Report - zap1088824-2.plesk07.zap-webspace.com/

Report Overview

Submitted URL
zap1088824-2.plesk07.zap-webspace.com/
IP
92.42.47.80
ASN
#30823 combahton GmbH
Submitted
2023-05-17 11:49:13
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
zap1088824-2.plesk07.zap-webspace.com	unknown	2017-02-16	2023-05-17	2023-05-17	494 B	624 B	92.42.47.80
assets.plesk.com	120376	1999-06-13	2016-07-25	2023-05-16	2.2 kB	190 kB	185.76.9.14
ocsp.r2m01.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-05-16	680 B	2.0 kB	54.230.80.227
firehose.us-west-2.amazonaws.com	5730	2005-08-18	2017-01-30	2023-05-16	1.0 kB	704 B	35.89.72.109

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-05-17	medium	zap1088824-2.plesk07.zap-webspace.com/

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-05-17	medium	zap-webspace.com

ThreatFox

No alerts detected

JavaScript (3)

	URL	Size	First Seen	Last Seen
	assets.plesk.com/static/default-website-content/public/default-server-index.js	27 kB	2023-03-26	2023-07-18
Pretty URL assets.plesk.com/static/default-website-content/public/default-server-index.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:06:27 Last Seen2023-07-18 09:23:20 Times Seen1487 Hash 518c8db83fdc1cf389d51135bd107f47 5f2d2af2562ae28e434bb83fed166d46e646e25c 5d252b61af8a02ecf73a3ff3e501c9bd068d7e6faf4312b5c50a5c4c2e17bcaa Loading...

	assets.plesk.com/static/default-website-content/public/bundle.js	295 kB	2023-03-26	2023-11-13
Pretty URL assets.plesk.com/static/default-website-content/public/bundle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 08:06:27 Last Seen2023-11-13 09:33:56 Times Seen4286 Hash 26c98df9bcdad657b5165c13f7bf206e 4447bc2d08af637b3b74bea3cc74ce036616f81e f98c1f60e8868b1864ea53f7065ce6c0844bb1d0f069e0fb3cb5c86796264463 Loading...

		Size	First Seen	Last Seen
	#1 Write - a9b067f6baf4b75d53894dc5bcdd6141	17 kB	2023-05-17	2023-05-17
Pretty Observations First Seen2023-05-17 13:49:14 Last Seen2023-05-17 13:49:14 Times Seen1 Hash a9b067f6baf4b75d53894dc5bcdd6141 6a45fda8ea1fb5631d32ff328f8d3c1b4a9082c4 9d4038777e406cb6744a65b8e244ad3062168e0dd21ffe97b47308f38104a3bb Loading...

HTTP Transactions (8)

URL IP Response Size

zap1088824-2.plesk07.zap-webspace.com/

92.42.47.80

297 B

URL
zap1088824-2.plesk07.zap-webspace.com/
IP
92.42.47.80:0
ASN
#30823 combahton GmbH

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
297 B (297 bytes)
Hash
65edd685f7730040640937cc4975d7f6
bde67e6c0da4c907d28aad4ca5ac5b99b0caf20d
87429cf57d09aa62609da54414f9e4160dcc073459562296987fc532a98798ab

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: zap1088824-2.plesk07.zap-webspace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 17 May 2023 11:48:56 GMT
content-type: text/html
content-length: 297
x-accel-version: 0.01
last-modified: Wed, 26 May 2021 07:59:10 GMT
etag: "1b0-5c33704850f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2

assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-700-54321e.woff2

185.76.9.14

18 kB

URL
assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-700-54321e.woff2
IP
185.76.9.14:0
ASN
#60068 Datacamp Limited

File type
Web Open Font Format (Version 2), TrueType, length 17784, version 1.0\012- data
Size
18 kB (17784 bytes)
Hash
8d7a3f034881d1712b3325cc71425c10
9594f24367800a20297a96c2d4f957e62c63e207
ced2d8e02e2fbf08d2edec9b5f13648ed8348588a05f7181632f3c1dd6e1f5c3

HTTP Headers

GET /static/default-website-content/public/fonts/inter-v12-latin-700-54321e.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zap1088824-2.plesk07.zap-webspace.com
DNT: 1
Connection: keep-alive
Referer: https://zap1088824-2.plesk07.zap-webspace.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 May 2023 11:48:56 GMT
content-type: font/woff2
content-length: 17784
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Fri, 17 Mar 2023 03:37:05 GMT
access-control-allow-origin: *
etag: "6413e061-4578"
expires: Fri, 17 Mar 2023 03:48:37 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: B7F0:ABA0:191D863:19F39F1:6413E0BD
via: 1.1 varnish
age: 0
x-served-by: cache-bma1661-BMA
x-cache-hits: 0
x-timer: S1679024317.181806,VS0,VE118
vary: Accept-Encoding
x-fastly-request-id: 63d47361e3f47c9e0d4fd08a1fdf898710bb4473
server: CDN77-Turbo
x-77-nzt: AblMCQ2v/Zz/KQAAAA
x-77-nzt-ray: c0a4cc28d2b2ff6c28bf646463104724
x-accel-expires: @1684324695
x-accel-date: 1684324095
x-cache: HIT
x-age: 41
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-regular-be7cb1.woff2

185.76.9.14

17 kB

URL
assets.plesk.com/static/default-website-content/public/fonts/inter-v12-latin-regular-be7cb1.woff2
IP
185.76.9.14:0
ASN
#60068 Datacamp Limited

File type
Web Open Font Format (Version 2), TrueType, length 16708, version 1.0\012- data
Size
17 kB (16708 bytes)
Hash
68c477c4c76baab3a8d1ef6a55aa986f
4af50379e13514558dd53d123db8ea101ec5e24c
0364d368abf457d4e70dbc7a7a360f3486eaea2837b194915b23d4398bee91ac

HTTP Headers

GET /static/default-website-content/public/fonts/inter-v12-latin-regular-be7cb1.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zap1088824-2.plesk07.zap-webspace.com/
Origin: https://zap1088824-2.plesk07.zap-webspace.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 17 May 2023 11:48:56 GMT
content-type: font/woff2
content-length: 16708
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Fri, 17 Mar 2023 03:37:05 GMT
access-control-allow-origin: *
etag: "6413e061-4144"
expires: Fri, 17 Mar 2023 03:48:33 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 952C:C749:1061D67:10EB411:6413E0B8
via: 1.1 varnish
age: 0
x-served-by: cache-bma1622-BMA
x-cache-hits: 0
x-timer: S1679024313.947507,VS0,VE152
vary: Accept-Encoding
x-fastly-request-id: be1b9a3b3be7a9f9bafd6b6d88eb58e6c57e2547
server: CDN77-Turbo
x-77-nzt: AblMCQ3RAxb/KQAAAA
x-77-nzt-ray: c0a4cc2896a6a26e28bf6464e467a925
x-accel-expires: @1684324695
x-accel-date: 1684324095
x-cache: HIT
x-age: 41
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
18a588b806f0b668be4734acc0a4ebe3
e84fe16d312c94e9ba650d24bc7535b1d3755e58
6e63ecf7dffd964ce2be1a84a0d7c95510f6394a57a9fc81b15af6248398a44f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113844
Date: Wed, 17 May 2023 11:48:57 GMT
Etag: "6463ca8a-1d7"
Expires: Thu, 18 May 2023 19:26:21 GMT
Last-Modified: Tue, 16 May 2023 18:25:14 GMT
Server: ECAcc (nya/790B)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FRQ_fJewRSCZ8ExRHoF7T2pgHhSpHFH46L-k8FL_efJU3SfNW2T_Jg==
Age: 3667

ocsp.r2m01.amazontrust.com/

54.230.80.227

471 B

URL
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
18a588b806f0b668be4734acc0a4ebe3
e84fe16d312c94e9ba650d24bc7535b1d3755e58
6e63ecf7dffd964ce2be1a84a0d7c95510f6394a57a9fc81b15af6248398a44f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113781
Date: Wed, 17 May 2023 11:48:57 GMT
Etag: "6463ca8a-1d7"
Expires: Thu, 18 May 2023 19:25:18 GMT
Last-Modified: Tue, 16 May 2023 18:25:14 GMT
Server: ECAcc (nya/79E6)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jUwjNQIG6kEz5K4B50tcRiSMbiKKpnITTfoJIO4fpgSJPzhVfdfzFA==
Age: 3604

assets.plesk.com/static/default-website-content/public/img/stars-fb15b6.svg

185.76.9.14

117 kB

URL
assets.plesk.com/static/default-website-content/public/img/stars-fb15b6.svg
IP
185.76.9.14:0
ASN
#60068 Datacamp Limited

File type
gzip compressed data, from Unix\012- data
Size
117 kB (116853 bytes)
Hash
b4b6704448aeb1349a3a3d2d04d7dadd
34f9efcf4a81e6e371601de0090a0810b15d7f3f
a980da94be571949e0aaea0d1edcab308564df20345de81f9f00a7d35e1f22b5

HTTP Headers

GET /static/default-website-content/public/img/stars-fb15b6.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zap1088824-2.plesk07.zap-webspace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 May 2023 11:48:56 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Fri, 17 Mar 2023 03:37:05 GMT
access-control-allow-origin: *
etag: W/"6413e061-5c23"
expires: Fri, 17 Mar 2023 03:57:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3A86:12FD:2874D2F:29E6239:6413E2E5
via: 1.1 varnish
age: 0
x-served-by: cache-bma1662-BMA
x-cache-hits: 1
x-timer: S1679024870.770016,VS0,VE1
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: 9f614a5f110d1b6ab525c40daf50f07abaa3c06e
server: CDN77-Turbo
x-77-nzt: AblMCQ39kEj/xwEAAA
x-77-nzt-ray: c0a4cc28d2b2ff6c28bf64647da74224
x-accel-expires: @1684324281
x-accel-date: 1684323681
x-cache: HIT
x-age: 455
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

assets.plesk.com/static/default-website-content/public/img/robot-4b152c.svg

185.76.9.14

35 kB

URL
assets.plesk.com/static/default-website-content/public/img/robot-4b152c.svg
IP
185.76.9.14:0
ASN
#60068 Datacamp Limited

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
35 kB (34728 bytes)
Hash
a11790af7b8e734f7391d2695e96bfc8
af73e0993f9a486721d75bc21d6eb6e17104ece9
01084e18312cb2af2d6b89b7348a7f1e5ae8faf10c0bd9ce478dd38adb2955a3

HTTP Headers

GET /static/default-website-content/public/img/robot-4b152c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zap1088824-2.plesk07.zap-webspace.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 17 May 2023 11:48:56 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Fri, 17 Mar 2023 03:37:05 GMT
access-control-allow-origin: *
etag: W/"6413e061-15bb6"
expires: Fri, 17 Mar 2023 03:54:32 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 8F44:12FD:2872737:29E394A:6413E220
via: 1.1 varnish
age: 0
x-served-by: cache-bma1683-BMA
x-cache-hits: 0
x-timer: S1679024673.760433,VS0,VE120
vary: Accept-Encoding, Accept-Encoding
x-fastly-request-id: 55123213d48c9ef28847ec9af49880abdb49f5f8
server: CDN77-Turbo
x-77-nzt: AblMCQ0uzLT/9AAAAA
x-77-nzt-ray: c0a4cc28d2b2ff6c28bf6464c6e04424
x-accel-expires: @1684324492
x-accel-date: 1684323892
x-cache: HIT
x-age: 244
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

firehose.us-west-2.amazonaws.com/

35.89.72.109

246 B

URL
firehose.us-west-2.amazonaws.com/
IP
35.89.72.109:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
246 B (246 bytes)
Hash
e766356fc033f073c7ff978b441bd96c
c8352ceb0f96093285957ff1a8bb5157c33d96c4
c4badb492a63085433cd513488ea3e87a1c93e3a69655fdedfc73d5b6d40e163

HTTP Headers

POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.1335.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: 026df1dc9ef14382e050493b4c2cae26104747f9ce6a4fd7e46f152f5101c433
X-Amz-Date: 20230517T114854Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJL6JKBNRGP/20230517/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=bfef1ee29c704cb7cabca4171eb6b8c02ef675c1861db25eb8e689bf224f13b0
Content-Length: 108
Origin: https://zap1088824-2.plesk07.zap-webspace.com
DNT: 1
Connection: keep-alive
Referer: https://zap1088824-2.plesk07.zap-webspace.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amzn-RequestId: fe00cc71-1bda-2f5f-a2de-0d18b57ecf84
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: QJMBlI8k1wD5Sm23Qc/V7y0CGL0sd3+niorydfVostmIWmIsRtuOVjK9g/LnNQEdW+0HunTMLSK2hdEXkgMzjF2zQJNoGfZb
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 246
Date: Wed, 17 May 2023 11:48:56 GMT

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (8)

URL

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL