Report - www.njapa.info/img/on/juno/continue.html

Report Overview

Submitted URL
www.njapa.info/img/on/juno/continue.html
IP
64.62.163.242
ASN
#6939 HURRICANE
Submitted
2023-01-21 20:27:32
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
50

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	1.0 kB	104.18.32.68
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
www.njapa.info	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	17 kB	573 kB	64.62.163.242
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.164.47.95
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	855 B	3.0 kB	142.250.74.106
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	988 B	78 kB	142.250.74.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
code.ionicframework.com	14473	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	406 B	1.1 kB	104.26.6.173
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	414 B	894 B	104.18.10.207
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.9 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	4.9 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-21	medium	www.njapa.info/img/on/juno/continue.html	Juno Online Services

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-21	medium	www.njapa.info/img/on/juno/continue.html	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/recaptcha__en.js	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/billing-client-validation.js	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/resourcesX.js	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/api.js	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/jquery.min.js	Phishing
2023-01-21	medium	www.njapa.info/static/store/view/js/resourcesX.js?v=35459	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/event.do	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/event_001.do	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/index_1.html	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/index_2.html	Phishing
2023-01-21	medium	www.njapa.info/img/on/juno/webicon_j.ico	Phishing
2023-01-21	medium	www.njapa.info/css/style.css?var=0.0.3	Phishing
2023-01-21	medium	www.njapa.info/js/jquery.touchSwipe.min.js	Phishing
2023-01-21	medium	www.njapa.info/js/bootstrap.min.js	Phishing
2023-01-21	medium	www.njapa.info/js/validate.js	Phishing
2023-01-21	medium	www.njapa.info/js/jquery.fancybox.pack.js	Phishing
2023-01-21	medium	www.njapa.info/js/jquery-1.11.3.min.js	Phishing
2023-01-21	medium	www.njapa.info/js/jquery.bootstrap.newsbox.min.js	Phishing
2023-01-21	medium	www.njapa.info/js/bootstrap-filestyle.min.js	Phishing
2023-01-21	medium	www.njapa.info/js/jquery.mixitup.min.js	Phishing
2023-01-21	medium	www.njapa.info/js/custom.js	Phishing
2023-01-21	medium	www.njapa.info/js/featherlight.min.js	Phishing
2023-01-21	medium	www.njapa.info/js/admin/jquery.dataTables.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (40)

	URL	Size	First Seen	Last Seen
	www.njapa.info/img/on/juno/continue.html	672 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 3e84492a44c49b5ca67263e043b003e5 7e683bdd55988cd7534ef68ad0f642094a6bf2c8 7109d2f4f259cb443c502170d911130fc2d3a2baa94e65524fc33345c8380a16 Loading...

	www.njapa.info/img/on/juno/continue.html	3.0 kB	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash d73480f691bf31bc53fc1ebc66d0cec6 3364774696238522a466fe7cabf86b07b07ed310 1e5a2ba3e2476a113959c9cc3115f46f05e3b4461171c8e656a30741a3423826 Loading...

	www.njapa.info/img/on/juno/continue.html	405 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash c31851a17197a979bf21603bb62ca9fd 494496e2a5f98c3eea761f5a585f196053bc630a 46bd1b460775f8c7f9d2a54a85846c7a063a4349d0100498a978eb9fbc388bb5 Loading...

	www.njapa.info/img/on/juno/continue.html	1.5 kB	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 531caf9a53e550b0b9e8d36faf2b8e03 7791c585da5b57c7bd30ad0e94869d833d0c7247 ec0847691a9893c30b7264f935c22bc3f7e00bb0f24324a3da09a630c221c38a Loading...

	www.njapa.info/js/validate.js	21 kB	2023-03-07	2024-07-04
Pretty URL www.njapa.info/js/validate.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:57:13 Last Seen2024-07-04 06:53:56 Times Seen71 Hash ede55623a785c1b7f1c9bf0d777855e9 3a91ed5428c080fc6d35354e1d7b01b54fb44c03 0a8dc9cb59fba3bafba32724c11f7cbed8aa727260da8750ff313c875afef3cb Loading...

	www.njapa.info/js/jquery.mixitup.min.js	29 kB	2023-03-07	2024-07-24
Pretty URL www.njapa.info/js/jquery.mixitup.min.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:58:38 Last Seen2024-07-24 06:25:07 Times Seen112 Hash 7789b9c0c8dcf78b5690123a3918cc79 cd8c144afef41ac09174d2a561b7586af5306cac a4f677a4f791992b989421e4a1b3ec59a883c4ee1231eed4a81bd5786ad10b8d Loading...

	www.njapa.info/img/on/juno/continue.html	5.8 kB	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 93f4d11092fd0d8c5d35da17956e5fa1 3d9395c868409ed785a4f7109987bf7148b2c2fb 9215ec01f2731aa2912faafc863d3e224e4989285218f77141f0b316904e01b6 Loading...

	www.njapa.info/img/on/juno/continue.html	313 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 5d6107d255b53df276636c52e21bd786 7619fc62bde3c0cf8e8c86fdde89693fc038583f a654fe7383860eba9ec417e6b2fa38124fe6171ff390a9b53e916131fd39cfc1 Loading...

	www.njapa.info/img/on/juno/continue.html	586 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 5198737f38200a6d4638c033d5bd98db 09ecffd4e369d924f7f3b3ffa8ee88d1174ea6e8 df88d02ee4adc97fba58efbc126fc15cadee1a86e4d4011bead52ef5455e0ebc Loading...

	www.njapa.info/img/on/juno/continue.html	249 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 5a71414e178ac70f02b6b9e7592d8226 c261b5c680d22b76b0b330aaaee6c67a50220710 caf30cddc613b06ccf6ef7c6a2e08f8c21121d43b51ef6868ddf981a16ace4ec Loading...

	www.njapa.info/js/jquery.fancybox.pack.js	23 kB	2023-03-07	2024-07-25
Pretty URL www.njapa.info/js/jquery.fancybox.pack.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:46 Last Seen2024-07-25 20:42:15 Times Seen979 Hash 0ca8cd384931d74c4b6a9f592e987f69 ae6318aeb62ad4ce7a7e9a4cdacd93ffb004f0fb 2be721560b8cae178785531dc523d2f7b9b173bb6571536fed94a85c0d31c525 Loading...

	www.njapa.info/js/jquery.bootstrap.newsbox.min.js	5.3 kB	2023-03-10	2023-09-24
Pretty URL www.njapa.info/js/jquery.bootstrap.newsbox.min.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:32:50 Last Seen2023-09-24 05:27:37 Times Seen2 Hash 0c77a8d0a940b5949b5ca300a4784746 71465b1b14586c6adc5012571dbb5ebd4abd91d1 114d06713586a00085738361fa4243ad70eefe377fe736091bc74e1a2812e7c2 Loading...

