| secodom.de/a/auth/dV9oBz/login.php?id=52154573 |  104.21.60.219 | 403 Forbidden | 3.8 kB |
URL User Request GET HTTP/1.1secodom.de/a/auth/dV9oBz/login.php?id=52154573 IP104.21.60.219:80
File typeHTML document, ASCII text, with very long lines (501) Hash78fc3e1094360dd71dd1b76221866fc5 adf1a64f3567713953f8666c89eff92abc6f633c da7dc4f57f3453d92a07b05f06f1b431324a1641cbe0a1e535275eeeeba29134
| Analyzer | Verdict | Alert |
|---|
| PhishTank | phishing | Other |
GET /a/auth/dV9oBz/login.php?id=52154573 HTTP/1.1
Host: secodom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Tue, 07 May 2024 12:14:23 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qRVLo67XJGhm03m1ccpb1M8luk7MLBRWpxLPao0ypTpZR1D6Zc9Ry3GJg%2FMDe%2FyTr%2BRxVi60Pq%2FeX5zRgDPW1N9rudNEXbvsAM4SBpI%2FP8UhMBJbft4OHRQ8PF7f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88012127afe3569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
| secodom.de/cdn-cgi/styles/main.css |  172.67.201.207 | 200 OK | 2.2 kB |
URL GET HTTP/1.1secodom.de/cdn-cgi/styles/main.css IP172.67.201.207:80
Requested byhttp://secodom.de/a/auth/dV9oBz/login.php?id=52154573
File typeASCII text, with very long lines (8012) Hashff26f59e28a5fe6ea4ab23586415696b 4182675484d175e363cd34b43041b7b1af93d0cd d30b4ea6f68456672f5abb35e9dcf7d54226372b66e9d60a7ee26b7a52568e74
GET /cdn-cgi/styles/main.css HTTP/1.1
Host: secodom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://secodom.de/a/auth/dV9oBz/login.php?id=52154573
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:14:24 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 03 May 2024 17:58:00 GMT
ETag: W/"663525a8-1f4d"
Server: cloudflare
CF-RAY: 8801212a1e6b568f-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 07 May 2024 14:14:24 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
|
IP172.67.201.207:80
Requested byhttp://secodom.de/a/auth/dV9oBz/login.php?id=52154573
File typeHTML document, ASCII text, with very long lines (501) Hashca8c3f4afabf1c60ff4ee0154322ac0c 31e3d4acfcfeb5d020eebca55c55ce2f6b2e89ef 949384aea51bcf4424c88cf503a32f5ead1111a387c79c0d0a11a927a2279082
GET /favicon.ico HTTP/1.1
Host: secodom.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://secodom.de/a/auth/dV9oBz/login.php?id=52154573
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Date: Tue, 07 May 2024 12:14:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4ZGVdL1Cfz%2BVzuO3s9lozwQYKIWRO7jUhIIbRPr%2BImjyEUA0ZhgsZKIUKyVikTimmKAPWGH8FtrzJiE69J9Rn6d5z1KVouenS8pAB9C3w1VMFRQbTLHBb7s%2FKfsl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8801212b28b9568f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
| performance.radar.cloudflare.com/beacon.js | 104.18.30.78 | 200 OK | 9.5 kB |
URL GET HTTP/2performance.radar.cloudflare.com/beacon.js IP104.18.30.78:443
Requested byhttp://secodom.de/a/auth/dV9oBz/login.php?id=52154573 CertificateIssuerCloudflare, Inc. Subjectradar.cloudflare.com FingerprintEA:39:08:32:55:56:78:80:C7:B3:4A:AA:60:90:9C:BB:AE:11:E7:97 ValidityWed, 21 Jun 2023 00:00:00 GMT - Thu, 20 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (9990), with no line terminators Hashe20e50592962c97455bdfb5a288ea4cd 89b5230ca1be17858dfd0f9324f907e96b0acbc8 d8ead3d0a18ab2a890cfaf28529692e171f5906217a0d7cd1d4173119a310e84
GET /beacon.js HTTP/1.1
Host: performance.radar.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 12:14:24 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: no-store, max-age=0
access-control-allow-headers: *
access-control-allow-methods: *
referrer-policy: no-referrer
timing-allow-origin: *
set-cookie: __cf_bm=66QarMOdpCUc1LIQj6UamFQqFdWn8A24mVlAoi29yGo-1715084064-1.0.1.1-lXgHH.P38LwDIoksMbcMrQRGAGQxsIRcLywlp9HEIjVRVqNM9GmRCtHNuxJIM1mKr4H89NeMjkx7W5AuKWWSjQ; path=/; expires=Tue, 07-May-24 12:44:24 GMT; domain=.radar.cloudflare.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8801212a6817b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|