Report - google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148

Report Overview

Submitted URL
google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
IP
54.83.101.48
ASN
#14618 AMAZON-AES
Submitted
2024-04-24 15:38:01
Access
public
Website Title
Sign in - Google Accounts
Final URL
google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Tags
google
urlquery detections
Phishing - Google

Detections

urlquery
11
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
google.webaccess-alerts.net	unknown	2011-08-16	2024-01-16	2024-02-14	6.3 kB	126 kB	54.83.101.48
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-24	901 B	163 kB	142.250.74.72
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-24	950 B	63 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-23	1.1 kB	97 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-JPRZ9JVKLJ&l=dataLayer&cx=c	250 kB	2024-04-24	2024-04-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-JPRZ9JVKLJ&l=dataLayer&cx=c IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 17:38:02 Last Seen2024-04-24 17:38:02 Times Seen2 Hash 5434c432d0f42f8d79b2dbaa3d42e41f b4c400514ec7d17cd16125210a623fee6e478165 cc7e89ddf31bb9994f726cd0c7304f7dd092bf88ad4723f30d8c4273c0157097 Loading...

	google.webaccess-alerts.net/system/content_files/uploads/dae/552/5f-/original/content-data-entry-boilerplate.js	86 kB	2023-03-08	2024-05-02
Pretty URL google.webaccess-alerts.net/system/content_files/uploads/dae/552/5f-/original/content-data-entry-boilerplate.js IP 54.83.101.48 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:38:21 Last Seen2024-05-02 01:40:34 Times Seen449 Hash 2e1aa7374d39fa64778859b1a8cbfbfe e0d91c61c4dd9ae3ca8fb085c53ae15b9eca7968 ec180d2bc1f49cde05d2dd6db4270f5cba1b7011a4b351c3c796bed587ef55b6 Loading...

	google.webaccess-alerts.net/system/content_files/uploads/8f2/ed2/42-/original/static-education-l10n.min.js	6.3 kB	2023-03-08	2024-05-02
Pretty URL google.webaccess-alerts.net/system/content_files/uploads/8f2/ed2/42-/original/static-education-l10n.min.js IP 54.83.101.48 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:38:21 Last Seen2024-05-02 01:40:34 Times Seen453 Hash 91fcc38fe563880842e269d2b7647b8b dc5d692fa7dc75b8a4bbcf0732d0978b3890e0c0 648d18f8adcfba7d26b20c51328a2d13dcabb8465d673073cefe45735c80bda3 Loading...

	google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148	371 B	2023-03-07	2024-04-24
Pretty URL google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148 IP 54.83.101.48 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:16:26 Last Seen2024-04-24 17:38:02 Times Seen316 Hash f77ec541b421f4935bf7057e8b2af454 22582bc2ff6e5ba7c07b6ad3b2596fb73dd708ba 7f29c13f7e7b55db5e7183a44bd55d6694c1a84c72eeb9fcb70260707d8a43af Loading...

	google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148	718 B	2024-01-15	2024-04-24
Pretty URL google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148 IP 54.83.101.48 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-15 11:00:29 Last Seen2024-04-24 17:38:02 Times Seen4 Hash d8aaf23bc8bb9e4841324de754341ec6 0013c4c7e3d73bf6118912eb67f0aafd16236382 b94ace11bb9c7ac8a985ed6a5b5ecf78f0228a940d77a3bdb3cf76133d336215 Loading...

	www.googletagmanager.com/gtag/js?id=UA-126808791-4	202 kB	2024-04-24	2024-04-24
Pretty URL www.googletagmanager.com/gtag/js?id=UA-126808791-4 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 17:38:02 Last Seen2024-04-24 17:38:02 Times Seen2 Hash 091420c26742dc1cbb99a870b2a2e83e 17e1733bdf9e3b7342a6085cbb543379b3e45744 50c43ee4a85a9099dc80f4eb1671359d01b328bc6c020c9640564de4787e2255 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-06
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-06 00:06:41 Times Seen344549 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	google.webaccess-alerts.net/system/content_files/uploads/5b8/ee7/1e-/original/jquery-latest.min.js	88 kB	2023-03-07	2024-05-05
Pretty URL google.webaccess-alerts.net/system/content_files/uploads/5b8/ee7/1e-/original/jquery-latest.min.js IP 54.83.101.48 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-05 21:57:51 Times Seen97102 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148	1.5 kB	2024-04-24	2024-04-24
Pretty URL google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148 IP 54.83.101.48 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-24 17:38:02 Last Seen2024-04-24 17:38:02 Times Seen1 Hash 109ccb75c36c73142f18be53f2c3bea0 313ef1694ab510c8b6fb65d85afa7ef437f85105 8302cf8016eb8d384b1251d6cbac298f169c463294b94589221bb63144a18929 Loading...

	google.webaccess-alerts.net/o/vz6ud9q6/9504e7/sandbox%20eval%20code	147 B	2023-04-11	2024-05-06
Pretty URL google.webaccess-alerts.net/o/vz6ud9q6/9504e7/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-06 00:06:41 Times Seen345056 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

HTTP Transactions (16)

URL IP Response Size

google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148

54.83.101.48

200 OK

4.2 kB

URL User Request GET HTTP/2
google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (314), with CRLF, LF line terminators
Size
4.2 kB (4162 bytes)
Hash
0e534765140c3db55aef2801c5b47239
a32dab66f2c3934629977a4de27ecf2376228cb4
e99f7d8af1c247a77253644b9989324c00a85076da0fadf6b7b629205943f493

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148 HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: http://landing.phishme.com
cache-control: no-store
content-encoding: gzip
content-type: text/html; charset=utf-8
date: Wed, 24 Apr 2024 15:37:35 GMT
etag: W/"e99f7d8af1c247a77253644b9989324c-gzip"
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
server: Apache
set-cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97; path=/; HttpOnly
status: 200 OK
vary: Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen, noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-request-id: 341a7592-05b3-4111-b6b7-3c52a7617076
x-runtime: 0.045235
x-xss-protection: 1; mode=block
content-length: 4162
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_files/uploads/26b/ad3/4b-/original/content-data-entry-boilerplate.min.css

54.83.101.48

200 OK

3.3 kB

URL GET HTTP/2
google.webaccess-alerts.net/system/content_files/uploads/26b/ad3/4b-/original/content-data-entry-boilerplate.min.css
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
ASCII text, with very long lines (18290), with no line terminators
Size
3.3 kB (3341 bytes)
Hash
cde1906f54d9ea8c69be1488fad61743
bc35ba9b37e3e293ef57036210f5a71ac0e7001b
51829c6361406bbe6bbc441e575d760fb1ee39891a7729878b7d3304d4c1399c

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_files/uploads/26b/ad3/4b-/original/content-data-entry-boilerplate.min.css HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-encoding: gzip
content-type: text/css
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "4772-5dfc2cb005780-gzip"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Tue, 24 May 2022 14:30:06 GMT
server: Apache
vary: Accept-Encoding
x-download-options: noopen
content-length: 3341
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_files/uploads/ebf/645/b2-/original/google-landing-styles.css

54.83.101.48

200 OK

1.7 kB

URL GET HTTP/2
google.webaccess-alerts.net/system/content_files/uploads/ebf/645/b2-/original/google-landing-styles.css
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
ASCII text
Size
1.7 kB (1650 bytes)
Hash
8b9bb6e63352aae173f9745728d3dfef
f24f4eca03885b07531093e1881de275dbe188a8
f3950399539e973776f35e7de8bbbdfce97c3abc04f7540e5a1b00e99c60d299

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_files/uploads/ebf/645/b2-/original/google-landing-styles.css HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-encoding: gzip
content-type: text/css
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "166f-609930ac83780-gzip"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Tue, 07 Nov 2023 17:10:06 GMT
server: Apache
vary: Accept-Encoding
x-download-options: noopen
content-length: 1650
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-126808791-4

142.250.74.72

200 OK

73 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-126808791-4
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (4179)
Size
73 kB (73297 bytes)
Hash
091420c26742dc1cbb99a870b2a2e83e
17e1733bdf9e3b7342a6085cbb543379b3e45744
50c43ee4a85a9099dc80f4eb1671359d01b328bc6c020c9640564de4787e2255

HTTP Headers

GET /gtag/js?id=UA-126808791-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 15:37:36 GMT
expires: Wed, 24 Apr 2024 15:37:36 GMT
cache-control: private, max-age=900
last-modified: Wed, 24 Apr 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73297
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-JPRZ9JVKLJ&l=dataLayer&cx=c

142.250.74.72

200 OK

89 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-JPRZ9JVKLJ&l=dataLayer&cx=c
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
89 kB (88607 bytes)
Hash
5434c432d0f42f8d79b2dbaa3d42e41f
b4c400514ec7d17cd16125210a623fee6e478165
cc7e89ddf31bb9994f726cd0c7304f7dd092bf88ad4723f30d8c4273c0157097

HTTP Headers

GET /gtag/js?id=G-JPRZ9JVKLJ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 15:37:36 GMT
expires: Wed, 24 Apr 2024 15:37:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88607
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

google.webaccess-alerts.net/system/content_images/uploads/467/f6c/c5-/original/error-icon-red.png

54.83.101.48

200 OK

432 B

URL GET HTTP/2
google.webaccess-alerts.net/system/content_images/uploads/467/f6c/c5-/original/error-icon-red.png
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
PNG image data, 20 x 21, 8-bit/color RGBA, non-interlaced
Size
432 B (432 bytes)
Hash
7b4d8b0e01b708b992024d55f2861e0d
e7114c2c0e68ff95ace0fd7d7a722cdb38407b98
10f568950e3e99ea5d5ef4ab7d0c08bc2c9b1cf62e7a5d767e2227ecce2a1343

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_images/uploads/467/f6c/c5-/original/error-icon-red.png HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-type: image/png
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "1b0-5fe9f935aa640"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Wed, 21 Jun 2023 08:30:09 GMT
server: Apache
x-download-options: noopen
content-length: 432
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_images/uploads/ad1/eb2/33-/original/google-logo.png

54.83.101.48

200 OK

57 kB

URL GET HTTP/2
google.webaccess-alerts.net/system/content_images/uploads/ad1/eb2/33-/original/google-logo.png
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
PNG image data, 800 x 264, 8-bit/color RGBA, non-interlaced
Size
57 kB (56643 bytes)
Hash
e22d6119fcfcaeea73849c3d5030e322
16d2a58464d9cf2b450baca871ef23e8ede6d3f4
627f1e0ebd79c4e01024265d14af515961a8533e04d98a0f4f86e1d66e20d83f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_images/uploads/ad1/eb2/33-/original/google-logo.png HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-type: image/png
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "dd43-6097838af4500"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Mon, 06 Nov 2023 09:10:12 GMT
server: Apache
x-download-options: noopen
content-length: 56643
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_images/uploads/681/235/99-/original/user-icon-grey.png

54.83.101.48

200 OK

460 B

URL GET HTTP/2
google.webaccess-alerts.net/system/content_images/uploads/681/235/99-/original/user-icon-grey.png
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Size
460 B (460 bytes)
Hash
1529e55c8eea07a47df274938c798dc8
bf8427d0fac980aadd0a111fcddb6412fbcf5ddc
118b17a5c8752bb05843e47c7175ca28b2ae6598cb672d1ff8128581334a8010

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_images/uploads/681/235/99-/original/user-icon-grey.png HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-type: image/png
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "1cc-5fe9f9369e880"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Wed, 21 Jun 2023 08:30:10 GMT
server: Apache
x-download-options: noopen
content-length: 460
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_files/uploads/8f2/ed2/42-/original/static-education-l10n.min.js

54.83.101.48

200 OK

2.0 kB

URL GET HTTP/2
google.webaccess-alerts.net/system/content_files/uploads/8f2/ed2/42-/original/static-education-l10n.min.js
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
JavaScript source, ASCII text, with very long lines (6328), with no line terminators
Size
2.0 kB (1960 bytes)
Hash
91fcc38fe563880842e269d2b7647b8b
dc5d692fa7dc75b8a4bbcf0732d0978b3890e0c0
648d18f8adcfba7d26b20c51328a2d13dcabb8465d673073cefe45735c80bda3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_files/uploads/8f2/ed2/42-/original/static-education-l10n.min.js HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-encoding: gzip
content-type: application/javascript
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "18b8-5df59999f7180-gzip"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Thu, 19 May 2022 09:00:06 GMT
server: Apache
vary: Accept-Encoding
x-download-options: noopen
content-length: 1960
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_files/uploads/dae/552/5f-/original/content-data-entry-boilerplate.js

54.83.101.48

200 OK

18 kB

URL GET HTTP/2
google.webaccess-alerts.net/system/content_files/uploads/dae/552/5f-/original/content-data-entry-boilerplate.js
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with CRLF line terminators
Size
18 kB (17552 bytes)
Hash
2e1aa7374d39fa64778859b1a8cbfbfe
e0d91c61c4dd9ae3ca8fb085c53ae15b9eca7968
ec180d2bc1f49cde05d2dd6db4270f5cba1b7011a4b351c3c796bed587ef55b6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_files/uploads/dae/552/5f-/original/content-data-entry-boilerplate.js HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-encoding: gzip
content-type: application/javascript
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "150e9-5de403f6dffc0-gzip"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Thu, 05 May 2022 09:20:07 GMT
server: Apache
vary: Accept-Encoding
x-download-options: noopen
content-length: 17552
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_files/uploads/5b8/ee7/1e-/original/jquery-latest.min.js

54.83.101.48

200 OK

31 kB

URL GET HTTP/2
google.webaccess-alerts.net/system/content_files/uploads/5b8/ee7/1e-/original/jquery-latest.min.js
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30677 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_files/uploads/5b8/ee7/1e-/original/jquery-latest.min.js HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-encoding: gzip
content-type: application/javascript
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "15851-587fdd810ab40-gzip"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Fri, 03 May 2019 16:00:05 GMT
server: Apache
vary: Accept-Encoding
x-download-options: noopen
content-length: 30677
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap

142.250.74.106

200 OK

50 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
50 kB (49919 bytes)
Hash
454a1438c1bdf51fd836f18eca9fc221
1dd3529f37f02904e88a8a159876b4a3b2175209
e06b3761aeff4929d41a1b9b2fc4ed1b75013a078e9a46b063d4ae847f027e0b

HTTP Headers

GET /css2?family=Open+Sans:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://google.webaccess-alerts.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 15:37:36 GMT
date: Wed, 24 Apr 2024 15:37:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://google.webaccess-alerts.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 07:14:19 GMT
expires: Wed, 23 Apr 2025 07:14:19 GMT
cache-control: public, max-age=31536000
age: 116597
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

google.webaccess-alerts.net/system/content_images/uploads/d01/f25/f3-/original/google-favicon.png

54.83.101.48

200 OK

4.2 kB

URL GET HTTP/2
google.webaccess-alerts.net/system/content_images/uploads/d01/f25/f3-/original/google-favicon.png
IP
54.83.101.48:443
ASN
#14618 AMAZON-AES

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerLet's Encrypt
Subject*.webaccess-alerts.net
Fingerprint2E:1B:D6:92:C0:3A:31:45:12:E6:E7:58:B2:FC:32:C5:40:FF:6C:F7
ValiditySun, 18 Feb 2024 14:46:38 GMT - Sat, 18 May 2024 14:46:37 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
4.2 kB (4214 bytes)
Hash
60f263c57bd740ec50a647f810859d84
775217018cd2dd8f7c1e06a88c7bf901b5481a9d
f1de4abc89f238f322f5ea6a02ea5cf53b313b145f673dccd97f1b3bd32ee039

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Google

HTTP Headers

GET /system/content_images/uploads/d01/f25/f3-/original/google-favicon.png HTTP/1.1
Host: google.webaccess-alerts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
DNT: 1
Connection: keep-alive
Cookie: _phishme.com_session_id=9280ae561d8869199628fad9cc848a97; _ga_JPRZ9JVKLJ=GS1.1.1713973056.1.0.1713973056.0.0.0; _ga=GA1.1.1018384399.1713973057
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: http://landing.phishme.com
cache-control: max-age=0
content-type: image/png
date: Wed, 24 Apr 2024 15:37:36 GMT
etag: "1076-6097ea5d51b40"
expires: Wed, 24 Apr 2024 15:37:36 GMT
last-modified: Mon, 06 Nov 2023 16:50:13 GMT
server: Apache
x-download-options: noopen
content-length: 4214
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;700&display=swap

142.250.74.106

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text
Size
12 kB (12070 bytes)
Hash
b07957c89279abde943a87af7805e837
6d8a4c44210e579ac61b058d8d3ec9a30afe3f1c
3dbafa5eadeabb1a5e30a447d2dcf43c272466febd9ad7c2204b90e5d4e8b308

HTTP Headers

GET /css2?family=Inter:wght@100;200;300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://google.webaccess-alerts.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 15:37:36 GMT
date: Wed, 24 Apr 2024 15:37:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://google.webaccess-alerts.net/o/vz6ud9q6/9504e7/074122b7-7437-411d-9a30-f1513b2f5148
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://google.webaccess-alerts.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 565356
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML