| dieckfoss.com/fdarwsfaqrfwsrtgryt67iyrswdr67q4wtyu54wq3weryt768trtrfgb/ | 122.201.80.143 | 200 OK | 102 B |
URL User Request GET HTTP/1.1dieckfoss.com/fdarwsfaqrfwsrtgryt67iyrswdr67q4wtyu54wq3weryt768trtrfgb/ IP122.201.80.143:443 ASN#38719 Dreamscape Networks Limited
CertificateIssuercPanel, Inc. Subjectdieckfoss.com Fingerprint9B:AD:8F:DC:C2:0E:22:9F:F2:87:8E:41:84:77:D0:93:16:33:F7:72 ValidityFri, 16 Feb 2024 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash00e579e678eed2fbe3da535a14ad67ec e302c6d58915db2b867c389b796714999d618a95 87ea86b2d573af1e8e105c9949dd52ccb2e7884b681a8a21b3d858a95aa8d4de
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /fdarwsfaqrfwsrtgryt67iyrswdr67q4wtyu54wq3weryt768trtrfgb/ HTTP/1.1
Host: dieckfoss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 03:45:01 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| login.re-gen-uk.com/xFrmQtxh | 216.245.184.243 | | 0 B |
URL User Request GET login.re-gen-uk.com/xFrmQtxh IP216.245.184.243:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Outlook |
GET /xFrmQtxh HTTP/1.1
Host: login.re-gen-uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dieckfoss.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Connection: close
Content-Type: text/html
Location: https://login.re-gen-uk.com/
Set-Cookie: HXZh=e1cdbd7a891ccbb9d96aed68511eba69647c81b1d108343122bd9949c02153cf; Path=/; Domain=re-gen-uk.com; Expires=Wed, 17 Apr 2024 04:45:02 GMT; Max-Age=3600
Transfer-Encoding: chunked
|
|
| | 216.245.184.243 | | 6.1 kB |
IP216.245.184.243:0
File typeHTML document, ASCII text, with very long lines (5921), with CRLF line terminators Hashd3af4b86c978a64bdc4c6460bc8972fb dbebde2dd56ba39d7b303ae70fa3c5c4a48e1930 e12b98078fce225e77bf682c2a77c2a8b2ba755c35a6592b241c60ded5b7a0ad
GET / HTTP/1.1
Host: login.re-gen-uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dieckfoss.com/
DNT: 1
Connection: keep-alive
Cookie: HXZh=e1cdbd7a891ccbb9d96aed68511eba69647c81b1d108343122bd9949c02153cf
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache
Connection: close
Content-Type: text/html; charset=utf-8
Date: Wed, 17 Apr 2024 03:45:14 GMT
Expires: -1
Location: https://www.re-gen-uk.com/login
P3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
Pragma: no-cache
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: fpc=Ah5gzzcvwt1Equ-R83d9l_U; Path=/; Expires=Fri, 17 May 2024 03:45:15 GMT; HttpOnly; Secure; SameSite=None
esctx=PAQABBwEAAADnfolhJpSnRYB1SVj-Hgd8FJZZ9W8efD3Jnm5kP_W8xKwRsve-TFVegyGzVoSVWZLOQb3qZn0CAwBuUCj1ZOURGEXtSc8V1Y-HkzF5YFOYLP8lmp1_OqxgnAp3OC1gr2oKRXT_1kVdWctkui4snJxBtiJ7uTkTNmiJN6gjhtH9Ypu9wUWUrthUhNqzAwRklrIgAA; Path=/; Domain=login.re-gen-uk.com; HttpOnly; Secure; SameSite=None
x-ms-gateway-slice=estsfd; Path=/; HttpOnly; Secure; SameSite=None
stsservicecookie=estsfd; Path=/; HttpOnly; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Ms-Ests-Server: 2.1.17789.7 - SCUS ProdSlices
X-Ms-Httpver: 1.1
X-Ms-Request-Id: cc6e9895-2ca2-4cae-87a5-8379a9231f00
X-Ms-Srs: 1.P
|
|
| | 216.245.184.243 | | 0 B |
IP216.245.184.243:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login HTTP/1.1
Host: www.re-gen-uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dieckfoss.com/
DNT: 1
Connection: keep-alive
Cookie: HXZh=e1cdbd7a891ccbb9d96aed68511eba69647c81b1d108343122bd9949c02153cf
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Connection: close
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Wed, 17 Apr 2024 03:45:16 GMT
Location: https://login.re-gen-uk.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638489223175417878.YzNhMmZjNzYtNjYyZS00YzY4LThiZWEtYWU5ODgyZmNhNTllNTM4OTg2YjYtNjg0ZC00ZjMwLThmMDAtNjQ1Y2UyOTA1Zjhk&ui_locales=en-US&mkt=en-US&client-request-id=63ad7902-9ca2-4b82-9c58-9baa5911d53f&state=nPjV5Fq_oUKth-jHwMhOtbtLAKTNwlhJnoYvl7D-9Lr4c2PnZtR43m4p2FbhT3w3oOMAnSVhiYNRgPb3tMbu7kaAh0WEVLsztHCRzCbzA_7dRhIi0P0HMrm29I7CPJq27o6tVmpJ_i_gW9VpQpIFpI-pjXRVTNT_4pw_EKXpLMxzPmfaOwtNDF3nK42S-HVMTMRm7ZNTFxpazQNcGkR84v7iFOWv9kTnzfC2oe4bqLUrIyo8EniLswQuD9ODXtXW0gS53cx64X1OEeVkzjyZzQ&x-client-SKU=ID_NET6_0&x-client-ver=7.3.1.0
Referrer-Policy: strict-origin-when-cross-origin
Request-Context: appId=
Set-Cookie: OH.DCAffinity=OH-eus; Path=/; Expires=Wed, 17 Apr 2024 11:45:17 GMT; HttpOnly; Secure; SameSite=None
OH.FLID=6385be32-74c2-4b3b-be84-cf8f17b1b83c; Path=/; Expires=Thu, 17 Apr 2025 03:45:17 GMT; HttpOnly; Secure; SameSite=None
OH.SID=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
.AspNetCore.OpenIdConnect.Nonce.dhvS1o7xKPNtpdq3h0HcLlcGhpVmHpZWLwmyffBl6QGCW3dlOW5ZJtRJewffRGSz2RrA5Vqnfk8xaQ9Ct3C9mtOniJ6eZ_0eKS_4qzHEjHaKUa23VA72BVXOgQAzfQmQktJDabeH5ERGBELqh6qTY8xLBkNMbbYS14tuPwwcDsX5o54KSRMaVPeeDsIW9hAzjmiatTynfHzNpTUkCL9FTrkRSNWiXD-PGc3SkTcVLFZi0ixXhNx4pdJ7s5zQZeiX=N; Path=/; Expires=Wed, 17 Apr 2024 04:00:17 GMT; HttpOnly; Secure; SameSite=None
.AspNetCore.Correlation.p3d0UgkXuSbAmh1WVgrwgeHeb3wLEf9EWFLUmBQ_LXs=N; Path=/; Expires=Wed, 17 Apr 2024 04:00:17 GMT; HttpOnly; Secure; SameSite=None
MUID=38D26FCF7F9B65310BD47BAB7E116404; Path=/; Domain=re-gen-uk.com; Expires=Mon, 12 May 2025 03:45:17 GMT; Secure
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Cache: CONFIG_NOCACHE
X-Msedge-Ref: Ref A: DE0150A80B754694A875002B3CF76130 Ref B: EWR311000104053 Ref C: 2024-04-17T03:45:17Z
X-Ua-Compatible: IE=edge,chrome=1
|
|
| login.re-gen-uk.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638489223175417878.YzNhMmZjNzYtNjYyZS00YzY4LThiZWEtYWU5ODgyZmNhNTllNTM4OTg2YjYtNjg0ZC00ZjMwLThmMDAtNjQ1Y2UyOTA1Zjhk&ui_locales=en-US&mkt=en-US&client-request-id=63ad7902-9ca2-4b82-9c58-9baa5911d53f&state=nPjV5Fq_oUKth-jHwMhOtbtLAKTNwlhJnoYvl7D-9Lr4c2PnZtR43m4p2FbhT3w3oOMAnSVhiYNRgPb3tMbu7kaAh0WEVLsztHCRzCbzA_7dRhIi0P0HMrm29I7CPJq27o6tVmpJ_i_gW9VpQpIFpI-pjXRVTNT_4pw_EKXpLMxzPmfaOwtNDF3nK42S-HVMTMRm7ZNTFxpazQNcGkR84v7iFOWv9kTnzfC2oe4bqLUrIyo8EniLswQuD9ODXtXW0gS53cx64X1OEeVkzjyZzQ&x-client-SKU=ID_NET6_0&x-client-ver=7.3.1.0 | 0.0.0.0 | | 0 B |
URL User Request GET login.re-gen-uk.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638489223175417878.YzNhMmZjNzYtNjYyZS00YzY4LThiZWEtYWU5ODgyZmNhNTllNTM4OTg2YjYtNjg0ZC00ZjMwLThmMDAtNjQ1Y2UyOTA1Zjhk&ui_locales=en-US&mkt=en-US&client-request-id=63ad7902-9ca2-4b82-9c58-9baa5911d53f&state=nPjV5Fq_oUKth-jHwMhOtbtLAKTNwlhJnoYvl7D-9Lr4c2PnZtR43m4p2FbhT3w3oOMAnSVhiYNRgPb3tMbu7kaAh0WEVLsztHCRzCbzA_7dRhIi0P0HMrm29I7CPJq27o6tVmpJ_i_gW9VpQpIFpI-pjXRVTNT_4pw_EKXpLMxzPmfaOwtNDF3nK42S-HVMTMRm7ZNTFxpazQNcGkR84v7iFOWv9kTnzfC2oe4bqLUrIyo8EniLswQuD9ODXtXW0gS53cx64X1OEeVkzjyZzQ&x-client-SKU=ID_NET6_0&x-client-ver=7.3.1.0 IP0.0.0.0:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638489223175417878.YzNhMmZjNzYtNjYyZS00YzY4LThiZWEtYWU5ODgyZmNhNTllNTM4OTg2YjYtNjg0ZC00ZjMwLThmMDAtNjQ1Y2UyOTA1Zjhk&ui_locales=en-US&mkt=en-US&client-request-id=63ad7902-9ca2-4b82-9c58-9baa5911d53f&state=nPjV5Fq_oUKth-jHwMhOtbtLAKTNwlhJnoYvl7D-9Lr4c2PnZtR43m4p2FbhT3w3oOMAnSVhiYNRgPb3tMbu7kaAh0WEVLsztHCRzCbzA_7dRhIi0P0HMrm29I7CPJq27o6tVmpJ_i_gW9VpQpIFpI-pjXRVTNT_4pw_EKXpLMxzPmfaOwtNDF3nK42S-HVMTMRm7ZNTFxpazQNcGkR84v7iFOWv9kTnzfC2oe4bqLUrIyo8EniLswQuD9ODXtXW0gS53cx64X1OEeVkzjyZzQ&x-client-SKU=ID_NET6_0&x-client-ver=7.3.1.0 HTTP/1.1
Host: login.re-gen-uk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dieckfoss.com/
DNT: 1
Connection: keep-alive
Cookie: HXZh=e1cdbd7a891ccbb9d96aed68511eba69647c81b1d108343122bd9949c02153cf; fpc=Ah5gzzcvwt1Equ-R83d9l_U; esctx=PAQABBwEAAADnfolhJpSnRYB1SVj-Hgd8FJZZ9W8efD3Jnm5kP_W8xKwRsve-TFVegyGzVoSVWZLOQb3qZn0CAwBuUCj1ZOURGEXtSc8V1Y-HkzF5YFOYLP8lmp1_OqxgnAp3OC1gr2oKRXT_1kVdWctkui4snJxBtiJ7uTkTNmiJN6gjhtH9Ypu9wUWUrthUhNqzAwRklrIgAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; MUID=38D26FCF7F9B65310BD47BAB7E116404
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|