| canvashub.com/myfiles/ac3dc3031d303b9b969c3a3ae5ba2ff7/login.php?cmd=login_submit&id=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac&session=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac | 23.227.38.65 | | 0 B |
URL User Request GET canvashub.com/myfiles/ac3dc3031d303b9b969c3a3ae5ba2ff7/login.php?cmd=login_submit&id=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac&session=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac IP23.227.38.65:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | high | ET PHISHING Generic Phishkit Activity (GET) |
GET /myfiles/ac3dc3031d303b9b969c3a3ae5ba2ff7/login.php?cmd=login_submit&id=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac&session=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac HTTP/1.1
Host: canvashub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Jun 2023 13:52:06 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Sorting-Hat-PodId: 92
X-Sorting-Hat-ShopId: 5252907082
X-Storefront-Renderer-Rendered: 1
Location: https://canvashub.com/myfiles/ac3dc3031d303b9b969c3a3ae5ba2ff7/login.php?cmd=login_submit&id=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac&session=c5cc0e419b6a85ea20fb339b495d22acc5cc0e419b6a85ea20fb339b495d22ac
X-Redirect-Reason: https_required
X-Frame-Options: DENY
Content-Security-Policy: frame-ancestors 'none';
X-ShopId: 5252907082
X-ShardId: 92
Vary: Accept
powered-by: Shopify
X-Shopify-Stage: production
X-Dc: gcp-europe-north1,gcp-europe-west1,gcp-europe-west1
X-Request-ID: 072d2e64-c1fd-4c8f-a126-2b6ba3f23462
X-Download-Options: noopen
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
X-Content-Type-Options: nosniff
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=srPO83s0lAnq0PpkPEmBqJ6MGUS95N5GaDUIQGTCJrT4edsyVZSf2tqN9l%2B2%2BXjt4k61ixkekJ856Q0%2BHh1HtO2MlFDoZ2CkzziQKj1HJMnNcPZy%2BMOC2wVlS1awIzg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server-Timing: processing;dur=7, db;dur=2, asn;desc="50304", edge;desc="ARN", country;desc="NO", pageType;desc="404", servedBy;desc="qh2l", requestID;desc="072d2e64-c1fd-4c8f-a126-2b6ba3f23462", cfRequestDuration;dur=65.999985
Server: cloudflare
CF-RAY: 7d20a7864fe695f1-ARN
alt-svc: h3=":443"; ma=86400
|