Report - www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/

Report Overview

Visited public
2023-11-18 17:21:26
Tags
fake_software scam
URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Finishing URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#
IP / ASN
199.79.54.235
#46309 TONAQUINT-DC
Title
Security Center Error #0x268d3
Scam - Fake AntiVirus / Security software

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-11-18 18:16:41	565 B	2.0 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-11-18 18:13:46	2.7 kB	43 kB	216.58.207.227
www.teszoom.com	unknown	2018-04-21	2018-12-27 15:25:29	2023-11-10 01:16:14	32 kB	1.4 MB	199.79.54.235

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-11-09	medium	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/	Office365
2023-11-09	medium	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/	Office365

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (35)

	URL	From	Size	First Seen	Last Seen
	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	155 B	2023-03-08	2024-08-21
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 14:45 Last Seen2024-08-21 03:40 Times Seen4 Hash 0517fdb352b6c7f38e58b3619f7e79ad 29c61615970285bcf583437b191383373635c4d6 01fe44ec707c8de447385daaefbae1bf04507e0a669859da4da1436e01104fa3 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	107 B	2023-10-24	2024-08-21
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-24 03:44 Last Seen2024-08-21 03:40 Times Seen4 Hash 9507bad6f3a95524a0ce8da412d3a846 cc4e02723c30daea7bdc8962744f8205bc145ccb c7e875e3180e862ef57010b850388b8b9bf74f59ffdb43e4f7544cbb69fcbad7 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	192 B	2023-03-07	2024-08-21
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:11 Last Seen2024-08-21 03:40 Times Seen5 Hash 3de9d1f546b5c7fd0a19cfc7fe8033ae cf78f46c3f43047f501aed842130c69d370c964b f5ef311e171f91869a67a026fdcc91b4dd736df5253dabbcc2257ed8a390d269 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	432 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10 Last Seen2024-12-29 14:07 Times Seen39 Hash 74945b21cb4207decaa207425ddcfeca 3d34dc5647d9dd82cf1d99709ff2057ef8c5eb20 ab08f6dd475aea8e0b6622062df53ff1d38e2adb46b65dc5d5faf6abecffcd7d Loading...

	unknown	EventHandler	19 B	2023-04-10	2025-05-10
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:23 Last Seen2025-05-10 22:27 Times Seen7895 Hash 57381d43f260aa3b8c47820ca38655a3 8d087b53d91f8e3ff0def7d1d94a6dada72fac79 35b90e4b54b87ed6cd2b439eac195f9eb59e731e17248c95fb1e26e15d61f943 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	362 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen78 Hash 7be7944afb861aecd3aa7708dd670bf5 87e594c16e969cf47895f08299aea479f7816ac7 970b5b28305342edec2da42b3c65afc56020fc362ff245434480a6a42356d0ca Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	86 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen32 Hash b81019068d882691b8e4e899866da70d 975c3d1866f85ece2034acefd428c7f3740b7101 15fb07608df0dbdb4660992fca25d148083fdef08421815e07c1bda4938c54f5 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	70 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen56 Hash dc6ce8281e316b4ea11171ba8963bde2 98f82b51ed09685bd7e15c2af1dd66c19bc1f320 631fe7baedbb82e2ec9814307e07085e169bc5195b8fe6249f1f6aa1cabdae64 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	315 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:58 Last Seen2024-12-29 14:07 Times Seen14 Hash 04612d3c57024532f87b506827195adb 02f7c56c5a7470816ac4d0019c39d92c4d0b26c2 5caf9cf54906f81853702f0267cffcd0dc7cf9a50cbe6bbe2e59403373fd1c49 Loading...

	www.teszoom.com/~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1	ScriptElement	113 kB	2023-10-24	2023-11-25
Pretty URL www.teszoom.com/~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-24 03:44 Last Seen2023-11-25 03:23 Times Seen4 Hash 7576e3798ab3d84ac873ef26b6c8df45 baa1ab0854f5c36fde06fd376b130091dd02a89f 8a046df912f12fc1dada07e11a92263c3a04b7bcfe95cb2c9df13241f0ac29a5 Loading...

	www.teszoom.com/~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/js/bootstrap.min.js	ScriptElement	60 kB	2023-03-07	2025-05-11
Pretty URL www.teszoom.com/~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/js/bootstrap.min.js IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-11 16:30 Times Seen6126 Hash 02d223393e00c273efdcb1ade8f4f8b1 0cc93b8421d89c24a889642428b363cb831de78a 79c599dd760cec0c1621a1af49d9a2a49da5d45e1b37d4575bace0a5e0226582 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	2 B	2023-03-07	2025-05-11
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-05-11 18:33 Times Seen21748 Hash e1c06d85ae7b8b032bef47e42e4c08f9 71853c6197a6a7f222db0f1978c7cb232b87c5ee 75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb713507_v.js	ScriptElement	3.0 kB	2023-03-07	2025-05-10
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb713507_v.js IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-10 15:43 Times Seen29 Hash fb77c18ce4a2daea27db77e057c4fa64 48038fb59dc2944eb487378e37963afda228b3bd b0a79f2bd09a605d906f23c84884ecaf4cf9fee5f0286040e9a0f889d6790ca0 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	29 B	2023-03-07	2025-05-10
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14 Last Seen2025-05-10 22:11 Times Seen438 Hash b1cb68711eabf10521a5607b934cc2d4 fb5622af852db2dbb77450007d03974ca5425938 191f23c8b39228dd6066811d0f4d97adc6cbf38bb7a4bc25f398e6d0bb0f8286 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	30 B	2023-03-07	2025-04-28
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:14 Last Seen2025-04-28 10:31 Times Seen243 Hash 9734c5652d82a524c3fbd3938eaf214d 982c19a953702dd048da577d87f9480da89e36ba b37c7da95920676d3cd924e9069ea23c910f3ef4fabc316f666ba38eae24c86f Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	35 kB	2023-10-24	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-24 03:44 Last Seen2024-12-29 14:07 Times Seen23 Hash b6ff4891feba60f0850ac1529f3d181c bb41a13e25b2cd0dfafabf86ad5dae6ee31e1f60 b99cbf3d5ef7cd7887ef5f822626a7706e48b614fd02863f524b598e47460bbe Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	7.4 kB	2023-06-15	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-15 04:40 Last Seen2024-12-29 14:07 Times Seen23 Hash 44a9e97ef0d21426cfbb24e1f6b661f7 ef7653628b760dd337fd9c6533c7b907cf6d7513 c672636ed58c112220b955c7d72ccf75713955750c67315bd57cb03d64605ee3 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	123 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen39 Hash 173c20209d2fe0c7b27d723e5f8e54c6 0156ae5c0baa1acc08034821ac46b83b3d6d61ba 045284c4ab4f8d55ac29b038f4808c64e8a47898dc1e756060c24c98256843a2 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 20:58 Times Seen342004 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.teszoom.com/~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js	ScriptElement	84 kB	2023-03-07	2025-05-11
Pretty URL www.teszoom.com/~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14 Last Seen2025-05-11 14:34 Times Seen6776 Hash 7f9fb969ce353c5d77707836391eb28d 62c4042e9ebc691a5372d653b424512a561d1670 2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	250 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen39 Hash dd2d9b07ca72e08a791ae29b7059ce0a 14b3166afa38ec4124562a4904ca408f9ed405c1 8196e0cfff14a97502e7c9923a1425a92970dbf843f919acc680a7039d59e049 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	126 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10 Last Seen2024-12-29 14:07 Times Seen39 Hash db2cd67c76f1c2e850e6fdc830955771 b847d03e99fc8e6e238285a085d500611b3b29c7 9eedf94296072cd4bd839b1695f3a40e33c9b32007c7df05aa41ee3ab3970fc3 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	3.5 kB	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10 Last Seen2024-12-29 14:07 Times Seen39 Hash b58189abe42ca953723acb69277b5cfd c9bede4525f5ce148e1cdcdf140954c5907de9fb 33b6ee5b663a236b0bb06bfb97813c9f8784345b82723a028eaa4f2b94527820 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	19 kB	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:10 Last Seen2024-12-29 14:07 Times Seen39 Hash d983bc2a18d62ae1dd61f10954150b22 9226594bb9924b48e2ffdd817d62df8fac805288 5b933a1b986b8973233dba96e1275968b49da0eefc9c47297b8284c0023bd1ea Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	81 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen79 Hash ea30926c246b181671bebe13ef02a3a5 a983c85a2b6e99fa47aa4b86e0abbd69751bc754 69a0522c4f114a051bbdeda40f0d494e730eb4908bc7a8ea4894d8f273301746 Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 20:58 Times Seen341202 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	133 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen78 Hash cebcc1baee73bd4fd0e2c99e6f8ea251 cd1ac64cbb80876ea8826c5957865c686b1d0af6 2370c4b6930e8808719902cfc6fb7494d59e058c0aab1c3e71157c630ab243f9 Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	120 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen74 Hash 90231c02eb7afd87a90c973d86805f7a 3accb734afab1b870f1e524dcf6029a9c465958a 64a7f5d8d705c6b363eb9420beec6b977ec531c1806b518d269622b2128dcc6d Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	119 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen47 Hash c99b05ccbf551f0c6a9fcd2abffcd16f 5498f7ac7c489c422d7299d46508aff88df79632 5221241efc4c8efdee7263f1c516bce90318356f4892a8d16906bf11b138c13b Loading...

	www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/#	ScriptElement	119 B	2023-03-07	2024-12-29
Pretty URL www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/# IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:01 Last Seen2024-12-29 14:07 Times Seen46 Hash 7160f9c10f645ef5f99a83f78c03bf2a 325467b30ebf515153209f2039d5675f7dea5334 c477c78ebfd8ae914fdbecf68b27d5581b382d37b1f0f35c7e0a22bad2c8d1b0 Loading...

		Size	First Seen	Last Seen
	#1 Eval - be1a3f4023824e8bf957ab18e6c400e9	2.0 kB	2023-03-07 12:08	2025-05-10 18:09
Pretty Observations First Seen2023-03-07 12:08 Last Seen2025-05-10 18:09 Times Seen96 Hash be1a3f4023824e8bf957ab18e6c400e9 3c47c09542506c4e6e5938d4beb576a10a1fa3c7 f82a2f8da143387be8ba2a3684f0b946e0cc0551d540a06852f4fb915a5296ed Loading...

	#2 Eval - 53dc5ab8753dfe825d0ed5f326a51102	6.0 kB	2023-03-07 12:08	2025-05-10 18:09
Pretty Observations First Seen2023-03-07 12:08 Last Seen2025-05-10 18:09 Times Seen96 Hash 53dc5ab8753dfe825d0ed5f326a51102 fd5f37ad922927638af5c489ab8e0af396dc3f10 9d14fd74c3d9e304ef78fe9b535da31c057b9ce08ba83b42e8ad6faec53d7634 Loading...

	#3 Eval - 013b789154ee03a39d5d822f59be5d48	850 B	2023-03-07 12:08	2025-05-10 18:09
Pretty Observations First Seen2023-03-07 12:08 Last Seen2025-05-10 18:09 Times Seen96 Hash 013b789154ee03a39d5d822f59be5d48 7500030c3af38ad40f66e53a82bbc49c05738cc7 d11aab64085a2f81a61cb4364af343b934cce85018550aa25af56cc9491153c3 Loading...

		Size	First Seen	Last Seen
	#1 Write - 7c08af785e009077571d2bf449ed7db0	32 B	2023-10-24 03:44	2024-08-21 03:40
Pretty Observations First Seen2023-10-24 03:44 Last Seen2024-08-21 03:40 Times Seen4 Hash 7c08af785e009077571d2bf449ed7db0 7491c5008267f70abbdbd5224b4a9a0def29af88 fc10290e812dc90a0dfb53a65be3eb088ca001c7c981020fefc0bd8e0f5c0ffe Loading...

	#2 Write - 66a6575388f072d4e506461b24a8eab2	17 B	2023-10-24 03:44	2024-08-21 03:40
Pretty Observations First Seen2023-10-24 03:44 Last Seen2024-08-21 03:40 Times Seen4 Hash 66a6575388f072d4e506461b24a8eab2 016ff777a12b97522537cf5f5fb5b1a56a35e263 f83fe8ae06d7ef5837d83cb7b9e8d4920cfbd882b0c0d592701b9f7e673e95c6 Loading...

HTTP Transactions (57)

URL IP Response Size

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/

199.79.54.235

90 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
90 kB (89463 bytes)
Hash
46719af5deb84bfe131f29adef018e8e
4d73fa822578757f6946b9559b4ffe4bca7b4df1
029fe0d2851709704474646251b69cb95ed3319b11d7c96ed0f11ec4832c84bc

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/ HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:06 GMT
Server: Apache/2.4.6
Last-Modified: Tue, 14 Feb 2023 10:15:30 GMT
ETag: "15d77-5f4a63e44d480"
Accept-Ranges: bytes
Content-Length: 89463
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1

199.79.54.235

113 kB

URL
www.teszoom.com/~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (1759)
Size
113 kB (112650 bytes)
Hash
7576e3798ab3d84ac873ef26b6c8df45
baa1ab0854f5c36fde06fd376b130091dd02a89f
8a046df912f12fc1dada07e11a92263c3a04b7bcfe95cb2c9df13241f0ac29a5

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1 HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:06 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 08:00:00 GMT
ETag: "1b80a-5f3769a104000"
Accept-Ranges: bytes
Content-Length: 112650
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb713507_v.js

199.79.54.235

3.0 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb713507_v.js
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (3044), with no line terminators
Size
3.0 kB (3044 bytes)
Hash
fb77c18ce4a2daea27db77e057c4fa64
48038fb59dc2944eb487378e37963afda228b3bd
b0a79f2bd09a605d906f23c84884ecaf4cf9fee5f0286040e9a0f889d6790ca0

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb713507_v.js HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Tue, 12 Apr 2022 15:42:20 GMT
ETag: "be4-5dc76e7fe2f00"
Accept-Ranges: bytes
Content-Length: 3044
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: application/javascript

www.teszoom.com/~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css

199.79.54.235

7.2 kB

URL
www.teszoom.com/~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (7048)
Size
7.2 kB (7208 bytes)
Hash
8d4fba5186f02a0c4458986b0cf91667
785579011ecdda9e4754ca41649fa2fc06453b52
1cfc73a6db9523c12b6b7f5d009bed19c8799eed001f607bd891a1fd838b7739

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/froala-editor/2.8.5/css/froala_style.min.css HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 04 May 2020 16:10:18 GMT
ETag: "1c28-5a4d4c45cee80"
Accept-Ranges: bytes
Content-Length: 7208
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: text/css

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb63ccd2_v.css

199.79.54.235

200 OK

0 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb63ccd2_v.css
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb63ccd2_v.css HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "0-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: text/css

www.teszoom.com/~d/microsoft/ok/maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css

199.79.54.235

28 kB

URL
www.teszoom.com/~d/microsoft/ok/maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (27591)
Size
28 kB (27754 bytes)
Hash
835820949e29e350f15768fda86f3df2
aceea7abce057d3e585f57be47bf23d1e1ca7222
c1782a8e7e3ff0043f0b4312520e07f8477299e2ac89a11ec473f847c1bc3dc3

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 25 Jan 2021 21:04:54 GMT
ETag: "6c6a-5b9bfe3b90980"
Accept-Ranges: bytes
Content-Length: 27754
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb74a5eb_v.css

199.79.54.235

25 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb74a5eb_v.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with CRLF line terminators
Size
25 kB (25059 bytes)
Hash
ab25ae70934938fc98d32c689a466fff
70bc9ab476054ac02a90c6385d39208fe36176ee
5dbd53e6bf5cdca3c1bd27d7621e939eb9c0b5387c62fea84deb2cab9a4663e7

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb74a5eb_v.css HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:14 GMT
ETag: "61e3-5b26c29f9c480"
Accept-Ranges: bytes
Content-Length: 25059
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc497791_v.css

199.79.54.235

75 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc497791_v.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text
Size
75 B (75 bytes)
Hash
0e646e2e128c473d6fba7996a4a94e40
a4d4fb349d7480c10da8249c0851ea287a0309bb
8cf6666c0c6d23dcf25eed0ecb5c439e484e1ddd598522bc21eb6e454edaea33

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc497791_v.css HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:16 GMT
ETag: "4b-5b26c2a184900"
Accept-Ranges: bytes
Content-Length: 75
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: text/css

www.teszoom.com/~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js

199.79.54.235

84 kB

URL
www.teszoom.com/~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (32180)
Size
84 kB (84355 bytes)
Hash
7f9fb969ce353c5d77707836391eb28d
62c4042e9ebc691a5372d653b424512a561d1670
2051d61446d4dbffb03727031022a08c84528ab44d203a7669c101e5fbdd5515

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/cdnjs.cloudflare.com/ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 04 May 2020 16:11:48 GMT
ETag: "14983-5a4d4c9ba3900"
Accept-Ranges: bytes
Content-Length: 84355
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: application/javascript

www.teszoom.com/~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/js/bootstrap.min.js

199.79.54.235

60 kB

URL
www.teszoom.com/~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/js/bootstrap.min.js
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (59765)
Size
60 kB (60044 bytes)
Hash
02d223393e00c273efdcb1ade8f4f8b1
0cc93b8421d89c24a889642428b363cb831de78a
79c599dd760cec0c1621a1af49d9a2a49da5d45e1b37d4575bace0a5e0226582

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/js/bootstrap.min.js HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 25 Jan 2021 21:04:10 GMT
ETag: "ea8c-5b9bfe119a680"
Accept-Ranges: bytes
Content-Length: 60044
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: application/javascript

fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap

142.250.74.106

1.3 kB

URL
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
1.3 kB (1335 bytes)
Hash
824c7a5e928bb497ca1d984362e32272
e36526aa786d41c4c1c6416d473ba52ab467e549
614188b45770f57e6e764af552cb345d5b37e5263eced0be7a704276255aaf90

HTTP Headers

GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&amp;display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Nov 2023 17:21:07 GMT
date: Sat, 18 Nov 2023 17:21:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teszoom.com/~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css

199.79.54.235

160 kB

URL
www.teszoom.com/~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (65326)
Size
160 kB (160302 bytes)
Hash
816af0eddd3b4822c2756227c7e7b7ee
c470239d4c7db36d56dc3a74a080c62218c6edc4
5b0fbe5b7ad705f6a937c4998ad02f73d8f0d976fe231b74aef0ec996990c93a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/stackpath.bootstrapcdn.com/bootstrap/4.5.2/css/bootstrap.min.css HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:07 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 25 Jan 2021 21:04:10 GMT
ETag: "2722e-5b9bfe119a680"
Accept-Ranges: bytes
Content-Length: 160302
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbb6fc7d_v.gif

199.79.54.235

102 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbb6fc7d_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 24 x 9\012- data
Size
102 B (102 bytes)
Hash
ef14d57c065fdbd3c66d017a729ca91f
2e7b72d674361a9c2b41767ccfbed2486e6695dd
6fcbfcda8a36536a0f9b0bc8c4a6ca451d9bafd4a879d56697e48e209691ba36

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbb6fc7d_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "66-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 102
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb9bf55a_v.gif

199.79.54.235

1.8 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb9bf55a_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 120 x 97\012- data
Size
1.8 kB (1776 bytes)
Hash
8806694db55d271b6c836433d103afcd
a532ae846499ffa93bd6ed8baafcbdabb2cc8da1
989f955c24583be00defab08c4cf80b17fe4c12756686359367144f0506eb8b8

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bb9bf55a_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:16 GMT
ETag: "6f0-5b26c2a184900"
Accept-Ranges: bytes
Content-Length: 1776
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbece31e_v.gif

199.79.54.235

1.5 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbece31e_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 30 x 29\012- data
Size
1.5 kB (1509 bytes)
Hash
1834c112f6e54f620d2ef8f8c037d450
b911b12717fc708c9418b4a2a0d72f79c5c53be3
81a5f62c155d307316d16a11e5a907a99fcfa3f70dce41d01d9f65518206734e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbece31e_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:14 GMT
ETag: "5e5-5b26c29f9c480"
Accept-Ranges: bytes
Content-Length: 1509
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbae3ed9_v.png

199.79.54.235

200 OK

349 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbae3ed9_v.png
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
PNG image data, 13 x 13, 8-bit/color RGB, non-interlaced\012- data
Size
349 B (349 bytes)
Hash
7454c652e0733d92de6c920c2d646ae0
34a5bd8c7401f95e346895b0e5ccffbf0e9ad638
44f752b0bd2e48052d538bc6aca5379f3630ca64da945f794690ddf47e8eaef7

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbae3ed9_v.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "15d-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 349
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbdae210_v.png

