| carpen.adv.br/securewellsfargosecure/wellsfargo/login/ | 216.172.172.129 | 200 OK | 9.0 kB |
URL User Request GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/ IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2328), with CRLF line terminators Hash581b13fb78c498b5c6cb445b3569aacc f28fb3d3a5d4139ec639e227c38d10adca80fc98 f269f08b519254ee36678bf46258d05d190f7d7f2ba3704d6cb44247d009d57d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/ HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-length: 9032
content-type: text/html; charset=UTF-8
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/COB-BOB-IRT-enroll_tractor.jpg | 216.172.172.129 | 200 OK | 613 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/COB-BOB-IRT-enroll_tractor.jpg IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=www.apeloga.se], baseline, precision 8, 2400x1600, components 3 Size613 kB (613304 bytes) Hash598c358e4116e7c92dcb86c0921e4c4b 215f0238729c4a8db8f1a50b0728e31892e471c9 d3ee0c954f26a12702c2ad4ca5fc14fa14198eadd59113a5baef17e0c1240ebe
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/COB-BOB-IRT-enroll_tractor.jpg HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
content-length: 613304
content-type: image/jpeg
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/0.8b28e64ff92cf7a02329.chunk.css | 216.172.172.129 | 200 OK | 2.8 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/0.8b28e64ff92cf7a02329.chunk.css IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeASCII text, with very long lines (8845), with no line terminators Hasha996466d889213b16cfe21111974bdf3 5db3b86e4cd4e8ecc6ecba286b4dd7e48f6d4028 bc2e28c4a95d553900cf09260347cb09aad757084d30e4ccf2ac8a35d4efe1aa
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/0.8b28e64ff92cf7a02329.chunk.css HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2819
content-type: text/css
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/1.826835780deda3cfc8be.chunk.css | 216.172.172.129 | 200 OK | 4.1 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/1.826835780deda3cfc8be.chunk.css IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeASCII text, with very long lines (17110), with no line terminators Hash7663a99610c6e623d730ce25a5398d77 d46fbc838343b939041cf5ff737a8196aa0795cf dfda4f5b8d14996f570bd2e751a1ac7bc0b631dca09cf4693f47c750595b64e0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/1.826835780deda3cfc8be.chunk.css HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4105
content-type: text/css
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/main.4870f47b74ad9141ce5b.chunk.css | 216.172.172.129 | 200 OK | 478 B |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/main.4870f47b74ad9141ce5b.chunk.css IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeASCII text, with very long lines (3580), with no line terminators Hash5478cd781a86d43ea0ec9d311a84061a 63bfb881f921436cfb13df69759d4efd2aa60c98 c09753711c376ac7d47b28dca007a00ea49e907c3476fd12bdf8ae303cf52ec9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/main.4870f47b74ad9141ce5b.chunk.css HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 478
content-type: text/css
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.3.js | 216.172.172.129 | 200 OK | 2.3 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.3.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (1022) Hashafb83cb0c351cf06179a4e19d73ab7be 77e67c47f724a1a96839fc4ef843b5366100a62b 3636799d3181248d5db968a7851b9aa972ea77f64b3cba9ce6b0a8933106c0c2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.3.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2313
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.10.js | 216.172.172.129 | 200 OK | 6.8 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.10.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (2575) Hashcbc6a7a6729ddbafeb954b2688e4e4bb a18e5362444cd63d08180a035e3d07c52e699f34 de5f63b7382d3479f84e396eb2b19ea62be6a30a6292bbf5b95d46716be552c7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.10.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6752
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.21.js | 216.172.172.129 | 200 OK | 2.0 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.21.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (1090) Hash725f20ce8d1afdb672062ad7b6375652 7920821c6cf158f9051bdac8c835c50939e2416e f6d94388f08f73ea73adbfa84c4ec5bff48ba7130e76c71479fcbf832c302d7c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.21.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1977
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/ZTE | 216.172.172.129 | 200 OK | 211 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/ZTE IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
Size211 kB (211125 bytes) Hash9c7ea8a620421f0366414d9076866069 7151cb6e8abf7b53b41ac1a504a8feba71f3b068 ce6faf4362953335a4429f61ec96e585d554c26eeb0ee538fc752cfbf863cdac
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/ZTE HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
content-length: 211125
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.7.js | 216.172.172.129 | 200 OK | 3.6 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.7.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (1579) Hashab4745d183b02aecc2f060184d98883d 6ea6f3d306bda585b0743f4760d6a9ae368a2c40 9c4cf53fef9222fc5d6659fa4b776fe20d64c46886c3d96547aaae16134afb2a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.7.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3606
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.9.js | 216.172.172.129 | 200 OK | 4.0 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.9.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (3237) Hashb7d078e49a0d7b507dbff8cf78554ec3 89020fd9ed1678f2fd3d97fa6008ba5a5875b1cc 34d6af1ed862f62ede259dedabcadba6446c1e9182cd70b19c66cb3acedae93d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.9.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3953
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/atadun.js | 216.172.172.129 | 200 OK | 622 B |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/atadun.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash566dda94252f1860a7a28665c715b530 6aa0455dc8ea41441b1f3a733985758dc40af736 43dd833f33570535401d009e6b6f9cde54bdac4e210fc6c89cfdcfcbaa9fc903
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/atadun.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 622
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.15.js | 216.172.172.129 | 200 OK | 1.8 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.15.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (1142) Hashecc23176aa665855c451bceb08ca718e ad9d1d43415aa1800b2f2c024d07e1e9042cfed6 384f41d37d3a9be1a72e761589096fcce4119150ea81ead29ba758514d321e94
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.15.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1760
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/login-userprefs.min.js | 216.172.172.129 | 200 OK | 1.7 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/login-userprefs.min.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (559) Hash574080213b6b287119358249c6ca02b0 98dbb0bc9c4f3972da420437218549183adc9a2f 7c4ce6fc09971a6af0a2da2ad4d73c52e89c3da2eb3375c5860c0049c3007070
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/login-userprefs.min.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1721
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/runtime.880333131bd6186f5de0.js | 216.172.172.129 | 200 OK | 3.0 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/runtime.880333131bd6186f5de0.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashb7e9631b0feb87a173a1f276d8fdf556 b95eb00910787d5fa078ec1a5ae382556fcc62b4 eabaa88d8a1a9a5e979910075fc36ebabb0e30bbc15894024cf4aa94d9cf6af3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/runtime.880333131bd6186f5de0.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:42:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2969
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.5.js | 216.172.172.129 | 200 OK | 2.8 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.5.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (1438) Hash4cd4bf818c99ff83fc9ce2156c6be55f 26927a92d9bc8ba2b63af7e05eee77578703245d 08d354755dc9adefb41c59c46592115a5c76ccd543108ce7c6ab2fb7617a908f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.5.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2755
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.4.js | 216.172.172.129 | 200 OK | 1.7 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.4.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (4209) Hash15bd844e81d95845c29b50ec9f3e100c b4694ab4ad0384db500c155b371df093790f01f6 d05c6eece255484babbedeb74b3a5b19daaa9763049e08362b82cfdf1fc8bfbe
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.4.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1702
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.js | 216.172.172.129 | 200 OK | 13 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/utag.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (4327), with CRLF line terminators Hash52ceaa24ff02c7acc2123d516f74ac76 854f566a3ded22d56d80856bae40b73185d1dee2 8e011261942d9f89c394af6e3ec838beef85c536f43fc8a3d052deed076a5ce7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/utag.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 12984
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/main.17d807918e15956ad95f.chunk.js | 216.172.172.129 | 200 OK | 2.9 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/main.17d807918e15956ad95f.chunk.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (6889), with no line terminators Hash788d50a34153b374d17dc89c015209e9 b4e78cb4d69e31ed42b4538a46acf4788f91bd77 c18f15acded5ea4038de366888e3df2a241a30c4a76774f6589efc7068bde3fa
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/main.17d807918e15956ad95f.chunk.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2914
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2 | 96.6.19.156 | 200 OK | 23 kB |
URL GET HTTP/2www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-sbd.woff2 IP96.6.19.156:443
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerDigiCert Inc Subjectwww15.wellsfargomedia.com FingerprintDC:E4:44:A1:3F:E4:8F:5F:29:7D:F0:E0:17:49:BA:51:7E:2A:A5:65 ValidityWed, 27 Sep 2023 00:00:00 GMT - Thu, 26 Sep 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22600, version 1.13107 Hash83df8749c013f13019fa8e0912041759 2bbffcf012a59e47661c0a37edda0fc772992ae7 ab9d8c97b35ed86b6224aca911aa304a0d7dbcbd28e00a4c6585b96e28ed30ba
GET /wfui/css/fonts/wellsfargosans-sbd.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://carpen.adv.br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2
content-length: 22600
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5c7595ba-5848"
access-control-allow-origin: *
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 19 Apr 2025 17:43:12 GMT
date: Fri, 19 Apr 2024 17:43:12 GMT
X-Firefox-Spdy: h2
|
|
| www15.wellsfargomedia.com/wfui/css/fonts/wellsfargoserif-rg.woff2 | 96.6.19.156 | 200 OK | 27 kB |
URL GET HTTP/2www15.wellsfargomedia.com/wfui/css/fonts/wellsfargoserif-rg.woff2 IP96.6.19.156:443
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerDigiCert Inc Subjectwww15.wellsfargomedia.com FingerprintDC:E4:44:A1:3F:E4:8F:5F:29:7D:F0:E0:17:49:BA:51:7E:2A:A5:65 ValidityWed, 27 Sep 2023 00:00:00 GMT - Thu, 26 Sep 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 26708, version 1.13107 Hash885d42ab7ffcffc42ed29816c3ce9727 3d84cb41ddfb5bf8627e2b9dc867237bea47baad aeb7b3bfc4281d35b02dfde05ac7a6c0d3daa7f3123b35a9cbd4b5a8e3f3c310
GET /wfui/css/fonts/wellsfargoserif-rg.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://carpen.adv.br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2
content-length: 26708
last-modified: Mon, 11 Mar 2019 20:52:01 GMT
etag: "5c86ca71-6854"
access-control-allow-origin: *
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 19 Apr 2025 17:43:12 GMT
date: Fri, 19 Apr 2024 17:43:12 GMT
X-Firefox-Spdy: h2
|
|
| www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2 | 96.6.19.156 | 200 OK | 22 kB |
URL GET HTTP/2www15.wellsfargomedia.com/wfui/css/fonts/wellsfargosans-rg.woff2 IP96.6.19.156:443
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerDigiCert Inc Subjectwww15.wellsfargomedia.com FingerprintDC:E4:44:A1:3F:E4:8F:5F:29:7D:F0:E0:17:49:BA:51:7E:2A:A5:65 ValidityWed, 27 Sep 2023 00:00:00 GMT - Thu, 26 Sep 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22424, version 1.13107 Hash0a1639ebe9fab396657a62aa5233c832 9b58164729ad918dd7255e4856f9da7f3a90bfde 631f3b6267a831a8d67c45e480b5d5a2601f10ff8708bcf3a45a41b377a129cc
GET /wfui/css/fonts/wellsfargosans-rg.woff2 HTTP/1.1
Host: www15.wellsfargomedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://carpen.adv.br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: font/woff2
content-length: 22424
last-modified: Tue, 26 Feb 2019 19:38:34 GMT
etag: "5c7595ba-5798"
access-control-allow-origin: *
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 19 Apr 2025 17:43:12 GMT
date: Fri, 19 Apr 2024 17:43:12 GMT
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/_bm/get_params?type=web-jsto,get-akid | 216.172.172.129 | 404 Not Found | 836 B |
URL GET HTTP/2carpen.adv.br/_bm/get_params?type=web-jsto,get-akid IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /_bm/get_params?type=web-jsto,get-akid HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
ADRUM: isAjax:true
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 04 Oct 2022 14:01:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 19 Apr 2024 17:43:12 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/auth/static/scripts/adrum-ext.b4436be974de477658d4a93afb752165.js | 216.172.172.129 | 404 Not Found | 836 B |
URL GET HTTP/2carpen.adv.br/auth/static/scripts/adrum-ext.b4436be974de477658d4a93afb752165.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hash11a0bbc52834cf74da795d5815b7dc63 5d401cf953df570210427a92d27e00ddf403f4b7 c989a169a129121f006c8fcbf90ab305d9005d516ce72cc44b4949167eed39d5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /auth/static/scripts/adrum-ext.b4436be974de477658d4a93afb752165.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 04 Oct 2022 14:01:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 19 Apr 2024 17:43:12 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/wfui.ab4e6b27ee491347fb16.chunk.css | 216.172.172.129 | 200 OK | 26 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/wfui.ab4e6b27ee491347fb16.chunk.css IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hasha94e453e27349ee62035c4c4c9e5a1e5 37020ec785ddd64715ac876591be9d8cdf155903 f8cef74b4cc1685a445a2dd11d7c5d0c61e0795467eca81020c812b2df400c85
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/wfui.ab4e6b27ee491347fb16.chunk.css HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/vendor.0f3b274789da9fa3a8b1.chunk.js | 216.172.172.129 | 200 OK | 459 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/vendor.0f3b274789da9fa3a8b1.chunk.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
Size459 kB (459178 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/vendor.0f3b274789da9fa3a8b1.chunk.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/0.2d945b14e107c71513b9.chunk.js | 216.172.172.129 | 200 OK | 66 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/0.2d945b14e107c71513b9.chunk.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash056b124c3a66ac58d401d50a91200b69 e39e81e6fa35344b0e5bf21251aadc1ee523a71a e4ab30c330e75066f03b99bef2fbe8fcb6751747dedea88223ac7114aabded32
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/0.2d945b14e107c71513b9.chunk.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/1.8b0d9aac9c76cdd18a46.chunk.js | 216.172.172.129 | 200 OK | 104 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/1.8b0d9aac9c76cdd18a46.chunk.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
Size104 kB (103614 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/1.8b0d9aac9c76cdd18a46.chunk.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/2.c3e28c438d94d046d21b.chunk.css | 216.172.172.129 | 200 OK | 109 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/2.c3e28c438d94d046d21b.chunk.css IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size109 kB (108743 bytes) Hash1d6d5a8a5710f8ae95b4b106d965b13b 43944b7bbbf3edec24226b72bf8327c4eb1bd21b 73ceca17cef332552d3235d60ea43f6f43560516bcac78d1ab5799823c8c7451
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/2.c3e28c438d94d046d21b.chunk.css HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/adrum-ext.js | 216.172.172.129 | 200 OK | 46 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/adrum-ext.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeJavaScript source, ASCII text, with very long lines (675) Hash69c630c91c0669d3c88d29c9860ea4b5 1ad3e1b9c9e737b6a26006d5c98d86c8048ab6dc b78d57e1736f692e67a9f3e3762b84993e8984d3d7d72bc9a55e4913880ef3d7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/adrum-ext.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/wfui.7eb7682fa52759a99024.chunk.js | 216.172.172.129 | 200 OK | 1.2 MB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/wfui.7eb7682fa52759a99024.chunk.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
Size1.2 MB (1188434 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/wfui.7eb7682fa52759a99024.chunk.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/favicon.ico | 216.172.172.129 | 404 Not Found | 2.4 kB |
URL GET HTTP/2carpen.adv.br/favicon.ico IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (2553), with no line terminators Hashf6117cde11582c69d15926f6eaa2c01e e364986bfd9ca8d3e6636fa60eabe97ec10f2456 e32e774da87306c618ca633fd1d1ce9c05cd85c9b33e1645255a58380d87652c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /favicon.ico HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
last-modified: Tue, 04 Oct 2022 14:01:30 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 836
content-type: text/html
date: Fri, 19 Apr 2024 17:43:12 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/generic1675376475943.js | 216.172.172.129 | 200 OK | 349 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/generic1675376475943.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
Size349 kB (348779 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/generic1675376475943.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|
| carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/2.db20e550851dff8bb362.chunk.js | 216.172.172.129 | 200 OK | 219 kB |
URL GET HTTP/2carpen.adv.br/securewellsfargosecure/wellsfargo/login/includes/2.db20e550851dff8bb362.chunk.js IP216.172.172.129:443 ASN#19871 NETWORK-SOLUTIONS-HOSTING
Requested byhttps://carpen.adv.br/securewellsfargosecure/wellsfargo/login/ CertificateIssuerLet's Encrypt Subjectcarpen.adv.br FingerprintF5:21:7D:E5:A1:42:CD:A1:C9:C3:B0:1F:A8:F8:2F:F5:0C:10:21:99 ValiditySun, 17 Mar 2024 10:12:33 GMT - Sat, 15 Jun 2024 10:12:32 GMT
Size219 kB (218570 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Wells Fargo |
GET /securewellsfargosecure/wellsfargo/login/includes/2.db20e550851dff8bb362.chunk.js HTTP/1.1
Host: carpen.adv.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://carpen.adv.br/securewellsfargosecure/wellsfargo/login/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 30 Jul 2023 01:38:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 19 Apr 2024 17:43:11 GMT
server: Apache
X-Firefox-Spdy: h2
|
|