	www.njapa.info/js/bootstrap-filestyle.min.js	7.2 kB	2023-03-07	2024-07-26
Pretty URL www.njapa.info/js/bootstrap-filestyle.min.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:49:13 Last Seen2024-07-26 23:18:41 Times Seen1114 Hash d5dc5df95da5857ade4f68a3e13f3046 c1462a30bd30e6fcef136f992762fa0829a2ad37 0fd1ed7e30ea42f4dc359f46cef4cf879edc94df33f01eb1e77775948f0b689a Loading...

	www.njapa.info/js/admin/jquery.dataTables.js	456 kB	2023-03-12	2023-03-14
Pretty URL www.njapa.info/js/admin/jquery.dataTables.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:29:04 Last Seen2023-03-14 06:29:41 Times Seen1 Hash 779ff337d08c09f1805a3b390ed934d8 ac832ac6ed2373d2dd670737e7ea18c6fe04ed7a e02b39257f5d44c4d9fdffc55306e76054bf29772f35d4be1bbc85afcb3e4481 Loading...

	www.njapa.info/img/on/juno/continue.html	79 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash e1ed8c62ad8809808f114cbfb86a7be9 c50a43e377cf8d6812da7ecda765fd11c3154137 1d8add2cc3d9191ce84652da82313e82ba806cc8c46c71e7e41814eb4fe0bd56 Loading...

	www.njapa.info/img/on/juno/continue.html	178 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 26f36b63dc023cc7689a34e77422ce10 acc99b46733d501b599ecc4dc6dca4ec6e0b8c65 d36c0c8285be844eeddac5b110e9a08d7b5ecd5df58ef5ccae98b610f2ddd19b Loading...

	www.njapa.info/img/on/juno/continue.html	2.0 kB	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 9fe4f09e434ea35c37a31ed2c3ef8e34 6ffbdbf93d81b183a594b4ab10d6432b1a8b8d38 c377ced6f34e48571cbde6e0f3fc0f2d05cbf97bdd1f28920abc022e3c4db6ca Loading...

	www.njapa.info/img/on/juno/continue.html	1.0 kB	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 3e7743cb1d300f9e8f375ee29c96d444 e1f685651ddf2e51d1a884e448ad2e6e68029e3d d6afb18dc1808b1a9b0f5cd170ba83cd78d3b1c6b41f2f1aa3a9039a9c0cebab Loading...

	www.njapa.info/js/jquery.touchSwipe.min.js	12 kB	2023-03-07	2024-07-26
Pretty URL www.njapa.info/js/jquery.touchSwipe.min.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:52 Last Seen2024-07-26 10:22:43 Times Seen392 Hash 91d00123eb72c7cacc3fbdd03d83762b 6b0fcd06196374d8a8f742d5e1663433adbc3b6c f65f3aeed46b79940849fa2022f2cbdf368288de9046f2b3da075c42f9dde8f6 Loading...

	www.njapa.info/js/jquery-1.11.3.min.js	96 kB	2023-03-07	2024-07-27
Pretty URL www.njapa.info/js/jquery-1.11.3.min.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:14 Last Seen2024-07-27 00:03:04 Times Seen3465 Hash 13c0a5055cca7b2463b2f73701960b9e e6082a7b52db82604ac446d2e6a32cb5af263781 20e11ce61890c08c0529911822233c9023ebc367df6c1050dec105e2b9628104 Loading...

	www.njapa.info/img/on/juno/continue.html	4.3 kB	2023-03-07	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:27:33 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 9cc243f766df07cdf6b79cabcbd47e02 773f69ae44b11c0f9565f09f98c789b9f7899207 63fe90f0f40332a46cd5b61f17d6958ff7aa5ecd894e1bb5b8adacbefe189748 Loading...

	www.njapa.info/img/on/juno/continue.html	79 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 048842fb6546820c114c98a1e8b20169 e3e178a9402350293feb9999ba38caeb64a161b0 cb158951f5383f4e3044aafd0de93d5eff1c9706259f2d86952390e8fa487394 Loading...

	www.njapa.info/img/on/juno/continue.html	32 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash edf16d3dfa52783edef4bf82933c537d 9ad9aaba7186825964cd6fd7978cb2bba2af6232 96f8fb6970f6211da3d115a81a2959e7ef89c72bfe4b192dc60e17bf815a6e2c Loading...

	www.njapa.info/img/on/juno/continue.html	144 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 5ecb29ba94b67a79ab3fed0a328d7942 5b897e59e6239df8a43507d8d22c8d9dab2cfc30 3e150839a93fa89d83e805b089e35cd06b5c4d7f1769e784ff5e2b06ac2d04f0 Loading...

	www.njapa.info/img/on/juno/continue.html	371 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 5e5ca56323699d5ed0b365b993cdf93a 2c43ffe1d57af4df2ed690b829a170a6fc1c0f4c d035c03a0dc7ff4973a72a75572ee0da1217f40608395bc92468498a04a150d9 Loading...

	www.njapa.info/img/on/juno/continue.html	691 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash e82a7b5e112fb31d6c020fabf5cf615f cf654018112c402932da98f168a324138bbc6408 3dda8fc2251da00f56e0f8d9d577b147321439a5074924e2189effb977c7e860 Loading...

	www.njapa.info/js/bootstrap.min.js	37 kB	2023-03-07	2024-07-24
Pretty URL www.njapa.info/js/bootstrap.min.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-07-24 13:11:26 Times Seen3303 Hash e7d9a06cf9053c51cd4ad3386da0659a e45bf1054704a1fdfc4ee2713a16bf9283dea995 9a3724b2051a82064c923cbd68343dcb04014adac3ccb8c4d8ac6a31ba2e12cd Loading...

	www.njapa.info/img/on/juno/recaptcha__en.js	14 kB	2023-03-12	2023-03-14
Pretty URL www.njapa.info/img/on/juno/recaptcha__en.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:29:04 Last Seen2023-03-14 06:30:02 Times Seen1 Hash a8b351ce95e132de3410c021f5375a18 c308486cc99b018863d69f0d7996d54c95c20a9e 750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0 Loading...

	www.njapa.info/img/on/juno/continue.html	417 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 9021322e498be972a31d6c12417523e3 b716e9b5d41a63004897c62906a63392af9a714b ac617906f5883bdf34fd7a1e01439e26bcc51ec8b4529f89ff0cbf07c3ddb73f Loading...

	www.njapa.info/js/featherlight.min.js	7.6 kB	2023-03-12	2023-03-14
Pretty URL www.njapa.info/js/featherlight.min.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:29:04 Last Seen2023-03-14 06:29:41 Times Seen1 Hash 8b868e5828c5d0ec37eadc0ab9d59aac 9d4fb004e99b712f868f00f99051f9c759a96c21 3cbe0ab8e16e35f4a29d0b3c93583be49c964ad57f3fe96ccc6ca2316df6b317 Loading...

	www.njapa.info/js/custom.js	512 B	2023-03-12	2023-03-14
Pretty URL www.njapa.info/js/custom.js IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:29:04 Last Seen2023-03-14 06:29:40 Times Seen1 Hash 895083e63d0ee9c0dadbf3a6e7dfe191 5fac6be291bbbee60927390157599c9528083638 cdc6430e0165bb9fc40627fdf360f3f45f011e606ffe08856da79031b5f3e531 Loading...

	www.njapa.info/img/on/juno/continue.html	274 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash c280841d038341133086c32aae206905 bcdc146af3385e802ce5b7970ea83b628ecbebb2 b938054cf5fbf87d3faa36dfbed178dac92ba26c0e5318cb34cb4dbb785f5369 Loading...

	www.njapa.info/img/on/juno/continue.html	328 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash a6147530e73869268261bffe73f544c4 d19224fd1821f4bf86c3187000eb7846ec06cee5 0e8103e31ddf432cf449e42a6927fb35dd39b0384d7e09ea31bf49eed6fd8bbb Loading...

	www.njapa.info/img/on/juno/continue.html	339 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash a99d091d354fda5329775592d0ae3fd4 97215d7e967189871bfbc70787948e46452f298f 37ce09ac469e0033d0ff7e905a2f058e21353185b79780b501b00a021285afec Loading...

	www.njapa.info/img/on/juno/continue.html	3.5 kB	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 12493ed2fc1fd0f0d0871b48aa1170b5 0b4be179bf41bda5d0226f2773252dc07ac3acb0 dbb53ca482ed4e11701383bf7d4b0271314be02553d1d17afb1ef0b067311d0c Loading...

	www.njapa.info/img/on/juno/continue.html	1.7 kB	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 3ca173d23d2b34cd0400b3a18d7d9fc1 3d6d1e18d205f3b73c21972b3282210a9ecdb34a 483b9d1bbdc3aeceebeca9ae4ba00e1ae2d1767ec54090f919ec61b8a1b33fbb Loading...

	www.njapa.info/img/on/juno/continue.html	243 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 886bd6e241e6de28f1cdfb6b50f0d90f 031447c82996713bba1b35055bd21a0702e69172 a073a737b126bb3b19dbfc2b52c9d6541785ed550bb3bf370c430c04e6a89ad8 Loading...

	www.njapa.info/img/on/juno/continue.html	311 B	2023-03-08	2023-12-19
Pretty URL www.njapa.info/img/on/juno/continue.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:13:14 Last Seen2023-12-19 16:05:00 Times Seen2 Hash 00eeeba17a09fb1a5b9e66e37bd49cbc 7f04b08074c53100c0591c7d543d1d4e3aa6c2a6 498b6997419f9548aa43b594310bd29fcc3ffbaf4c4e4e341dd25a036ca8039e Loading...

	www.njapa.info/img/on/juno/index_1.html	47 B	2023-03-12	2023-03-14
Pretty URL www.njapa.info/img/on/juno/index_1.html IP 64.62.163.242 ASN #6939 HURRICANE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 13:29:04 Last Seen2023-03-14 06:29:41 Times Seen1 Hash 9725c6689e76a3c668ce7eefd5b5a148 a627487470a5e821fec38e0e7dea7ac8089fd463 f635c0add949c470c63151232c24d0b1079a6bef1ea205989a78bab740e9039c Loading...

		Size	First Seen	Last Seen
	#1 Write - 3c621acd6c46a547a9eb5347217d2be3	112 B	2023-03-12	2023-03-14
Pretty Observations First Seen2023-03-12 13:29:04 Last Seen2023-03-14 06:29:41 Times Seen1 Hash 3c621acd6c46a547a9eb5347217d2be3 ef5254a6a461c716c7a866ffc6cd696959cceb5f 5c14573903689be94a68d547a51c17f5e5fd41f54aa1b41c0557ecee63d3a128 Loading...

HTTP Transactions (78)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5019
Expires: Sat, 21 Jan 2023 21:51:00 GMT
Date: Sat, 21 Jan 2023 20:27:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8a5e416451617846248067d72b675125
995b0346adefaf5f2e167d1b81e60cc9afc4f19e
c5fafb9127b71cbd4f7b1a44f755fc4aa0e2f47bbc50de4b15c870a22bf160d9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5FAFB9127B71CBD4F7B1A44F755FC4AA0E2F47BBC50DE4B15C870A22BF160D9"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15377
Expires: Sun, 22 Jan 2023 00:43:38 GMT
Date: Sat, 21 Jan 2023 20:27:21 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 19:49:39 GMT
content-type: application/json
age: 2262
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
38c102db4bcfb9c4fb19174986950fd3
51c2cc8a3aca4da5c9ab3438467c29203fc0b0c3
dad6b64bc9f4dd827471ccc2e5273fceee574685376083aaa80f9d2f918037f2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAD6B64BC9F4DD827471CCC2E5273FCEEE574685376083AAA80F9D2F918037F2"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5527
Expires: Sat, 21 Jan 2023 21:59:28 GMT
Date: Sat, 21 Jan 2023 20:27:21 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Jh69UyI1bBg+EnjsEp2Eyh9ml1Oxhjd59AuRrB7QvX8ink0ul8wna5yrD2Ce4qTnZ9+NSuJtSIY=
x-amz-request-id: XY00MYFV7YK2Q0ET
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 19:46:58 GMT
age: 2423
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 20:27:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.njapa.info/img/on/juno/continue.html

64.62.163.242

200 OK

150 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/continue.html
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (5751), with CRLF line terminators
Size
150 kB (149556 bytes)
Hash
1fa06f3e445868aa79338b591e3e14de
00a316fc8af68e1e7d001ef666ccaf06e614c964
190c59aa21c47f9cbf5db72688c93bc4099ecf347859c0dd16a0e10969f534c6

Detections

Analyzer	Verdict	Alert
openphish	Juno Online Services
fortinet	Phishing

HTTP Headers

GET /img/on/juno/continue.html HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: text/html
Content-Length: 149556
Connection: keep-alive
Last-Modified: Mon, 02 Jan 2023 13:19:31 GMT
Accept-Ranges: bytes
Cache-Control: private, must-revalidate
Expires: Sat, 21 Jan 2023 20:27:21 GMT
Vary: Accept-Encoding

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 19:48:58 GMT
age: 2303
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.comodoca.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
9b67a8a7b122bee50ff9e06279de9d5c
2df0daab63fef7dfb83a13e929987b7531c18678
302b8369058fe05ceb52055f7445ed3e4260ef1133edd9c20d0b08b8b5bd4560

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 21 Jan 2023 12:01:32 GMT
Expires: Sat, 28 Jan 2023 12:01:31 GMT
Etag: "2df0daab63fef7dfb83a13e929987b7531c18678"
Cache-Control: max-age=573849,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78d2ca43cf0cb4f3-OSL

www.njapa.info/img/on/juno/recaptcha__en.js

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/recaptcha__en.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
14 kB (13718 bytes)
Hash
a8b351ce95e132de3410c021f5375a18
c308486cc99b018863d69f0d7996d54c95c20a9e
750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/recaptcha__en.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=mj9ghvqquc245fb0mjen9bsso4; expires=Mon, 20-Jan-2025 20:27:21 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding

www.njapa.info/img/on/juno/billing-client-validation.js

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/billing-client-validation.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
14 kB (13718 bytes)
Hash
a8b351ce95e132de3410c021f5375a18
c308486cc99b018863d69f0d7996d54c95c20a9e
750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/billing-client-validation.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=ondfnol5pbjd2aokij1m6p8572; expires=Mon, 20-Jan-2025 20:27:21 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding

www.njapa.info/img/on/juno/resourcesX.js

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/resourcesX.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
14 kB (13718 bytes)
Hash
a8b351ce95e132de3410c021f5375a18
c308486cc99b018863d69f0d7996d54c95c20a9e
750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/resourcesX.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=ag91o1sqmqr0j0183v66sr5574; expires=Mon, 20-Jan-2025 20:27:21 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding

www.njapa.info/img/on/juno/api.js

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/api.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
14 kB (13718 bytes)
Hash
a8b351ce95e132de3410c021f5375a18
c308486cc99b018863d69f0d7996d54c95c20a9e
750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/api.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=lgljshihogua7bjk84d9tu7rd7; expires=Mon, 20-Jan-2025 20:27:21 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding

www.njapa.info/img/on/juno/jquery.min.js

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/jquery.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
14 kB (13718 bytes)
Hash
a8b351ce95e132de3410c021f5375a18
c308486cc99b018863d69f0d7996d54c95c20a9e
750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/jquery.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=4l4qj4cveif41k3rdakg6gagu0; expires=Mon, 20-Jan-2025 20:27:21 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fc96297d0b59147e8f6052b16f1ca13f
23aeddfa143bb9be19b2ed06f2024a3a8aa120ce
034327c6ada560c662f451f3c95cd8531482d4ab51629e95875fab54c8f3e49a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3156
Cache-Control: max-age=135123
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:21 GMT
Etag: "63cbab28-1d7"
Expires: Mon, 23 Jan 2023 09:59:24 GMT
Last-Modified: Sat, 21 Jan 2023 09:06:48 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471

www.njapa.info/img/on/juno/images/button-close.gif

64.62.163.242

200 OK

161 B

URL HTTP/1.1
www.njapa.info/img/on/juno/images/button-close.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 14 x 13\012- data
Size
161 B (161 bytes)
Hash
d28ae9c00c4aaad2c7af95f3833efe8b
cde26bc1282fb42f622a4c5267c9bf77d5387473
c721e640fd8e4653f31d9833a7ffc8f7a310d063edeee72181c12e577a8b49cf

HTTP Headers

GET /img/on/juno/images/button-close.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: image/gif
Content-Length: 161
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:21 GMT

www.njapa.info/img/on/juno/images/close.gif

64.62.163.242

200 OK

653 B

URL HTTP/1.1
www.njapa.info/img/on/juno/images/close.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 22 x 18\012- data
Size
653 B (653 bytes)
Hash
9b0064fd584a66cf43af1b4c14697ab7
8a85c5bed0e1c0a158cfee82c048c76c5da1fd20
eb564bd65722639c9ebb4bfd8258e12f5a818a3914c0cf5612487be4b6541639

HTTP Headers

GET /img/on/juno/images/close.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: image/gif
Content-Length: 653
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:21 GMT

www.njapa.info/img/on/juno/images/headerbar-logo-juno.gif

64.62.163.242

200 OK

1.1 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/images/headerbar-logo-juno.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 165 x 37\012- data
Size
1.1 kB (1065 bytes)
Hash
90dfa20907a4141d4f704a8b4adfaa02
812f0a48f9b55731e5f093d7d3cf1a7d4017d6ad
0516ed4616f379da6db2770c77bf8ecfbdc3d6455d96cf280b60d6c778e6aefd

HTTP Headers

GET /img/on/juno/images/headerbar-logo-juno.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: image/gif
Content-Length: 1065
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:21 GMT

www.njapa.info/static/store/view/js/resourcesX.js?v=35459

64.62.163.242

200 OK

3.1 kB

URL HTTP/1.1
www.njapa.info/static/store/view/js/resourcesX.js?v=35459
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
3.1 kB (3059 bytes)
Hash
6fb5e0fc9e9a898e884aa8370e6a672c
9a73bf2ce29a64ae4da04bf6a630ccdea48b942f
7f2bcc61c319434d2d2415ff1377ac9e24668f43811e1a78b52d3f4d3aa727d8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /static/store/view/js/resourcesX.js?v=35459 HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93; expires=Mon, 20-Jan-2025 20:27:21 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/img/on/juno/images/spacer.gif

64.62.163.242

200 OK

43 B

URL HTTP/1.1
www.njapa.info/img/on/juno/images/spacer.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /img/on/juno/images/spacer.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:21 GMT

www.njapa.info/img/on/juno/images/lock.gif

64.62.163.242

200 OK

339 B

URL HTTP/1.1
www.njapa.info/img/on/juno/images/lock.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 17 x 25\012- data
Size
339 B (339 bytes)
Hash
d9a0bd353bae36f4662c0f822597c729
41e175098cf148cc22c4d42064b0574296a6af97
3e1dc0902b04624d6313f699d663355e931a8c44efdc3ea95026867948a47834

HTTP Headers

GET /img/on/juno/images/lock.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: image/gif
Content-Length: 339
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:21 GMT

www.njapa.info/img/on/juno/images/card-security-image.gif

64.62.163.242

200 OK

23 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/images/card-security-image.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 579 x 222\012- data
Size
23 kB (22867 bytes)
Hash
8a48caf2f64ed3647230ec06382242a6
a448555253bbfc4743ea372d1bed0526732a5672
5d8f5eb7fa7103747ef6bd8b7180978719bb695028bb39c0649a8a16518f1fd8

HTTP Headers

GET /img/on/juno/images/card-security-image.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:21 GMT
Content-Type: image/gif
Content-Length: 22867
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:21 GMT

www.njapa.info/img/on/juno/event.do

64.62.163.242

200 OK

43 B

URL HTTP/1.1
www.njapa.info/img/on/juno/event.do
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/event.do HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 02 Jan 2023 13:19:31 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding

www.njapa.info/img/on/juno/images/pv.gif

64.62.163.242

200 OK

43 B

URL HTTP/1.1
www.njapa.info/img/on/juno/images/pv.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /img/on/juno/images/pv.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT

www.njapa.info/img/on/juno/event_001.do

64.62.163.242

200 OK

43 B

URL HTTP/1.1
www.njapa.info/img/on/juno/event_001.do
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/event_001.do HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 02 Jan 2023 13:19:31 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding

push.services.mozilla.com/

35.164.47.95

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.47.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Z4onoJacUeyHHPBaBQb44Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Nlf4Qz76pygKZ3t58SjiXfvmuwM=

www.njapa.info/img/on/juno/index_1.html

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/index_1.html
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
14 kB (13718 bytes)
Hash
a8b351ce95e132de3410c021f5375a18
c308486cc99b018863d69f0d7996d54c95c20a9e
750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/index_1.html HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding

www.njapa.info/img/on/juno/images/toggle-down.gif

64.62.163.242

200 OK

52 B

URL HTTP/1.1
www.njapa.info/img/on/juno/images/toggle-down.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 9 x 6\012- data
Size
52 B (52 bytes)
Hash
c347cf196a37c9b39d8a53b9dda2713c
f470d3339f267dd12b657b16c79414f2c17be214
944cc6df0c5576183fb457df713b365fa3ea304e3e169ca36cfae3f71c8f084f

HTTP Headers

GET /img/on/juno/images/toggle-down.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html
Cookie: PHPSESSID=mj9ghvqquc245fb0mjen9bsso4

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: image/gif
Content-Length: 52
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT

www.njapa.info/img/on/juno/images/gradient-leftrail-bottom.gif

64.62.163.242

200 OK

293 B

URL HTTP/1.1
www.njapa.info/img/on/juno/images/gradient-leftrail-bottom.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
GIF image data, version 89a, 187 x 11\012- data
Size
293 B (293 bytes)
Hash
9c071d49b52dd185cabc34181ab4982d
625727b0902a4700a483147df1240e0223979a87
f09328184cc424a74fb4b6d66587397be27c12fbf0ee0c5460bece6190f74ff7

HTTP Headers

GET /img/on/juno/images/gradient-leftrail-bottom.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: image/gif
Content-Length: 293
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT

www.njapa.info/img/on/juno/index_2.html

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/index_2.html
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (807), with CRLF line terminators
Size
14 kB (13718 bytes)
Hash
a8b351ce95e132de3410c021f5375a18
c308486cc99b018863d69f0d7996d54c95c20a9e
750647de765bffb84076637fcb86d416e5618b0435dc21b2ce0cb6965d1c0cc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/index_2.html HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
032ea16a79a95a9f16a60674c5f3ad5c
daea213df10fabce0cd857bcd4f3e64dd1293fad
4637cdfefc8df89f6f6cc042daa30247921cbd001bd16484b18c384f1e7b9781

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.njapa.info/img/on/juno/webicon_j.ico

64.62.163.242

200 OK

1.4 kB

URL HTTP/1.1
www.njapa.info/img/on/juno/webicon_j.ico
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Size
1.4 kB (1406 bytes)
Hash
0d75d631fcccef1581b1d816f9e13976
8a6342a99ab30afac772569758b89399f7a41ae8
0a24d86f8db757c512ff637d91e3267085fa0be5a4a88daae0063af80fedaec5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /img/on/juno/webicon_j.ico HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: image/x-icon
Content-Length: 1406
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Sat, 28 Jan 2023 20:27:22 GMT
Vary: Accept-Encoding

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
ee5913c7889337d8aad8b5bd16cfa7ef
7eb4207e86645bc4bebf8d05d1886e7bd6ddff79
8906479a2feea0c798a01cac496ea1b45703f3ae063fa142ec40bc292e9a913c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3069
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:22 GMT
Last-Modified: Sat, 21 Jan 2023 19:36:13 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5422c49666fc195ae94aa0f5cf837bfc
e0f1dd926cd9328ccf9cc99389337056c62f1043
f639aad2dc85708fa922b793660f13ae597f275a8ebf61e7e72fb2bce257cc76

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
ee5913c7889337d8aad8b5bd16cfa7ef
7eb4207e86645bc4bebf8d05d1886e7bd6ddff79
8906479a2feea0c798a01cac496ea1b45703f3ae063fa142ec40bc292e9a913c

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3069
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:22 GMT
Last-Modified: Sat, 21 Jan 2023 19:36:13 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279

fonts.googleapis.com/css?family=Open+Sans:400,300,300italic,400italic,600,600italic,700,700italic,800,800italic

142.250.74.106

200 OK

1.5 kB

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,300,300italic,400italic,600,600italic,700,700italic,800,800italic
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 kB (1527 bytes)
Hash
293706102553d2f6b546fb8275afd625
c28c5c1781ad197a89c8b798ae809fd01562a09f
a6e642f7eff740bbb248fe319c3ff3fa23e2e485fbb86e6f4ac3b6c246fcbbf0

HTTP Headers

GET /css?family=Open+Sans:400,300,300italic,400italic,600,600italic,700,700italic,800,800italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 20:27:22 GMT
date: Sat, 21 Jan 2023 20:27:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.njapa.info/css/bootstrap.min.css

64.62.163.242

200 OK

18 kB

URL HTTP/1.1
www.njapa.info/css/bootstrap.min.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (65367), with CRLF line terminators
Size
18 kB (18285 bytes)
Hash
5a52f5b38451606bd6c3946c0ab866d3
b8a5ab7a40b58f5ea9cac9810cef804182d9a080
f75bd3553704d6fd3b8caf6a2b4bc2106e581dd2c6cb2dae9ecddc61eb351bd7

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/style-fresh.css

64.62.163.242

200 OK

5.3 kB

URL HTTP/1.1
www.njapa.info/css/style-fresh.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
Unicode text, UTF-8 text, with very long lines (349), with CRLF line terminators
Size
5.3 kB (5270 bytes)
Hash
3c2552c6ff319eb6df10f0f733143933
1db7e63be23f174365dd05b22312fc51eb5cc12e
6778e0a80e5800b0e63be6c5677223f1eb2d2d380efa7dfee72117450789d394

HTTP Headers

GET /css/style-fresh.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/jquery.fancybox.css

64.62.163.242

200 OK

1.3 kB

URL HTTP/1.1
www.njapa.info/css/jquery.fancybox.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with CRLF line terminators
Size
1.3 kB (1287 bytes)
Hash
35a2f8b033ccf636a2524ba30abb08f9
eeee056192105195255f5b5e1e4311553cfcfc18
061b96bd675e0a3d046e4f35dd0d9af4ffc1d067008871baf5bc0d7050ec813c

HTTP Headers

GET /css/jquery.fancybox.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/animate.min.css

64.62.163.242

200 OK

3.6 kB

URL HTTP/1.1
www.njapa.info/css/animate.min.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (55361), with CRLF line terminators
Size
3.6 kB (3633 bytes)
Hash
9e727752f1a5f88be410f01794305056
8098a03110249459db252a3d6a45d34cb6a7bf32
314a2013fc2a904feb120c59f3a58f8452899fda584acc28a331d23da2c3c999

HTTP Headers

GET /css/animate.min.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/responsive_bootstrap_carousel_mega_min.css

64.62.163.242

200 OK

14 kB

URL HTTP/1.1
www.njapa.info/css/responsive_bootstrap_carousel_mega_min.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (65315), with CRLF line terminators
Size
14 kB (13733 bytes)
Hash
c0d217a1589fe83dffbbdfd160da6ad6
0fd8c8185de8dbb606e6835aad83e2a375ce1e86
791aac950484a9d19c5a71ad130189e25dd2a87b72a034fdff8461dff9b8b6bd

HTTP Headers

GET /css/responsive_bootstrap_carousel_mega_min.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/theme.css

64.62.163.242

200 OK

1.2 kB

URL HTTP/1.1
www.njapa.info/css/theme.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1180 bytes)
Hash
2b02378a143c470fcc5f3b40ed847acd
e87f817ee54af2ff495deba81c04260059c09093
428ba9c9df1ab049d8552d77b389af987935d9b728ee38a0ac7e787ff8f62b86

HTTP Headers

GET /css/theme.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/admin/jquery.dataTables.css

64.62.163.242

200 OK

2.1 kB

URL HTTP/1.1
www.njapa.info/css/admin/jquery.dataTables.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with CRLF line terminators
Size
2.1 kB (2062 bytes)
Hash
5403fb05b40df9d185a30ba512b98f65
75b0a3406439a29ee55d5083ed9f4b5666f94b67
d567e6ec36898f646de7c7a4a378da098ce4700d3dbec17f98a5b42cce4d40a9

HTTP Headers

GET /css/admin/jquery.dataTables.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/style.css?var=0.0.3

64.62.163.242

200 OK

3.3 kB

URL HTTP/1.1
www.njapa.info/css/style.css?var=0.0.3
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
assembler source, ASCII text, with CRLF line terminators
Size
3.3 kB (3271 bytes)
Hash
945827350343134542d71d51c09ff33b
33188eec40c99fa80802365c0c4b710c298d0974
f1c8278044cdf26d776ea1a40873af1b1784b72efe3adc32d0e45be388466796

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /css/style.css?var=0.0.3 HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/css/featherlight.min.css

64.62.163.242

200 OK

952 B

URL HTTP/1.1
www.njapa.info/css/featherlight.min.css
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
Unicode text, UTF-8 text, with very long lines (1258), with CRLF line terminators
Size
952 B (952 bytes)
Hash
83b968b9a53d798a8ffbb612dc106125
840b429d45cb35d2f031d395bbd45493521521b7
e36a7115db0a2a4c11fc85a140b1378496a1396c7cff0c38f1227b9680b054ed

HTTP Headers

GET /css/featherlight.min.css HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/jquery.touchSwipe.min.js

64.62.163.242

200 OK

3.7 kB

URL HTTP/1.1
www.njapa.info/js/jquery.touchSwipe.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (11576), with no line terminators
Size
3.7 kB (3744 bytes)
Hash
7b2591d57d4cdc0bd7c8d6629f475e79
55a6e12a7c8feb7cdd9efa1a47e3d3be900910da
b6310cd8ad04601714c9e9274974b71f4e1626db604a943dfe75495ab95ad94a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.touchSwipe.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/bootstrap.min.js

64.62.163.242

200 OK

9.4 kB

URL HTTP/1.1
www.njapa.info/js/bootstrap.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (32034), with CRLF line terminators
Size
9.4 kB (9438 bytes)
Hash
8841e7a1358d556f8ca9dcf324c1c880
b45fcbc429ea5f705eaccc799d59d3010a791316
b76afaf507c7347ab4193b0446b06179b6747e19a5e96c1f80c05b448d359110

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bootstrap.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/validate.js

64.62.163.242

200 OK

6.0 kB

URL HTTP/1.1
www.njapa.info/js/validate.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
Unicode text, UTF-8 text, with very long lines (20732), with CRLF line terminators
Size
6.0 kB (6023 bytes)
Hash
a4fe123bca6ce8b5f9d02c874592859e
41f6a1100449a7b8edcf58986d339c5a7c5f8df5
7ee529ebfafad29d5f2d6d802d268d4ec302bcb8dee2e2a1c303d51065c2eabb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/validate.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/jquery.fancybox.pack.js

64.62.163.242

200 OK

8.3 kB

URL HTTP/1.1
www.njapa.info/js/jquery.fancybox.pack.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (645), with CRLF line terminators
Size
8.3 kB (8272 bytes)
Hash
5e8c86da777a27aa49825750d9d812dc
1ba7c26ef294d7abc9b6f246f68fd0021239d0f3
dc1f85b0bebccf4e26c4257dbff09d8b0560d08a730044fa17144a3530f78ecc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.fancybox.pack.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/jquery-1.11.3.min.js

64.62.163.242

200 OK

32 kB

URL HTTP/1.1
www.njapa.info/js/jquery-1.11.3.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (32038), with CRLF line terminators
Size
32 kB (32402 bytes)
Hash
3b4f9d0ee97cb2baf6ea0e7efe100553
aa0535db73a602ed37d02239dd58c11dd932a495
24903f4e28b80a4853f9fc1bc2b040e2e583dad7be4bd0ad60a8fcb93401531b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery-1.11.3.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/jquery.bootstrap.newsbox.min.js

64.62.163.242

200 OK

1.5 kB

URL HTTP/1.1
www.njapa.info/js/jquery.bootstrap.newsbox.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5056), with CRLF line terminators
Size
1.5 kB (1473 bytes)
Hash
a60a649a63e4c80e80c3ca119b99a37e
cfa9a641a9ca8c217b3fca1457d3c30f779cf83d
1dae796eaf0d4b9da1efcf49a7ee26b3bd3bf7f3c70060caf84721201c0b27c3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.bootstrap.newsbox.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/bootstrap-filestyle.min.js

64.62.163.242

200 OK

1.7 kB

URL HTTP/1.1
www.njapa.info/js/bootstrap-filestyle.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (7190), with no line terminators
Size
1.7 kB (1721 bytes)
Hash
26a291e052a42184644913b0722b0347
a4a0d7c52b4e5cc9446a7d101df2bc2d9f625ee9
81312f3e38311b6b73054f3b370cb6502c18393f264bc5d234a977fd6d332e2e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/bootstrap-filestyle.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/jquery.mixitup.min.js

64.62.163.242

200 OK

7.9 kB

URL HTTP/1.1
www.njapa.info/js/jquery.mixitup.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with very long lines (28522), with CRLF line terminators
Size
7.9 kB (7896 bytes)
Hash
61b8a5dae10806db1bae69fcb9adc754
87a12a7dd95866ae1f7e8c4f5ad1b1762f08b957
8c0fe4ece77145e808d7fd34e6a92cb3539ddabce3f727871c2c374653cd6b26

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.mixitup.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/custom.js

64.62.163.242

200 OK

264 B

URL HTTP/1.1
www.njapa.info/js/custom.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
ASCII text, with CRLF line terminators
Size
264 B (264 bytes)
Hash
c22af8a4bc8af26c204987bbe20c2889
19c65febccea682f5effb642700d4511cfe6b613
d84b057178e09ca9d0f48ad23d78e5ab288577d99ff5c340d8119320bdabc06c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/custom.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:23 GMT
Vary: Accept-Encoding
Content-Encoding: br

www.njapa.info/js/featherlight.min.js

64.62.163.242

200 OK

2.9 kB

URL HTTP/1.1
www.njapa.info/js/featherlight.min.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
Unicode text, UTF-8 text, with very long lines (7380), with CRLF line terminators
Size
2.9 kB (2909 bytes)
Hash
5da0f0d4d08d6d85db91dc61c5a8c5c8
77c64dc98f80f03051237f3f90a546ea9b0d96f8
ebcc7bb3698ed36996819fbe1c04492c34fa6d40bd43c82e445f9144ac56279b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/featherlight.min.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:23 GMT
Vary: Accept-Encoding
Content-Encoding: br

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15449
Expires: Sun, 22 Jan 2023 00:44:52 GMT
Date: Sat, 21 Jan 2023 20:27:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15449
Expires: Sun, 22 Jan 2023 00:44:52 GMT
Date: Sat, 21 Jan 2023 20:27:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6033dad399355478c264e1c7c27e7f62
7d5546258015b8a834ee87b5a679be0545723e9d
5126b70d194535387e80aab563a02db1ade53c682b9db45eb533ff4001e6ed1c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5126B70D194535387E80AAB563A02DB1ADE53C682B9DB45EB533FF4001E6ED1C"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15449
Expires: Sun, 22 Jan 2023 00:44:52 GMT
Date: Sat, 21 Jan 2023 20:27:23 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7111 bytes)
Hash
f5195ac5d83278bed049661c0d1aaa4a
74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e
30af8f591b2d4f7c8de7d52ea53bb170ca426ef0550001c7802a7f993a6344df

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1122c75-908d-4e51-8a61-b64f7ab77c76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7111
x-amzn-requestid: d9b5e6b0-3995-4c70-be84-0b1b457b7143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmRlHtkIAMFiGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b73d-37d253ee68fe1b7e483097dd;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:33:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 86-hgCgiYN-PYLZgXJO79kM9Vm6DIiRixaz-kQZFaY0m5481x8GWlw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 22:04:24 GMT
age: 80579
etag: "74b3e81e1dfc9f0a50aa936ba02b357c0df3aa9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11562 bytes)
Hash
b08ef55971faa2683ab9f2af8a11dcec
a46c748cccb714f05a068c2438181328b4fbd57a
1d073abf25fbea2d85f34076eae47f9e89502846815094f5288b8e80762a8fe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcee2448b-66c5-48e7-89de-838393cf3f07.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11562
x-amzn-requestid: 67ff0d3d-ed43-4269-92f4-c3eb5445e9c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyBEhzIAMFnCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-27c6ebf6450d0e3275dad906;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8-aCSDcxTLree8fsGCxZEqY0272fNcqQEtHJ7aVAO6XjQRmjZXgqdw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 05:18:04 GMT
age: 54559
etag: "a46c748cccb714f05a068c2438181328b4fbd57a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6068 bytes)
Hash
b48f53e84a3ec564b35cf6b0754d09bb
dc7ad580f90e8af4349f409fb0302a79c672ff99
37d8f9a37eed22705123275ac7a36ff34bcdea1b2faaa7108a7112afe5a8201f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6068
x-amzn-requestid: 8962c77a-e852-426f-b37a-024546e0a2ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fD5VKG_zoAMFgZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb08ed-368af491496d024a0142b0e4;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: m9Elq65CekBIl_QIpAhrwIy_gNmHHhxO_lyhmgA_v7T0LUmCXNMOAQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 21:39:27 GMT
age: 82076
etag: "dc7ad580f90e8af4349f409fb0302a79c672ff99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28666e20-8b0b-428c-af81-822361800b23.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6902 bytes)
Hash
ee23b50996d59e5b3d4d99af0d0bc05f
76fbdbd85092cb841ca269206de46cc1b6e0f215
20e83f1e7f48eaee8f946958d4bd94d0c876dd2fdab85f3c4dfe088d7726e0eb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28666e20-8b0b-428c-af81-822361800b23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6902
x-amzn-requestid: 51921a6d-e5d4-4d5b-89d8-e966ce56a9f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fBlKKEBSIAMFVSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ca1bda-4e652a0913dc6d744ed92121;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 04:43:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xTyrULEpWdbNOLTX93KUkEsaAcfClLOZjKXojtNtzNsPqMqPsLUaQg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 09:18:07 GMT
age: 40156
etag: "76fbdbd85092cb841ca269206de46cc1b6e0f215"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1d34ea3-007b-405d-b0bb-99fdb4b08159.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (5963 bytes)
Hash
447c7832b50421193a9b962e621d8379
eddd33bded6e9c705ed5f0aa2ed036faeefa388f
00946fa4ac2a2c6c23a22e1c5bf2d1d3871975c9730cf522fa7f937bb431e0ba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1d34ea3-007b-405d-b0bb-99fdb4b08159.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5963
x-amzn-requestid: ef0681fa-95e9-4c43-94b2-4ebb1ff652b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6x_OG3goAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c76394-279293ff66d40dd65e0b8481;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 03:12:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cdy68Zstqi-I0pQxWuoT6oAyoU3h4vCACch4aYJynOFHWZ-exJNcRg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 00:03:42 GMT
age: 73421
etag: "eddd33bded6e9c705ed5f0aa2ed036faeefa388f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.njapa.info/js/admin/jquery.dataTables.js

64.62.163.242

200 OK

104 kB

URL HTTP/1.1
www.njapa.info/js/admin/jquery.dataTables.js
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
Unicode text, UTF-8 text, with very long lines (1758), with CRLF line terminators
Size
104 kB (103658 bytes)
Hash
39abde5f5bec84fb14f003b2beba1336
58ff3a48b58a2467b766ac686cb54eb41e8107ce
002e46a91044fd14c2ecf3e037304e2ff1e02248058360b2c1fedb203c2c269d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/admin/jquery.dataTables.js HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Cache-Control: private
Expires: Sun, 21 Jan 2024 20:27:22 GMT
Vary: Accept-Encoding
Content-Encoding: br

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F970e5016-1064-4d66-9524-d77906184f93.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12866 bytes)
Hash
2422bc3ba3140462f4507b7a4fe3a746
d2b1d477d56fa40ca4d5e5be4b31667d5e3977a3
90f04120820c28da092bdd235a141a8ae6347f73025dbcf235a1562abf4dd9d6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F970e5016-1064-4d66-9524-d77906184f93.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12866
x-amzn-requestid: fe1078a2-3e26-4906-b7b4-73c9fd315e0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6w4ZHPLoAMFw8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c761cf-7ae3119b62b0ccef08dcd2af;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 03:04:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PDqi-xzgWEYzXvowqCydSHlX2XVRikLvoJxgk1jU6zMTZLYFzGFsVg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 05:39:41 GMT
age: 53262
etag: "d2b1d477d56fa40ca4d5e5be4b31667d5e3977a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e6d21eff1927f7a74984663b16cfe21a
b747f7d42cdf7cfea6900348cd257066b2634222
a4343acb5bda29aa0d6d64bbefd6bc07a1c5e0166646171be74f4a1d266e3c92

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.njapa.info/images/footer-logo.jpg

64.62.163.242

200 OK

28 kB

URL HTTP/1.1
www.njapa.info/images/footer-logo.jpg
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 244x108, components 3\012- data
Size
28 kB (27688 bytes)
Hash
1886c67cb63dda0c9f1550e258d524ce
9c06a86928c66af212a0eb109cca38034d1dd7bd
47126990c4a711ba78194a1582554818fb235785a039e4999ad48e90b9f7807f

HTTP Headers

GET /images/footer-logo.jpg HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:23 GMT
Content-Type: image/jpeg
Content-Length: 27688
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:23 GMT

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.njapa.info
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 18:52:41 GMT
expires: Tue, 16 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 437682
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

142.250.74.35

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.njapa.info
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 20 Jan 2023 07:08:09 GMT
expires: Sat, 20 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 134354
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
25d59e4444b16818a49fec7128c90dcd
ea263f33790881a01e317fa03d935f7109523e41
22e26ea1917d1a0fed0b2af636f1baecb59768b0f85c9ab6b1c37d45e84dfa2d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 20:27:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.njapa.info/upload/logo/logo_260.jpg

64.62.163.242

200 OK

28 kB

URL HTTP/1.1
www.njapa.info/upload/logo/logo_260.jpg
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 247x108, components 3\012- data
Size
28 kB (28477 bytes)
Hash
08e39d48a4cc00b1787df853433aa64e
ad3918d559d0b92f04e63be6e2fb7756db77904e
de94d296157084b98168c649e21d5ff1323d0d53346de70da13498cd84ebb72c

HTTP Headers

GET /upload/logo/logo_260.jpg HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Cookie: PHPSESSID=budmb2ns161ugnhku6rvqp6q93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:23 GMT
Content-Type: image/jpeg
Content-Length: 28477
Connection: keep-alive
Last-Modified: Mon, 31 Aug 2000 00:00:00 GMT
Accept-Ranges: bytes
Cache-Control: public
Expires: Mon, 20 Feb 2023 20:27:23 GMT

www.njapa.info/img/on/juno/spacer.gif

64.62.163.242

200 OK

0 B

URL HTTP/1.1
www.njapa.info/img/on/juno/spacer.gif
IP
64.62.163.242:0
ASN
#6939 HURRICANE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /img/on/juno/spacer.gif HTTP/1.1
Host: www.njapa.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.njapa.info/img/on/juno/continue.html
Cookie: PHPSESSID=mj9ghvqquc245fb0mjen9bsso4

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 20:27:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding

code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css

104.26.6.173

200 OK

0 B

URL HTTP/2
code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css
IP
104.26.6.173:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 21 Jan 2023 20:27:22 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Fri, 28 Oct 2022 02:55:05 GMT
access-control-allow-origin: *
etag: W/"635b4489-c854"
expires: Fri, 20 Jan 2023 04:21:01 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
x-github-request-id: F4FC:5C5A:241E4D:260AEA:63CA145A
via: 1.1 varnish
age: 68841
x-served-by: cache-bma1630-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674264002.568419,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 484743ff922ff85d5f73a1ba8a12335e4d617144
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHTt7r%2BiBHqX0d%2FqR1SPbxR6AtipypElkfM9aO9Q9lY1TrB7jBUdBZW%2Bm%2B8Vk%2FTHw1Y9m7oAUb3tZ8Et6SjvPcDWItwhJjbCAbZWP4BYca5fh%2F00ZnrNrLbXzSnDo%2B%2FQHZ6%2FICUc5noj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78d2ca486aca1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat:400,700

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat:400,700
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 21 Jan 2023 20:27:22 GMT
date: Sat, 21 Jan 2023 20:27:22 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css

104.18.10.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.njapa.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 21 Jan 2023 20:27:22 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 19:04:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 19777090
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78d2ca495db6b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (40)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML