socgene-acti.inovaperf.me/
185.157.247.2302 Found 0 B URL User Request GET HTTP/2 socgene-acti.inovaperf.me/
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET / HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Mon, 04 Dec 2023 21:57:19 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66; path=/
location: auth/?pwd=sg
x-powered-by: PHP/8.2.13, PleskLin
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/?pwd=sg
185.157.247.2302 Found 0 B URL User Request GET HTTP/2 socgene-acti.inovaperf.me/auth/?pwd=sg
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/?pwd=sg HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Mon, 04 Dec 2023 21:57:19 GMT
content-type: text/html; charset=UTF-8
content-length: 0
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: g9GHv2/login.php?id=35517619
x-powered-by: PHP/8.2.13, PleskLin
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
185.157.247.2200 OK 2.6 kB URL User Request GET HTTP/2 socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 1e0bfdc51639b1f5e1304c324e888b5a
cd509f78bcba810794c417f9c41bb0bc00cc4c0c
146a17dd8063649f58d94ed8a708d3505bedcd611c94bbc04bcbc67661266bda
GET /auth/g9GHv2/login.php?id=35517619 HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:19 GMT
content-type: text/html; charset=UTF-8
content-length: 2563
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.2.13, PleskLin
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/logo.png
185.157.247.2200 OK 2.5 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/logo.png
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type PNG image data, 192 x 26, 8-bit/color RGB, non-interlaced\012- data
Hash 07d389f224c55f59359aa8ab746a31d1
ff3281d7db9e03ecba345c2b4b57d617dfd11926
19b11e9d230e5fc6e11924e8c07f604d7884a4107794810bc70eec129b915795
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/logo.png HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/png
content-length: 2487
last-modified: Wed, 01 Apr 2020 08:44:14 GMT
etag: "5e84545e-9b7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/new-account.png
185.157.247.2200 OK 2.5 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/new-account.png
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type PNG image data, 171 x 44, 8-bit/color RGB, non-interlaced\012- data
Hash b622349d9f97e5c39d581e873857edf2
a37280d3e63eb4cf4ae734f2e08e5dd61025bb80
12151d5190ac2f09ed928c16b833c8f4ab3daab155cf9c7c00fcd2466b6012bd
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/new-account.png HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/png
content-length: 2487
last-modified: Wed, 01 Apr 2020 08:44:48 GMT
etag: "5e845480-9b7"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/logo2.jpg
185.157.247.2200 OK 1.3 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/logo2.jpg
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:09 02:50:21], baseline, precision 8, 30x30, components 3\012- data
Hash faae31dc56abb70d92d5802d5397ecfd
20ea10febe43d77f015205993a7941dc49ac6d57
3dc3d4f09a6caa938a754adf03cb9f7661ebffa085a55de8f04d2b52e1e5e46b
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/logo2.jpg HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/jpeg
content-length: 1258
last-modified: Sat, 09 Nov 2019 07:50:20 GMT
etag: "5dc66fbc-4ea"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.1.min.js
151.101.194.137200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.6.1.min.js
IP 151.101.194.137:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 00727d1d5d9c90f7de826f1a4a9cc632
ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2
a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74
GET /jquery-3.6.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15e40"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 04 Dec 2023 21:57:20 GMT
age: 2343527
x-served-by: cache-lga13629-LGA, cache-bma1626-BMA
x-cache: HIT, HIT
x-cache-hits: 5, 64706
x-timer: S1701727040.415502,VS0,VE0
vary: Accept-Encoding
content-length: 30957
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/remember.jpg
185.157.247.2200 OK 3.3 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/remember.jpg
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2019:11:08 21:41:22], baseline, precision 8, 232x26, components 3\012- data
Hash 749caf8b2ee7d53e19e9aefc264f1edd
6e47816ee429dce1b7bc90d3c4e7077f7717abef
523f01e171ebf63770e025487bdcfe986841d4ec2da50c1486d2632066eacd5f
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/remember.jpg HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/jpeg
content-length: 3349
last-modified: Sat, 09 Nov 2019 02:41:22 GMT
etag: "5dc62752-d15"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/valider.png
185.157.247.2200 OK 1.8 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/valider.png
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type PNG image data, 230 x 44, 8-bit/color RGB, non-interlaced\012- data
Hash 25513691f92b8ccb0190e5c2dfbb48e9
d5251fab777fe48e33cd5fdd59467b7a0af7acd7
23882f29cd743d1e0058ac22d2a791196952dab003f83df83d186e94b175119d
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/valider.png HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/png
content-length: 1808
last-modified: Wed, 01 Apr 2020 08:42:42 GMT
etag: "5e845402-710"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js
104.17.24.14200 OK 3.1 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js
IP 104.17.24.14:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (542)
Hash cc290e6c3aeecf5021dd82ad8df2512a
fb983aecd3940e8ebbfe5e74c8099cee9223c957
2a0db34dc14ef4b5ce73b230701c7561e5012667a4c9cb274ecab646e1474995
GET /ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 3074
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-2087"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 580033
expires: Sat, 23 Nov 2024 21:57:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H07h3mqesMymniocPslqXsQMjiD%2FuMQDSxUSHQ6KKh1BbitdlX3K1RRWv3dupS6yQFaxd6nxLDctdaMRPazZ8GHt8W8D5yDn%2BUgSXvVP9O78mysC86o1v4cowtP6aLSG3kw3vmbA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83074df29dc856cc-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/arrow.png
185.157.247.2200 OK 199 B URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/arrow.png
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type PNG image data, 8 x 9, 8-bit/color RGB, non-interlaced\012- data
Hash c50af955c72395d40f3e756bbbdf9204
c7f44da7e825a94b7fab77950b93abd2fcd29fb4
034d52b5025461d4dc4786e7a4047e6ddddb023cd8ded716dc3ae55ed9fc1781
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/arrow.png HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/png
content-length: 199
x-accel-version: 0.01
last-modified: Tue, 18 May 2021 05:44:34 GMT
etag: "c7-5c294346c1480"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js
104.17.24.14200 OK 418 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js
IP 104.17.24.14:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65317)
Size 418 kB (418541 bytes)
Hash d5beb8fa265f90be5ccadd6b32b8672f
7bdc23c06b51e7e42c05de486680a3c18aa5ce5a
6a769e18b06859751eaa2259044a6ff76e3ddcd6572a516d8ce3a2d7b8c7538e
GET /ajax/libs/font-awesome/6.2.0/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 418541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630e6e62-662ed"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1019701
expires: Sat, 23 Nov 2024 21:57:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3CSTFTqB0u0vlPt6pnNk%2FcEe5P17y%2FVLGXDOZlhZ4p7dASTEOP5RIk7EzW2VUngPohUH3KRJilVXjg%2Bpjb8s7pKMcRmzbS9%2BPyvRRoIjGPMI9VdgpMj1iQzmAWOrBbORxjw9XSdB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 83074df2adcb56cc-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/marker.png
185.157.247.2200 OK 675 B URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/marker.png
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type PNG image data, 25 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 0817bcebab16317cc84aa572ecf2aa8e
3917cd28d2528d286dad78bae8151a56cce9b919
aa39a33b5032c599052363d19ada053b116b2b8185e58cce440178f62b3bd82a
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/marker.png HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/png
content-length: 675
x-accel-version: 0.01
last-modified: Tue, 18 May 2021 06:16:56 GMT
etag: "2a3-5c294a82ca600"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/comments.png
185.157.247.2200 OK 783 B URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/comments.png
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type PNG image data, 37 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash 070453f410cd3a6b918b37950f9e80ce
013f9ece6eb2430d8b6ed86638f614548c3e10ad
ed956ce0d8100ac843bf85fb49362ccad13c98bbecdb24768968dc8deff6d6e0
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/comments.png HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/png
content-length: 783
x-accel-version: 0.01
last-modified: Tue, 18 May 2021 06:17:20 GMT
etag: "30f-5c294a99adc00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/footer-logo.svg
185.157.247.2200 OK 3.0 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/footer-logo.svg
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1433), with CRLF line terminators
Hash a4905efc552b898322c256cb4d4f55c3
6ca6d615b2ebe329819a0338879c1d206ad0b90b
4d5f7f9cf24e66420cd0f39be3d181b4566ff8dcc8e699731c88787e511befd3
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/footer-logo.svg HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: image/svg+xml
content-length: 3042
last-modified: Tue, 18 May 2021 05:59:36 GMT
etag: "60a357c8-be2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
151.101.65.229200 OK 24 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
IP 151.101.65.229:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type ASCII text, with very long lines (65299)
Hash 0aa8d64e726c4a57adb5c88f9115996b
901169527507ff9e662cf64d8e361f359308970d
7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 21:57:20 GMT
age: 16876234
x-served-by: cache-fra-eddf8230080-FRA, cache-bma1667-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23943
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
151.101.65.229200 OK 25 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP 151.101.65.229:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash abe91756d18b7cd60871a2f47c1e8192
7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d
7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Mon, 04 Dec 2023 21:57:20 GMT
age: 15250282
x-served-by: cache-fra-eddf8230097-FRA, cache-bma1667-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/js/js.js
185.157.247.2200 OK 1.9 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/js/js.js
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 748d58197b2649d37fc3bf10b1286de7
ef1eb236d8c106fba7d42d9c43ded0c2a9816b19
6eb8324a41fa9968ca906042e4f540884ea84bbb93d7f2d7d94dfdca944d9d02
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/js/js.js HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: application/javascript
last-modified: Fri, 11 Nov 2022 03:36:02 GMT
etag: W/"636dc322-c5b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/css/style.css
185.157.247.2200 OK 2.8 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/css/style.css
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type ASCII text, with very long lines (13840), with CRLF line terminators
Hash 1bcb877b2f26fe91a6c653ad601aae2e
9c504ac43cf004275e0eb2a1bb32b17d6425e216
f827af4d69cb6394fb85c8a4d5397e20a7f86fbae3f44ea2dd2a59e31a3b7a35
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/css/style.css HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: text/css
last-modified: Fri, 11 Nov 2022 05:50:54 GMT
etag: W/"636de2be-3612"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://socgene-acti.inovaperf.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 406582
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://socgene-acti.inovaperf.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 406582
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://socgene-acti.inovaperf.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:58 GMT
expires: Fri, 29 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 406582
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/imgs/ff.ico
185.157.247.2200 OK 318 B URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/imgs/ff.ico
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type MS Windows icon resource - 1 icon, 16x16, 16 colors\012- data
Hash ca10c09aeaf43460d3760f50c608eb51
f2ed2a4fe0e1eadb7dd28444ea6b7a04abf0d38e
daf58b06a09d467436ee5fd10eefbeadac3cf6ecaef1eca1884ef8330f561642
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/imgs/ff.ico HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:21 GMT
content-type: image/vnd.microsoft.icon
content-length: 318
x-accel-version: 0.01
last-modified: Sat, 09 Nov 2019 02:44:16 GMT
etag: "13e-596e0dfda0000"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
socgene-acti.inovaperf.me/auth/media/css/helpers.css
185.157.247.2200 OK 42 kB URL GET HTTP/2 socgene-acti.inovaperf.me/auth/media/css/helpers.css
IP 185.157.247.2:443
ASN #34534 Harmony Hosting SARL
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerLet's Encrypt
Subjectsocgene-acti.inovaperf.me
FingerprintB8:2C:53:06:3C:B1:71:4B:F5:7C:0B:FA:5D:67:92:B8:B1:4E:B6:0A
ValidityThu, 02 Nov 2023 19:33:20 GMT - Wed, 31 Jan 2024 19:33:19 GMT
File type ASCII text, with very long lines (41897), with CRLF line terminators
Hash 726c60fc192383fbcf04e19677ad0959
e2e966c2b6164806392449ced617227c27d36ab8
1c7070cf33da6adcb7a6b9ff7eb6e06fd8f64958622d61569b990e8b92c58615
Analyzer Verdict Alert OpenPhish phishing Societe Generale
GET /auth/media/css/helpers.css HTTP/1.1
Host: socgene-acti.inovaperf.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Cookie: PHPSESSID=snvt8fg5rvhofi1c6nhnt0fq66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 04 Dec 2023 21:57:20 GMT
content-type: text/css
last-modified: Thu, 06 Oct 2022 08:31:42 GMT
etag: W/"633e926e-a3ab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap
142.250.74.106200 OK 8.8 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Open+Sans:wght@400;600;700&display=swap
IP 142.250.74.106:443
Requested by https://socgene-acti.inovaperf.me/auth/g9GHv2/login.php?id=35517619
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (9024), with no line terminators
Hash 565832cd9e54dcc65c3c5122daef745a
e8ef7f5920e5bb8b8ab8eaa2fd3e655f6f6ee1e4
eb4a48cc79897f38180a3b2603931f3dc297daab6e538998477784467e823489
GET /css2?family=Open+Sans:wght@400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://socgene-acti.inovaperf.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 04 Dec 2023 21:57:20 GMT
date: Mon, 04 Dec 2023 21:57:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2