| cg44442.tw1.ru/assets/images/top-header-left.png | 185.114.247.232 | 200 OK | 7.8 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/top-header-left.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 582 x 46, 8-bit/color RGBA, non-interlaced Hash05d0bcebf3df7ee2a73dee6cded8748c 3a2063b7ea5f324dfba774b9cf2671480f387fd3 004c0d90d64d9266498f39a020a0a6fe4110b94f8447daea5b1373d3e7934aad
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/top-header-left.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 7766
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
etag: "64f045ef-1e56"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/top-header-left2.png | 185.114.247.232 | 200 OK | 1.4 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/top-header-left2.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 83 x 41, 8-bit/color RGB, non-interlaced Hash6c8bd7116fa86f2ae3c0180d903925ef bf8ddfd792a103dc6d5aacd11e9d903072684c70 c96109fef3e6ae0c4dffe3fcc9026352c44a2147b9fd2c4d6e08d32cdcf2641f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/top-header-left2.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 1402
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
etag: "64f045ef-57a"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/top-header-right.png | 185.114.247.232 | 200 OK | 3.2 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/top-header-right.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 165 x 12, 8-bit/color RGBA, non-interlaced Hasha807d65c0c9d3f695f10e08980bc1b51 e1fa5b9f089087d9b0c94dfc1557d6de22fb6b8e 5b6cd7b81854519965959d1549226e565a77de441a694df48579868348513d21
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/top-header-right.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 3223
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
etag: "64f045ef-c97"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/header-left.png | 185.114.247.232 | 200 OK | 14 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/header-left.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 481 x 70, 8-bit/color RGBA, non-interlaced Hash7d9605f1532c3522c8bcbb0f29365c33 01d4c9d444aa4f64223febe842a7d1d371215dd1 c83e6ec9b5ceece6db819192b3f6f877fc64296b1ed27ec5b53cc5c4d86f8ab4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/header-left.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 13753
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-35b9"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/logo.png | 185.114.247.232 | 200 OK | 6.4 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/logo.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced Hash25722a7e1f0c794ae8b299897c61a03b 8657666cb41fd8fcd3e0202bb9c3327fba3f837f f0f02c834c71eff3c9dbc749f81ea8be9c213326a6908e7b80a7da9cba637ae3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/logo.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 6360
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
etag: "64f045ef-18d8"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/header-right.png | 185.114.247.232 | 200 OK | 4.9 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/header-right.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 383 x 50, 8-bit/color RGBA, non-interlaced Hash2375d45e3a3f1902e9e5e3509b729ab0 611da0b1ef30ce60cb99fc53e8f4e68e2c4b89a6 dc76d1d3963947047b414b58209d235ff6e36043fe66514606a260a8c3d96cb0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/header-right.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 4864
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-1300"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/header-right2.png | 185.114.247.232 | 200 OK | 4.9 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/header-right2.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 503 x 50, 8-bit/color RGB, non-interlaced Hash9252aa94fff77064c1ff6bcc5b7398dd b4ff8e78716f29cccb54b70906794a44fd7a1a21 37a288f0c7a73fecda634b2262ba8d7c23953e2268aa9a6dabc21955b5a174e9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/header-right2.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 4897
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-1321"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/header-right3.png | 185.114.247.232 | 200 OK | 1.2 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/header-right3.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 228 x 50, 8-bit/color RGB, non-interlaced Hashf2766a53f341aa32b32efef5152cb92b 472e5b58d6f177a1dae8c272b209aa0a4c7c2731 f209ec1d94d89a8fa9cdadffa82ac9f6bb696687d21caaf0a15007199fdbcbfc
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/header-right3.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 1187
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-4a3"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/fonts/secure-asterisk.woff | 185.114.247.232 | 200 OK | 3.2 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/fonts/secure-asterisk.woff IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typeWeb Open Font Format, TrueType, length 3176, version 0.0 Hash374b020a914ea198d75d783535440a81 2dd183915d84f1a8deee4fdb1091af1cd2989e25 cc0b81d5e663b8abed0d6035739f40950ae99bcabb9a88f1e92eb910ae769cea
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/fonts/secure-asterisk.woff HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/assets/css/fonts.css
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: application/font-woff
content-length: 3176
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-c68"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/footer.png | 185.114.247.232 | 200 OK | 53 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/footer.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 907 x 595, 8-bit/color RGBA, non-interlaced Hashf96a98795792fd92b817f70089d30c31 b2ca6b578360c9f67c6af13a25568ac31fb08f7b 5bb399100f821a7bada7a8faa36de1e64dd19bcde8854eb9980b5b07cb74de1c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/footer.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 53035
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-cf2b"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/content.png | 185.114.247.232 | 200 OK | 462 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/content.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 939 x 2166, 8-bit/color RGBA, non-interlaced Size462 kB (461751 bytes) Hasha163946bb2c40cfce6b8eb1f7c5a4f63 77405f7e4c20b1e6088ec70c468edacda7638aac 8f7220fde4861e61d5d1f84538771bf385a161f5889476028a61341ac01875d0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/content.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/assets/css/main.css
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 461751
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-70bb7"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/js/jquery.min.js | 185.114.247.232 | 200 OK | 34 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/js/jquery.min.js IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typegzip compressed data, from Unix Hasha592965913f62e4c5360b7fce7912ae9 536471c38c736d20840ef18a13078eeee9a56e97 645b2bc49322db84db5e60297af0f53eebeb3d51f681908c11fece9a2a9e97fa
GET /assets/js/jquery.min.js HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: application/x-javascript
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
vary: Accept-Encoding
etag: W/"64f045ef-15851"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/js/bootstrap.min.js | 185.114.247.232 | 200 OK | 33 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/js/bootstrap.min.js IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typegzip compressed data, from Unix Hashbdb0e7f04f3a5c76c5acb36679585a21 8328219252a0f0edfb3300b2aac00ce935da242a 17321e5c2b8a4473faa08f118b25a0137ce8b4a0a82e3ea89aff63b0ceb24dbb
GET /assets/js/bootstrap.min.js HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: application/x-javascript
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
vary: Accept-Encoding
etag: W/"64f045ef-21388"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/js/fontawesome.min.js | 185.114.247.232 | 200 OK | 393 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/js/fontawesome.min.js IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typegzip compressed data, from Unix Size393 kB (393386 bytes) Hash96b8150ad7d95ec574a25ff497cb7098 852e61b285d5f23560b3a551162ed1af141b8371 d8dd117968006b807e40e4c2ee8ebd0860ab3b2e141d054e9a044ff4a51760a6
GET /assets/js/fontawesome.min.js HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: application/x-javascript
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
vary: Accept-Encoding
etag: W/"64f045ef-10314e"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/js/main.js | 185.114.247.232 | 200 OK | 9.6 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/js/main.js IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typegzip compressed data, from Unix Hash29ebb61d06a99ffabb1a7d6945c9ab68 02774d1c55ccba5cae54adc9c59618fa86b6f335 3bdeb8070161ccd13058fbc12c96e532dbacb01df389ea42ee6418f2e4be9cd0
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Anti-debugging code |
GET /assets/js/main.js HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: application/x-javascript
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
vary: Accept-Encoding
etag: W/"64f045ef-77c"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/css/helpers.css | 185.114.247.232 | 200 OK | 42 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/css/helpers.css IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typeASCII text, with very long lines (41750), with CRLF line terminators Hashfd877f138d23d5a790645eb95167aec3 ee2f01ca01c5f7e6f674ad79a9fea30f78a66f2c f839760d1621714efedeb3eb08b25e619812dcc33d77aceb0daf405ac727a765
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/css/helpers.css HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: text/css
last-modified: Thu, 31 Aug 2023 07:49:00 GMT
vary: Accept-Encoding
etag: W/"64f045ec-a318"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/js/popper.min.js | 185.114.247.232 | 200 OK | 20 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/js/popper.min.js IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typeJavaScript source, ASCII text, with very long lines (20164), with CRLF line terminators Hash5644e6835941af44dcb5cead916c2b79 6eb1840d55338895ce6ecc3eab56132b1d152b93 315ac5479007d2e864a4b51f505fd0785ebbbe931a6b511467fa49504a082c58
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/js/popper.min.js HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: application/x-javascript
last-modified: Thu, 31 Aug 2023 07:49:03 GMT
vary: Accept-Encoding
etag: W/"64f045ef-4f74"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/css/fonts.css | 185.114.247.232 | 200 OK | 1.8 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/css/fonts.css IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typeASCII text, with very long lines (1817), with no line terminators Hasha96ab3b78425633d0dbf2f0285ccc550 8183b1c4e80de616c4fa96a32478d993b3e1ade6 4df52e83e87903f23044e3ceaf236659081ecad258807cfed440b0f93ff70c47
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/css/fonts.css HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: text/css
last-modified: Thu, 31 Aug 2023 07:49:00 GMT
vary: Accept-Encoding
etag: W/"64f045ec-6d7"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/images/favicon.png | 185.114.247.232 | 200 OK | 2.8 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/images/favicon.png IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash95148d7f825922493ef706dd98457ff4 a0a5b1c2f52bb002000a04de5aa74d8ed25fc703 c78d2b529472912245060a36f2393b664716b51511b6bdcfa385fba224ba3811
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/images/favicon.png HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: image/png
content-length: 2817
last-modified: Thu, 31 Aug 2023 07:49:02 GMT
etag: "64f045ee-b01"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/login/login.php? | 185.114.247.232 | 200 OK | 10 kB |
URL User Request GET HTTP/2cg44442.tw1.ru/login/login.php? IP185.114.247.232:443
CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login/login.php? HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/css/bootstrap.min.css | 185.114.247.232 | 200 OK | 156 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/css/bootstrap.min.css IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typeASCII text, with very long lines (65324) Size156 kB (155758 bytes) Hasha15c2ac3234aa8f6064ef9c1f7383c37 6e10354828454898fda80f55f3decb347fd9ed21 60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/css/bootstrap.min.css HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: text/css
last-modified: Thu, 31 Aug 2023 07:49:00 GMT
vary: Accept-Encoding
etag: W/"64f045ec-2606e"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cg44442.tw1.ru/assets/css/main.css | 185.114.247.232 | 200 OK | 7.0 kB |
URL GET HTTP/2cg44442.tw1.ru/assets/css/main.css IP185.114.247.232:443
Requested byhttps://cg44442.tw1.ru/login/login.php? CertificateIssuerGlobalSign nv-sa Subject*.tw1.ru FingerprintF8:4F:0D:CA:E7:A6:0A:6D:24:20:EA:9A:4A:5A:FD:93:21:2F:88:51 ValidityThu, 11 Jan 2024 13:25:41 GMT - Tue, 11 Feb 2025 13:25:40 GMT
File typeASCII text, with very long lines (6977), with no line terminators Hashdd15b1c9feb20af2bfb80065dc24874b 7a46bbcf56f8bdc8ada3b9da5e7623c1b319b422 6bca7e062245492adc3f218a54392c572401f5fb617fb35ec253a8dad270f3e3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - La Banque postale |
GET /assets/css/main.css HTTP/1.1
Host: cg44442.tw1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cg44442.tw1.ru/login/login.php?
Cookie: PHPSESSID=d2cd80821d87cfc74b9e584c2da78288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.24.0
date: Fri, 26 Apr 2024 09:43:31 GMT
content-type: text/css
last-modified: Thu, 31 Aug 2023 07:49:00 GMT
vary: Accept-Encoding
etag: W/"64f045ec-1b27"
expires: Sat, 26 Apr 2025 09:43:31 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|