199.79.54.235

364 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbdae210_v.png
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
364 B (364 bytes)
Hash
e144c3378090087c8ce129a30cb6cb4e
59da5466551de941d0215e45c54aa2ceaf436be1
b13a03e0db893734298cbe203bf264407636ffe5dab0a141f83c492d0034dd6a

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbdae210_v.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:14 GMT
ETag: "16c-5b26c29f9c480"
Accept-Ranges: bytes
Content-Length: 364
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbf6a050_v.gif

199.79.54.235

200 OK

1.2 kB

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbf6a050_v.gif
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
GIF image data, version 89a, 29 x 29\012- data
Size
1.2 kB (1245 bytes)
Hash
6d0c71ad95c413318e0946960a597318
297fa9d7797afcb90cb49adb045b673672b360ec
f2b1758e4d68018096355641f5e7163b0df07efc85e9c3513e51949a75c0446d

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbf6a050_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:16 GMT
ETag: "4dd-5b26c2a184900"
Accept-Ranges: bytes
Content-Length: 1245
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: image/gif

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.227

7.8 kB

URL
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teszoom.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:48:22 GMT
expires: Fri, 15 Nov 2024 04:48:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
age: 217966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.227

7.9 kB

URL
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teszoom.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:21:58 GMT
expires: Fri, 15 Nov 2024 23:21:58 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 151150
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

216.58.207.227

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teszoom.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:53:49 GMT
expires: Fri, 15 Nov 2024 04:53:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 217639
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc1a74d5_v.gif

199.79.54.235

200 OK

69 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc1a74d5_v.gif
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
GIF image data, version 89a, 16 x 16\012- data
Size
69 B (69 bytes)
Hash
3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc1a74d5_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:20 GMT
ETag: "45-5b26c2a555200"
Accept-Ranges: bytes
Content-Length: 69
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbbf25aa_v.gif

199.79.54.235

1.5 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbbf25aa_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 80 x 65\012- data
Size
1.5 kB (1506 bytes)
Hash
0d3c4efabb6072ec3312574009be3ef8
02d319a4e46538bcadcc5122883e1a0c3e94c123
45a676a0eb476e7706e0187d975b612f51f3bb4c26596f991d55f5e68fbef3e3

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbbf25aa_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "5e2-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 1506
Keep-Alive: timeout=10, max=393
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbc8a6e3_v.gif

199.79.54.235

1.5 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbc8a6e3_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 65 x 80\012- data
Size
1.5 kB (1547 bytes)
Hash
af52e51f42fd0c55bc3cf2c8ece71492
016f83da68ff461a5c6aebcc2a45668317b2f24c
e91f304cf7409723968740e6363dda01b50acb8e94b5ca05b4a4617666ff095c

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbc8a6e3_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:14 GMT
ETag: "60b-5b26c29f9c480"
Accept-Ranges: bytes
Content-Length: 1547
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc2379ac_v.gif

199.79.54.235

377 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc2379ac_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 16 x 16\012- data
Size
377 B (377 bytes)
Hash
c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc2379ac_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:16 GMT
ETag: "179-5b26c2a184900"
Accept-Ranges: bytes
Content-Length: 377
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc2c1b4b_v.gif

199.79.54.235

234 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc2c1b4b_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 16 x 16\012- data
Size
234 B (234 bytes)
Hash
9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc2c1b4b_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "ea-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 234
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1

199.79.54.235

113 kB

URL
www.teszoom.com/~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (1759)
Size
113 kB (112650 bytes)
Hash
7576e3798ab3d84ac873ef26b6c8df45
baa1ab0854f5c36fde06fd376b130091dd02a89f
8a046df912f12fc1dada07e11a92263c3a04b7bcfe95cb2c9df13241f0ac29a5

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/www.googletagmanager.com/gtag/js3fd3?id=UA-207889113-1 HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 08:00:00 GMT
ETag: "1b80a-5f3769a104000"
Accept-Ranges: bytes
Content-Length: 112650
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: text/plain; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/warning.mp3

199.79.54.235

8.4 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/warning.mp3
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 56 kbps, 44.1 kHz, Monaural\012- data
Size
8.4 kB (8405 bytes)
Hash
8618fbb0911e3b8fc96725dee8bfd81f
1bbcb78922946d0cf18fbf3a9e092e36453eb767
0589be7715d2320e559eae6bd26f3528e97450c70293da2e1e8ce45f77f99ab1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/warning.mp3 HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 Partial Content
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:20 GMT
ETag: "20d5-5b26c2a555200"
Accept-Ranges: bytes
Content-Length: 8405
Content-Range: bytes 0-8404/8405
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: audio/mpeg

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/microsoft.png

199.79.54.235

200 OK

1.0 kB

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/microsoft.png
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
PNG image data, 47 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1045 bytes)
Hash
bf2b460590fbb9d8e9611a6e9006b816
561e1dab259d61e798b3ce380527b71b61074ff3
ee4bc5fe81fa7c1e8497d79c9c8a96485df217092d334e9b48fa8840fed11d03

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/microsoft.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:16 GMT
ETag: "415-5b26c2a184900"
Accept-Ranges: bytes
Content-Length: 1045
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bba58587_v.png

199.79.54.235

128 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bba58587_v.png
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
128 B (128 bytes)
Hash
0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bba58587_v.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:14 GMT
ETag: "80-5b26c29f9c480"
Accept-Ranges: bytes
Content-Length: 128
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbe46967_v.png

199.79.54.235

200 OK

293 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbe46967_v.png
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Size
293 B (293 bytes)
Hash
9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bbe46967_v.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:20 GMT
ETag: "125-5b26c2a555200"
Accept-Ranges: bytes
Content-Length: 293
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc00090f_v.gif

199.79.54.235

949 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc00090f_v.gif
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
GIF image data, version 89a, 78 x 68\012- data
Size
949 B (949 bytes)
Hash
da9d153375da51a616a7663f1504e3a5
bd81fe60fe017bfe79be8c1afed88b659ff166d9
9bb88049c3d3f3c172d97246fa148bb725e727847c37e28c3be156be240a0c04

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/5f205bc00090f_v.gif HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "3b5-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 949
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/gif

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/microsoft.jpg

199.79.54.235

2.0 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/microsoft.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 47x46, components 3\012- data
Size
2.0 kB (2004 bytes)
Hash
513307d24832cc64115e69c57dd4f69a
ba2e4718f5dec696d5e1e9ab95361f5dfb337f23
f70249b342aecd9e3d2367aea39df606e92562f9d7945ad8849b36cd3e3a85a1

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/microsoft.jpg HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:16 GMT
ETag: "7d4-5b26c2a184900"
Accept-Ranges: bytes
Content-Length: 2004
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/minus.png

199.79.54.235

200 OK

945 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/minus.png
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
945 B (945 bytes)
Hash
e6eb3d938f3ebebd85c71307b38a3bf3
387223165f8e86f861a09adb1e3c10a8f2ec7006
2b6c8e23b2a2c49ac71393cb3e1740b7e2fccaa310ee06b68ca27b693d133f8e

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/minus.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "3b1-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 945
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/cut.png

199.79.54.235

1.2 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/cut.png
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1192 bytes)
Hash
e526e4ff50594a6c4a5d05c18474d6e7
705609a2bd21c1e3e13666451c75d2c51436c83e
d25cf2403704d5208d662af4ef703d424cedeac253a43a1aec6e60e0db43837f

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/cut.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "4a8-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 1192
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/win.jpg

199.79.54.235

19 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/win.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, baseline, precision 8, 1280x620, components 3\012- data
Size
19 kB (19336 bytes)
Hash
d0acde649f84de9d94eb0112704938b4
dbbd1c27d0d6ba9e86aca8340c70560bc838a4fd
b94a56e71d9cdf2187d4f0c51e09cfd07506ed12380bf934dc85fb453adbc845

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/win.jpg HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Fri, 02 Dec 2022 07:58:22 GMT
ETag: "4b88-5eed3b395c380"
Accept-Ranges: bytes
Content-Length: 19336
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg

www.teszoom.com/favicon.ico

199.79.54.235

209 B

URL
www.teszoom.com/favicon.ico
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
209 B (209 bytes)
Hash
18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Content-Length: 209
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/background-2.png

199.79.54.235

387 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/background-2.png
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
PNG image data, 1920 x 1126, 8-bit/color RGBA, non-interlaced\012- data
Size
387 kB (386648 bytes)
Hash
db2c775d2583118bf4464dd65a58535b
45413378bf16997decf585915931305788e55328
de9fbe2de348e17bd4948011260ef297c4102b69068692daaba02bf632acd291

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/background-2.png HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:20 GMT
ETag: "5e658-5b26c2a555200"
Accept-Ranges: bytes
Content-Length: 386648
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: image/png

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:09 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.227

7.7 kB

URL
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teszoom.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Nov 2023 21:35:52 GMT
expires: Thu, 14 Nov 2024 21:35:52 GMT
cache-control: public, max-age=31536000
age: 243918
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/alertms.mp3

199.79.54.235

206 Partial Content

181 kB

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/alertms.mp3
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
Audio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2, 64 kbps, 22.05 kHz, Monaural\012- data
Size
181 kB (181032 bytes)
Hash
8875aced75c8dcbd23d7b3a429299716
3c2e9dc3a88ec01bde53789cf9d14d687f9f7297
8beb2fe585219eea20e9558b4b99a6aceb90d1c233b792c407f10a3c06557efb

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/alertms.mp3 HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 206 Partial Content
Date: Sat, 18 Nov 2023 17:21:08 GMT
Server: Apache/2.4.6
Last-Modified: Sat, 24 Oct 2020 15:15:18 GMT
ETag: "31080-5b26c2a36cd80"
Accept-Ranges: bytes
Content-Length: 200832
Content-Range: bytes 0-200831/200832
Keep-Alive: timeout=10, max=392
Connection: Keep-Alive
Content-Type: audio/mpeg

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:10 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:11 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=393
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:12 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=392
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

142.250.74.131

200 OK

7.8 kB

URL GET HTTP/3
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.teszoom.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 14 Nov 2023 21:36:49 GMT
expires: Wed, 13 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
age: 330264
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/img/anim_red.html

199.79.54.235

808 B

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/img/anim_red.html
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
808 B (808 bytes)
Hash
a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/img/anim_red.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:13 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "328-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 808
Keep-Alive: timeout=10, max=391
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:13 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=390
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:14 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=389
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:15 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=388
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:17 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=387
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:18 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=386
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:19 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=385
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:20 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=384
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/

199.79.54.235

90 kB

URL
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
90 kB (89463 bytes)
Hash
46719af5deb84bfe131f29adef018e8e
4d73fa822578757f6946b9559b4ffe4bca7b4df1
029fe0d2851709704474646251b69cb95ed3319b11d7c96ed0f11ec4832c84bc

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software
OpenPhish	phishing	Office365

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/ HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:20 GMT
Server: Apache/2.4.6
Last-Modified: Tue, 14 Feb 2023 10:15:30 GMT
ETag: "15d77-5f4a63e44d480"
Accept-Ranges: bytes
Content-Length: 89463
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:21 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=383
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:22 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=382
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html

199.79.54.235

200 OK

16 B

URL GET HTTP/1.1
www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html
IP
199.79.54.235:443
ASN
#46309 TONAQUINT-DC

Requested by
https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Certificate
IssuerLet's Encrypt
Subjectteszoom.com
FingerprintE5:DF:DB:40:E3:08:DB:A7:3A:3B:23:AB:4A:15:6C:81:61:81:E4:5F
ValiditySun, 12 Nov 2023 03:17:47 GMT - Sat, 10 Feb 2024 03:17:46 GMT

File type
ASCII text
Size
16 B (16 bytes)
Hash
4845f01eaa8068384625e302e9a4eb05
fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87
8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41

Detections

Analyzer	Verdict	Alert
urlquery	scam	Scam - Fake AntiVirus / Security software

HTTP Headers

GET /~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/Helpxxcode.html HTTP/1.1
Host: www.teszoom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.teszoom.com/~d/microsoft/ok/heuristic-brahmagupta.159-65-53-153.plesk.page/WinFvjdjfhdjhfkdshfjkrCHVX/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 17:21:23 GMT
Server: Apache/2.4.6
Last-Modified: Mon, 30 Jan 2023 09:45:42 GMT
ETag: "10-5f37814137d80"
Accept-Ranges: bytes
Content-Length: 16
Keep-Alive: timeout=10, max=381
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash