.1.5/jquery.fancybox.min.js HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:32 GMT
server: LiteSpeed

parisgroupsrealty.com/images/doctor-bg.png

91.235.116.232

200 OK

1.5 MB

URL GET HTTP/3
parisgroupsrealty.com/images/doctor-bg.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
PNG image data, 1920 x 786, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 MB (1476113 bytes)
Hash
bef3357fdfbf0f89f6f1f705faf709d9
50b319e8094b3e2704243770dffc745d9db221fc
e4191d33faf66ed5ea346103a13b48a73c3a61ed89eb98efbdc6f842ad0c64c6

HTTP Headers

GET /images/doctor-bg.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Jun 2023 21:25:32 GMT
content-type: image/png
last-modified: Tue, 24 Mar 2020 16:57:34 GMT
accept-ranges: bytes
content-length: 1476113
date: Fri, 26 May 2023 21:25:32 GMT
server: LiteSpeed

parisgroupsrealty.com/

91.235.116.232

200 OK

2.6 kB

URL User Request GET HTTP/2
parisgroupsrealty.com/
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (335), with CRLF line terminators
Size
2.6 kB (2561 bytes)
Hash
a2bdd00e474bb256591b8ae4fe79b781
4de1429cf5ab83d4e20e2e4af9c7652d9cbb245a
6bd9e4bbb4e308d0e5092740f232a7f9a7a0628478af1dc4a1d56d91a1b308ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html
last-modified: Wed, 25 Mar 2020 15:36:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2561
date: Fri, 26 May 2023 21:25:32 GMT
server: LiteSpeed

parisgroupsrealty.com/images/fevicon.png

91.235.116.232

404 Not Found

1.2 kB

URL GET HTTP/3
parisgroupsrealty.com/images/fevicon.png
IP
91.235.116.232:443
ASN
#51177 THC Projects SRL

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subject*.parisgroupsrealty.com
FingerprintED:EF:12:23:17:B0:95:47:6D:9B:EE:0F:20:E0:51:FE:5E:99:ED:C9
ValidityTue, 23 May 2023 08:15:14 GMT - Mon, 21 Aug 2023 08:15:13 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.2 kB (1238 bytes)
Hash
0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

HTTP Headers

GET /images/fevicon.png HTTP/1.1
Host: parisgroupsrealty.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 26 May 2023 21:25:32 GMT
server: LiteSpeed

fonts.googleapis.com/css?family=Rajdhani:300,400,500,600,700

142.250.74.106

200 OK

5.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Rajdhani:300,400,500,600,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (5438), with no line terminators
Size
5.3 kB (5318 bytes)
Hash
85342cb4390831cf8100195696273306
c52145166674f079af27dd19bbcf5c14f5c07848
42bb17bd257dbe89cd3651ac924450124cfcc197b7658f38d6a14120e048dd53

HTTP Headers

GET /css?family=Rajdhani:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 21:25:31 GMT
date: Fri, 26 May 2023 21:25:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css

104.18.10.207

200 OK

22 kB

URL GET HTTP/2
netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (305)
Size
22 kB (21658 bytes)
Hash
1f9e9d1a5a1d347d945ef4b7727f2ea0
2a8eccf4ac288eb99979b62dcc1cc1036d8ff8fa
3083e8d3b21ddc3f0e6d65ec3580aa6edfaadca5d9737d9caa27e6a233e1ccf3

HTTP Headers

GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 21:25:31 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-08-03 04:14:00
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6358afe6e12aefed963ad27f3935d6d1
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 30583017
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7cd91758cc9fb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

leostop.com/tracking/tracking.js?_=1685136331925

172.67.196.212

302 Found

0 B

URL GET HTTP/2
leostop.com/tracking/tracking.js?_=1685136331925
IP
172.67.196.212:443
ASN
#13335 CLOUDFLARENET

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerLet's Encrypt
Subjectleostop.com
FingerprintC5:69:9F:74:D0:97:98:37:39:A0:E6:9D:D2:4E:0F:DC:DB:A5:F2:8E
ValidityWed, 03 May 2023 11:57:49 GMT - Tue, 01 Aug 2023 11:57:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tracking/tracking.js?_=1685136331925 HTTP/1.1
Host: leostop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 26 May 2023 21:25:33 GMT
content-type: text/html; charset=iso-8859-1
location: http://leostop.com/cgi-sys/suspendedpage.cgi?_=1685136331925
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QTg%2By8KUxvO%2FAbDXYc2dgUWWxz5%2BHOIbA32yCQnmpukfTf7SzzvS67Hf6mQE5aSsD0MMLdaoDR0NNDTdOTMcfCs7pL4vobfZgkxz0onR6BCaZ9Me942ABIdGpCopgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd9175f3abbb52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i

142.250.74.106

200 OK

19 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://parisgroupsrealty.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text
Size
19 kB (19031 bytes)
Hash
bbb091ff9861ef6bf6058e42630ca42e
e0ea2d297d84a43ced9b7e162d5ae1db28fc3432
3726f6f71175b54abf48e8863b8634461bcbf34831f7c1b0a1d11e2604782b3a

HTTP Headers

GET /css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://parisgroupsrealty.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 21:25:31 GMT
date: Fri, 26 May 2023 21:25:31 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML