| app.fortect.com/ev-install-start/ev-install-start.php?sessionid= | 104.26.3.16 | 200 OK | 2 B |
URL User Request GET HTTP/2app.fortect.com/ev-install-start/ev-install-start.php?sessionid= IP104.26.3.16:443
CertificateIssuerGoogle Trust Services LLC Subjectfortect.com Fingerprint22:8B:26:68:38:AF:A1:8E:7B:B4:D7:66:C0:7F:58:63:77:0C:6E:12 ValidityWed, 13 Mar 2024 16:20:43 GMT - Tue, 11 Jun 2024 16:20:42 GMT
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed |
GET /ev-install-start/ev-install-start.php?sessionid= HTTP/1.1
Host: app.fortect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 22:17:29 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-Ch-Ua,Sec-Ch-Ua-Full-Version,Sec-Ch-Ua-Platform,Sec-Ch-Ua-Platform-Version
set-cookie: PHPSESSID=adl3oka3f8og3ppbb6svedk0fm; path=/
_refcook=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_refcook=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_trackid=11008766; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_trackid_11008766=11008766; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_tracking=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_tracking_direct=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_campaign=referrer-with-no-se; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_campaign_referrer-with-no-se=referrer-with-no-se; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_adgroup=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_adgroup_direct=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_keyword=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_keyword_direct=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_ads=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_ads_direct=direct; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_browser=IE; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_browser_IE=IE; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_country=Norway; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
_country_Norway=Norway; expires=Sun, 23-Jun-2024 08:12:44 GMT; Max-Age=4960515; path=/; domain=fortect.com; secure; HttpOnly; SameSite=None
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xCxt2bN8i%2FLvTbD01dUwhBua%2FZs88AOky%2Bts78Nw0Q24J7QZGYEUzoUmQE87zP5lHZ%2BRHfvBFJKzG7QiIG%2FEar9gHXWqm8MVBHc%2Fluuvj%2BWDTeldyZ8CmRbpXxBkb4lc6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9f1765f800b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
| app.fortect.com/favicon.ico | 104.26.3.16 | 404 Not Found | 277 B |
URL GET HTTP/2app.fortect.com/favicon.ico IP104.26.3.16:443
Requested byhttps://app.fortect.com/ev-install-start/ev-install-start.php?sessionid= CertificateIssuerGoogle Trust Services LLC Subjectfortect.com Fingerprint22:8B:26:68:38:AF:A1:8E:7B:B4:D7:66:C0:7F:58:63:77:0C:6E:12 ValidityWed, 13 Mar 2024 16:20:43 GMT - Tue, 11 Jun 2024 16:20:42 GMT
File typeHTML document, ASCII text, with no line terminators Hash9d0b468575c976c3aad98b2ea5569a2d b58ac4382216de3e231d7ac108c79c45cda520f9 87de4db220f85d0ce9cc6caa67be89af5d669db6f915195e32ebcb7acf92545c
Analyzer | Verdict | Alert | mnemonic secure dns | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: app.fortect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://app.fortect.com/ev-install-start/ev-install-start.php?sessionid=
Cookie: PHPSESSID=adl3oka3f8og3ppbb6svedk0fm; _trackid=11008766; _trackid_11008766=11008766; _tracking=direct; _tracking_direct=direct; _campaign=referrer-with-no-se; _campaign_referrer-with-no-se=referrer-with-no-se; _adgroup=direct; _adgroup_direct=direct; _keyword=direct; _keyword_direct=direct; _ads=direct; _ads_direct=direct; _browser=IE; _browser_IE=IE; _country=Norway; _country_Norway=Norway
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 Apr 2024 22:17:30 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=345600
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZTaM0Za59dlb0EV784Bsj9DZrCHuyl9vUefbLuZ8xrAcTKWOdNa0wwTFZ4m5hpHgxKoYV7YbNyhjRNioLrEzWmyqNKUoNcgIQkLU8HimjbX0VSwxJSABoXnKicNyUHMBsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9f17928bd0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
|