ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 02d410c562c3ee1420ef2940c55ab8e2
ca1679c6e7ed2077891f1165d2f8e852f62d6e74
d8066fc494f727107c55ea2d39a28ecf72144fd0ac8e8cbcef147116e9c35055
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Jun 2023 23:17:27 GMT
ETag: "ca1679c6e7ed2077891f1165d2f8e852f62d6e74"
Last-Modified: Sat, 03 Jun 2023 23:17:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2835
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d1c3439f9dfb518-OSL
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
5.23.50.56200 OK 2.2 kB URL User Request GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
IP 5.23.50.56:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (726), with CRLF line terminators
Hash 6690cf6868d9b267d772c07d361e6b22
cd9ac3cb478625bb760f8c30c5a3cfa9ca89a84a
ace0ff01bcbf27edbdf4dc42ffe01db57990ec904be88083c7541457d2175395
GET /POSTALE/POSTALE/DSP2/login/login.php? HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/bootstrap.min.css
5.23.50.56200 OK 23 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/bootstrap.min.css
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with very long lines (65324)
Hash a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/css/bootstrap.min.css HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: text/css
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-2606e"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/helpers.css
5.23.50.56200 OK 4.6 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/helpers.css
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with very long lines (41750), with CRLF line terminators
Hash fd877f138d23d5a790645eb95167aec3
ee2f01ca01c5f7e6f674ad79a9fea30f78a66f2c
f839760d1621714efedeb3eb08b25e619812dcc33d77aceb0daf405ac727a765
GET /POSTALE/POSTALE/DSP2/assets/css/helpers.css HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: text/css
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-a318"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/fonts.css
5.23.50.56200 OK 316 B URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/fonts.css
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with CRLF line terminators
Hash 489bf4af64d712bd387b4e4c8b158eba
21cc8f3dc55483a53adac5f2785e4cbae985e579
a4592a42945beac4574095cb95f96f482116e2076a20f1ef8629a6021a643f6a
GET /POSTALE/POSTALE/DSP2/assets/css/fonts.css HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: text/css
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-6d7"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/main.css
5.23.50.56200 OK 1.7 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/main.css
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with very long lines (6949), with CRLF line terminators
Hash 5aec67a2f1a0b885f7a1262d7cc590fa
ed95e5bffa5115b7a3c0e0ffa054b28a468393ad
6c9f3bd3803218c842991179eaef618f5aa1519551360e1834fda108ad5c68cc
GET /POSTALE/POSTALE/DSP2/assets/css/main.css HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: text/css
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-1b27"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/popper.min.js
5.23.50.56200 OK 7.2 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/popper.min.js
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with very long lines (20164), with CRLF line terminators
Hash 5644e6835941af44dcb5cead916c2b79
6eb1840d55338895ce6ecc3eab56132b1d152b93
315ac5479007d2e864a4b51f505fd0785ebbbe931a6b511467fa49504a082c58
GET /POSTALE/POSTALE/DSP2/assets/js/popper.min.js HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-4f74"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/bootstrap.min.js
5.23.50.56200 OK 25 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/bootstrap.min.js
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with very long lines (328), with CRLF, CR line terminators
Hash 5e7d168ed3203dab385e83f97f98f725
6d19a7d83a87b427f2fc5ced2c0e86c92f58a142
2caa6404ddb0de2b9d191b1e2c8b5c35c68ca48f2a9521140bbf83b27c063700
GET /POSTALE/POSTALE/DSP2/assets/js/bootstrap.min.js HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-21388"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/top-header-left.png
5.23.50.56200 OK 7.8 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/top-header-left.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 582 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 05d0bcebf3df7ee2a73dee6cded8748c
3a2063b7ea5f324dfba774b9cf2671480f387fd3
004c0d90d64d9266498f39a020a0a6fe4110b94f8447daea5b1373d3e7934aad
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/top-header-left.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 7766
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-1e56"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/main.js
5.23.50.56200 OK 548 B URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/main.js
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type Algol 68 source text\012- Pascal source, ASCII text, with CRLF line terminators
Hash cf6ff0eef580f3393e37146c85def933
dee034e0cd52594132ca4f73911c1386b660a1ff
6485f454bae479e9e556ac912a9bfeee8619437989c5ff4423b3d5d6e8e5e209
GET /POSTALE/POSTALE/DSP2/assets/js/main.js HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-77c"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/top-header-left2.png
5.23.50.56200 OK 1.4 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/top-header-left2.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 83 x 41, 8-bit/color RGB, non-interlaced\012- data
Hash 6c8bd7116fa86f2ae3c0180d903925ef
bf8ddfd792a103dc6d5aacd11e9d903072684c70
c96109fef3e6ae0c4dffe3fcc9026352c44a2147b9fd2c4d6e08d32cdcf2641f
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/top-header-left2.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 1402
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-57a"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/top-header-right.png
5.23.50.56200 OK 3.2 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/top-header-right.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 165 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash a807d65c0c9d3f695f10e08980bc1b51
e1fa5b9f089087d9b0c94dfc1557d6de22fb6b8e
5b6cd7b81854519965959d1549226e565a77de441a694df48579868348513d21
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/top-header-right.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 3223
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-c97"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-left.png
5.23.50.56200 OK 14 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-left.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 481 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d9605f1532c3522c8bcbb0f29365c33
01d4c9d444aa4f64223febe842a7d1d371215dd1
c83e6ec9b5ceece6db819192b3f6f877fc64296b1ed27ec5b53cc5c4d86f8ab4
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/header-left.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 13753
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-35b9"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/jquery.min.js
5.23.50.56200 OK 31 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/jquery.min.js
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2f772fed444d5489079f275bd01e26cc
a8927ac2830b2fdd4a729eb0eb7f80923539ceb9
2b381363dda049f2d49a59037b228bc865d51ffb977c8f5c3547d5c28de48e3a
GET /POSTALE/POSTALE/DSP2/assets/js/jquery.min.js HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-15851"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/logo.png
5.23.50.56200 OK 6.4 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/logo.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 25722a7e1f0c794ae8b299897c61a03b
8657666cb41fd8fcd3e0202bb9c3327fba3f837f
f0f02c834c71eff3c9dbc749f81ea8be9c213326a6908e7b80a7da9cba637ae3
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/logo.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 6360
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-18d8"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-right.png
5.23.50.56200 OK 4.9 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-right.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 383 x 50, 8-bit/color RGBA, non-interlaced\012- Minix filesystem, V1 (big endian), 8916 zones\012- data
Hash 2375d45e3a3f1902e9e5e3509b729ab0
611da0b1ef30ce60cb99fc53e8f4e68e2c4b89a6
dc76d1d3963947047b414b58209d235ff6e36043fe66514606a260a8c3d96cb0
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/header-right.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 4864
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-1300"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/fonts/secure-asterisk.woff
5.23.50.56200 OK 3.2 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/fonts/secure-asterisk.woff
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type Web Open Font Format, TrueType, length 3176, version 0.0\012- data
Hash 374b020a914ea198d75d783535440a81
2dd183915d84f1a8deee4fdb1091af1cd2989e25
cc0b81d5e663b8abed0d6035739f40950ae99bcabb9a88f1e92eb910ae769cea
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/fonts/secure-asterisk.woff HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/fonts.css
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: application/font-woff
Content-Length: 3176
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-c68"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/fontawesome.min.js
5.23.50.56200 OK 387 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/js/fontawesome.min.js
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type ASCII text, with very long lines (65347), with CRLF line terminators
Size 387 kB (386600 bytes)
Hash a6756b0b8637e62f56d9d794b154ca12
5cd7e758e41375d85cef812d4578d5cd9b949ea7
21bd54c766f0a1385f24f0b9a074e83881d82288d9d31bab0e3076721121f52e
GET /POSTALE/POSTALE/DSP2/assets/js/fontawesome.min.js HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6477a7ac-10314e"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-right2.png
5.23.50.56200 OK 4.9 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-right2.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 503 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash 9252aa94fff77064c1ff6bcc5b7398dd
b4ff8e78716f29cccb54b70906794a44fd7a1a21
37a288f0c7a73fecda634b2262ba8d7c23953e2268aa9a6dabc21955b5a174e9
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/header-right2.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 4897
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-1321"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/footer.png
5.23.50.56200 OK 53 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/footer.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 907 x 595, 8-bit/color RGBA, non-interlaced\012- data
Hash f96a98795792fd92b817f70089d30c31
b2ca6b578360c9f67c6af13a25568ac31fb08f7b
5bb399100f821a7bada7a8faa36de1e64dd19bcde8854eb9980b5b07cb74de1c
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/footer.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 53035
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-cf2b"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-right3.png
5.23.50.56200 OK 1.2 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/header-right3.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 228 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash f2766a53f341aa32b32efef5152cb92b
472e5b58d6f177a1dae8c272b209aa0a4c7c2731
f209ec1d94d89a8fa9cdadffa82ac9f6bb696687d21caaf0a15007199fdbcbfc
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/header-right3.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 1187
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-4a3"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/content.png
5.23.50.56200 OK 462 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/content.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 939 x 2166, 8-bit/color RGBA, non-interlaced\012- data
Size 462 kB (461751 bytes)
Hash a163946bb2c40cfce6b8eb1f7c5a4f63
77405f7e4c20b1e6088ec70c468edacda7638aac
8f7220fde4861e61d5d1f84538771bf385a161f5889476028a61341ac01875d0
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/content.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/css/main.css
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:20 GMT
Content-Type: image/png
Content-Length: 461751
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-70bb7"
Expires: Wed, 05 Jul 2023 00:54:20 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/favicon.png
5.23.50.56200 OK 2.8 kB URL GET HTTP/1.1 cs99548.tw1.ru/POSTALE/POSTALE/DSP2/assets/images/favicon.png
IP 5.23.50.56:80
Requested by http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 95148d7f825922493ef706dd98457ff4
a0a5b1c2f52bb002000a04de5aa74d8ed25fc703
c78d2b529472912245060a36f2393b664716b51511b6bdcfa385fba224ba3811
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /POSTALE/POSTALE/DSP2/assets/images/favicon.png HTTP/1.1
Host: cs99548.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://cs99548.tw1.ru/POSTALE/POSTALE/DSP2/login/login.php?
Cookie: PHPSESSID=fe85349e1cd00e280b5125836b4f3daf
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.1
Date: Sun, 04 Jun 2023 00:54:21 GMT
Content-Type: image/png
Content-Length: 2817
Last-Modified: Wed, 31 May 2023 20:01:48 GMT
Connection: keep-alive
ETag: "6477a7ac-b01"
Expires: Wed, 05 Jul 2023 00:54:21 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes