| owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 | 195.239.188.3 | 200 OK | 11 kB |
URL User Request GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 IP195.239.188.3:443
CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeHTML document, ASCII text, with very long lines (470), with CRLF line terminators Hash54aef62718edada4b716bd64a93ee8a9 94ca8de609cce68cb9dacc8fdfe5bae15b8152b2 eb01d223b9ffd0e8db2e03f24d9d23851902ea3b01d30d0d3765da0ba9cc299d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 10639
Content-Type: text/html
Pragma: no-cache
Cache-control: no-cache,max-age=0,must-revalidate
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=logon_style.css | 195.239.188.3 | 200 OK | 3.7 kB |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=logon_style.css IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeASCII text, with CRLF line terminators Hasheb390c1f5114e6f46d91e8dae7426190 6f6dfc46137f7bb0bec6ff053bdf6ae42a0ebcf4 30fb8871b656c78a56c5b265316391f00999c4add687ae895ec6cecb903c0ca3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=logon_style.css HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 3746
Content-Type: text/css
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=owafont.css | 195.239.188.3 | 200 OK | 5.3 kB |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=owafont.css IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeASCII text, with CRLF line terminators Hash9f2219d5b0220a73402c9f4495990900 49716d120f59965e095545a45eb7b4505b36097a 159f4b224ba13a8c9425965294caa598a874e980582c4c3f3f56a4bf0bea294d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=owafont.css HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 5252
Content-Type: text/css
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=flogon.js | 195.239.188.3 | 200 OK | 17 kB |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=flogon.js IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeASCII text, with CRLF line terminators Hashf26366035bb6bcd3d966bc497df05d8c 4536c3e8ffd066f3c7cc57095285dccd9b1785f9 d87ecfce8a144ca47d88ccf59b11da2cc8813e1aaa2e8d3c79150cbfe4dcd053
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=flogon.js HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 17405
Content-Type: application/x-javascript
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgntopl.gif | 195.239.188.3 | 200 OK | 4.5 kB |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgntopl.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 456 x 115 Hash6ae33a65d15f6bb5113e066fca7fa73a fa8477f0eaed3ade4a217e91133ba37242be0c19 b478b93f8f9a262321211d8ce812cdd6accdfb4ede6e0230ccf44e77ad161f97
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgntopl.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 4455
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgntopr.gif | 195.239.188.3 | 200 OK | 581 B |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgntopr.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 45 x 115 Hash031bed6f568fbddddf550a97400b273f 69342ba98b1a924ea4f984f5ef6b244ba0177cb3 f27d451896ac6a8b768361e3f07c2adf1ee7ae6bcb92ac6d0bda7fb5cf915301
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgntopr.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 581
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnbotr.gif | 195.239.188.3 | 200 OK | 2.4 kB |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnbotr.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 45 x 54 Hash43b7c46b32691aa778c5e49d139db8f5 e72b87c696eed81b71b853ce245a30377dce205e 97305ffb8ff74176df42bcd213e7cdfd7679630e19911a2db7b399c7960aec3e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgnbotr.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 2392
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnexlogo.gif | 195.239.188.3 | 200 OK | 61 B |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnexlogo.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 22 x 22 Hash873c522598fb6da9f70d5dde7ccf6213 c09fdcf5e3933b8efdae4505825e786462cdad51 b125c5f621a199d89bc496740d7dac72f1a8462465a1b61e331727f5d369b2f4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgnexlogo.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 61
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnleft.gif | 195.239.188.3 | 200 OK | 290 B |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnleft.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 15 x 200 Hashbaf34665612f4d59f7cfc06ea82da21d 2c8cf5f76499e66d609ddaac026720ef28078421 96a4b86c4a5ff1f1aa67c52287be64ebd51598d32cbd1249351e462cae549185
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgnleft.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=logon_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 290
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnbotl.gif | 195.239.188.3 | 200 OK | 9.3 kB |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnbotl.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 456 x 54 Hashe0a2c263c6745f251720fe0876d140c4 51b2196c6b10b8c6443e4f91b4c6281134755f33 0e2cda541bf24815df2facd5729d44b70ef4e4bdd160169295944aefc9e51b0b
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgnbotl.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 9311
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnright.gif | 195.239.188.3 | 200 OK | 306 B |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnright.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 15 x 200 Hash391603f1faee60db855bd11650dbbf72 9728452459447efcc7c453c2150139839fa174bc a9626d4f60b20f2da50f763f20d891a70625dde0dba68116896026c400b8b775
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgnright.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=logon_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 306
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnbotm.gif | 195.239.188.3 | 200 OK | 276 B |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgnbotm.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 1 x 54 Hash704330b6d293ce2d32780739218696b9 6ebd408ff617f5317595121191a92bd9ba69a01f 6097839fd066f359bbe21fb228714cd33385a6995a060eaa504ee190e3c1178a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgnbotm.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=logon_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 276
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgntopm.gif | 195.239.188.3 | 200 OK | 58 B |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=lgntopm.gif IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeGIF image data, version 89a, 1 x 115 Hash0615717b3645a8573f07347cdb74d69f b707c5a9ede57d3232138ed7ccdb0b4ee9e56043 9d894a6800fd18d20423c66066097b9653be9eb3796f6a0e216dca220c45d6d6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=lgntopm.gif HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=logon_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 58
Content-Type: image/gif
Cache-control: max-age=604800
|
|
| owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=favicon.ico | 195.239.188.3 | 200 OK | 1.2 kB |
URL GET HTTP/1.1owa.i-on.ru/CookieAuth.dll?GetPic?formdir=1&image=favicon.ico IP195.239.188.3:443
Requested byhttps://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1 CertificateIssuerGlobalSign nv-sa Subject*.i-on.ru Fingerprint73:F5:00:D2:15:93:61:4C:C5:BC:43:43:76:F7:FA:09:C3:0E:CF:7F ValidityThu, 20 Apr 2023 06:56:50 GMT - Tue, 21 May 2024 06:56:49 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash738c26ac73a5817089c30ef2da9a707e 8832d1f0830554f33c62df6f52814410ef950f88 ee6a7f6889908066f36944f85661471d18eb93fa8577e7a719f3ad4b867cf381
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Microsoft |
GET /CookieAuth.dll?GetPic?formdir=1&image=favicon.ico HTTP/1.1
Host: owa.i-on.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owa.i-on.ru/CookieAuth.dll?GetLogon?curl=Z2Fowa&reason=0&formdir=1
Cookie: cookieTest=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: close
Content-Length: 1150
Content-Type: image/x-icon
Cache-control: max-age=604800
|
|