| br.geocities.com/autosmte/ultversao.txt | 13.248.158.7 | | 4.8 kB |
URL User Request GET br.geocities.com/autosmte/ultversao.txt IP13.248.158.7:0
File typeHTML document, ASCII text, with very long lines (384) Hash183d01761763fa316f1e1c8060fef209 759c07fc589c8bb880fe305a3ac8c4d9d3178acf 91b90e4d89745effc6cfa46bf538906ff4db73ac1a4b2d116a8061145bf007a6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Yahoo |
GET /autosmte/ultversao.txt HTTP/1.1
Host: br.geocities.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found on Accelerator
Date: Thu, 25 Apr 2024 00:08:09 GMT
Connection: keep-alive
Server: ATS
Cache-Control: no-store
Content-Type: text/html
Content-Language: en
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: sandbox allow-scripts; default-src 'self'; img-src https:; style-src 'unsafe-inline'; script-src 'unsafe-inline'; report-uri http://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 4805
|
|
| csp.yahoo.com/beacon/csp?src=redirect | 188.125.72.139 | 301 Moved Permanently | 8 B |
URL POST HTTP/1.1csp.yahoo.com/beacon/csp?src=redirect IP188.125.72.139:80 ASN#34010 Yahoo-UK Limited
Requested bymoz-nullprincipal:{10a37518-2574-4e82-9295-7b10ed9473ad}?http://br.geocities.com
File typeASCII text, with no line terminators Hashf17ca2c829680ada2fec9fc87bc5f606 fb5ed1e8458cc7da71478ddab87136681cb0179e 093452239d0e2e43b06b9d5cd8ac735c26449e340e001f87904765bb30e2293e
POST /beacon/csp?src=redirect HTTP/1.1
Host: csp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/csp-report
Content-Length: 749
Origin: null
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 25 Apr 2024 00:08:10 GMT
Connection: close
Server: ATS
Cache-Control: no-store, no-cache, private, max-age=0
Content-Type: text/html
Content-Language: en
Expires: -1
Location: https://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 8
|
|
| csp.yahoo.com/beacon/csp?src=redirect | 188.125.72.139 | 301 Moved Permanently | 8 B |
URL POST HTTP/1.1csp.yahoo.com/beacon/csp?src=redirect IP188.125.72.139:80 ASN#34010 Yahoo-UK Limited
Requested bymoz-nullprincipal:{10a37518-2574-4e82-9295-7b10ed9473ad}?http://br.geocities.com
File typeASCII text, with no line terminators Hashf17ca2c829680ada2fec9fc87bc5f606 fb5ed1e8458cc7da71478ddab87136681cb0179e 093452239d0e2e43b06b9d5cd8ac735c26449e340e001f87904765bb30e2293e
POST /beacon/csp?src=redirect HTTP/1.1
Host: csp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/csp-report
Content-Length: 746
Origin: null
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 25 Apr 2024 00:08:10 GMT
Connection: close
Server: ATS
Cache-Control: no-store, no-cache, private, max-age=0
Content-Type: text/html
Content-Language: en
Expires: -1
Location: https://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 8
|
|
| csp.yahoo.com/beacon/csp?src=redirect | 188.125.72.139 | 301 Moved Permanently | 8 B |
URL POST HTTP/1.1csp.yahoo.com/beacon/csp?src=redirect IP188.125.72.139:80 ASN#34010 Yahoo-UK Limited
Requested bymoz-nullprincipal:{10a37518-2574-4e82-9295-7b10ed9473ad}?http://br.geocities.com
File typeASCII text, with no line terminators Hashf17ca2c829680ada2fec9fc87bc5f606 fb5ed1e8458cc7da71478ddab87136681cb0179e 093452239d0e2e43b06b9d5cd8ac735c26449e340e001f87904765bb30e2293e
POST /beacon/csp?src=redirect HTTP/1.1
Host: csp.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/csp-report
Content-Length: 503
Origin: null
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 25 Apr 2024 00:08:10 GMT
Connection: close
Server: ATS
Cache-Control: no-store, no-cache, private, max-age=0
Content-Type: text/html
Content-Language: en
Expires: -1
Location: https://csp.yahoo.com/beacon/csp?src=redirect
Content-Length: 8
|
|
| s.yimg.com/nn/img/sad-panda-201402200631.png | 87.248.119.252 | 200 OK | 60 kB |
URL GET HTTP/2s.yimg.com/nn/img/sad-panda-201402200631.png IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested bymoz-nullprincipal:{10a37518-2574-4e82-9295-7b10ed9473ad}?http://br.geocities.com CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typePNG image data, 2673 x 1311, 8-bit/color RGB, non-interlaced Hash2751275289ee8a74f64e6bfec626034d be17d650aad1654f88ce397a454e05ba281eb6c3 20a453c98a759aa542ba2a07e1dcf31c82d545ef29377b3bcaad379ebbad66ac
GET /nn/img/sad-panda-201402200631.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://br.geocities.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: Knx/F2qzptCX9XaXSMSn7ul8WmrVKOfSHpxXQKK6U5N6ww81oAbLRfKj9kHWI1lhy5cBIpYtGu22DQSWajrOxx+SU71Evctx
x-amz-request-id: YBS28V0V5NQ3Q4SM
date: Fri, 19 Apr 2024 18:32:04 GMT
last-modified: Fri, 06 Jul 2018 03:00:46 GMT
etag: "2751275289ee8a74f64e6bfec626034d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000,public
x-amz-meta-created-date: Thu, 20 Feb 2014 06:31:45 GMT
x-amz-meta-mbst-etag: "YM:1:21e2bf66-5b4e-48cf-b226-54be0c87b2230004f2d0a8cc8ed9"
x-amz-meta-x-ysws-mbst-vtime: 1392877905940185
x-amz-meta-x-ysws-access: public
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 59856
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|
| s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_205x58_frontpage.png | 87.248.119.252 | 200 OK | 1.2 kB |
URL GET HTTP/2s.yimg.com/rz/p/yahoo_frontpage_en-US_s_f_p_205x58_frontpage.png IP87.248.119.252:443 ASN#203220 Yahoo-UK Limited
Requested bymoz-nullprincipal:{10a37518-2574-4e82-9295-7b10ed9473ad}?http://br.geocities.com CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typePNG image data, 205 x 58, 8-bit colormap, non-interlaced Hash73bbf8bd47227f183455c2d4b5e3a8a8 17152df9ebfce3b03dfab35950a30209c3eb1e2e 8de1aec4728fb9e7dc92eba19506b89bde081f5555a8e3a963354a8f9c4afe2d
GET /rz/p/yahoo_frontpage_en-US_s_f_p_205x58_frontpage.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://br.geocities.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: oKsYl3g705aCJsyDOg9+EfyHhbmzjxk/uRSIrlyspM7Lgd3WeoL7HR55YjFZRgGq2/sREW/SEdw=
x-amz-request-id: 8YB1VRJHF2NWGQQ0
date: Wed, 24 Apr 2024 17:37:39 GMT
last-modified: Tue, 23 Apr 2024 21:31:46 GMT
x-amz-server-side-encryption: AES256
cache-control: public,max-age=86400
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 1154
referrer-policy: no-referrer-when-downgrade
vary: Origin
etag: "73bbf8bd47227f183455c2d4b5e3a8a8"
expires: Wed, 24 Apr 2024 23:00:00 GMT
age: 23432
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
|
|