| | 77.37.55.115 | 403 Forbidden | 2.2 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: hcdn
date: Thu, 25 Apr 2024 22:36:45 GMT
content-type: text/html
content-length: 2193
vary: Accept-Encoding
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 3bb7556276a1ba081835b6e4b088b73d-bnk-edge2
X-Firefox-Spdy: h2
|
|
| | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:45 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 8191a117954a3a3a0c4c17108d9bc594-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge | 77.37.55.115 | 200 OK | 142 B |
URL GET HTTP/1.1www.lijadoradebanco.top/hcdn-cgi/jschallenge IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
Hash61dd858291cf48ba9c31403555277c86 4a265f0a8406d8b98d70b6ad4e8118085fa8dee3 ad0b710c81b3b0b8590b8b0e81e75c640044d5a4565aedc8e16b593986d0049a
GET /hcdn-cgi/jschallenge HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: ba37647ceb6943a0e09a3cff44f95e88-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: gzip
|
|
| www.lijadoradebanco.top/favicon.ico | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL GET HTTP/1.1www.lijadoradebanco.top/favicon.ico IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
GET /favicon.ico HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:45 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 4d807ad3cb000dd9a2ea98a6deba0aba-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate | 77.37.55.115 | | 0 B |
URL www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate IP77.37.55.115:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hcdn-cgi/jschallenge-validate HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: http://www.lijadoradebanco.top
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:48 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: hcdn=AQEAKZaejVDDIvUTmnnDRRMx-uwd7GMSPVXTI3lWMCBldgIA2ypmAAAAAADOAADrmJRR7eLbLDpcwx6mCkKcAAAAKn9lmD4W7OwPcexCcw2QOw; Path=/; SameSite=Lax; HttpOnly
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 00e3c359ddf03c856d4777eabc01e847-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
|
|
| | 77.37.55.115 | 403 Forbidden | 2.2 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.lijadoradebanco.top/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: hcdn=AQEAKZaejVDDIvUTmnnDRRMx-uwd7GMSPVXTI3lWMCBldgIA2ypmAAAAAADOAADrmJRR7eLbLDpcwx6mCkKcAAAAKn9lmD4W7OwPcexCcw2QOw
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
server: hcdn
date: Thu, 25 Apr 2024 22:36:48 GMT
content-type: text/html
content-length: 2193
vary: accept-encoding
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: a686b1682e5fa2526c608a001ae7dcf2-bnk-edge2
|
|
| | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAKZaejVDDIvUTmnnDRRMx-uwd7GMSPVXTI3lWMCBldgIA2ypmAAAAAADOAADrmJRR7eLbLDpcwx6mCkKcAAAAKn9lmD4W7OwPcexCcw2QOw
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:48 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 3bb936719015e88344370800e699b3b1-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge | 77.37.55.115 | 200 OK | 142 B |
URL GET HTTP/1.1www.lijadoradebanco.top/hcdn-cgi/jschallenge IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
Hash61dd858291cf48ba9c31403555277c86 4a265f0a8406d8b98d70b6ad4e8118085fa8dee3 ad0b710c81b3b0b8590b8b0e81e75c640044d5a4565aedc8e16b593986d0049a
GET /hcdn-cgi/jschallenge HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAKZaejVDDIvUTmnnDRRMx-uwd7GMSPVXTI3lWMCBldgIA2ypmAAAAAADOAADrmJRR7eLbLDpcwx6mCkKcAAAAKn9lmD4W7OwPcexCcw2QOw
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: ec1e0bf7583cde5a813ba9c0b65ecd88-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: gzip
|
|
| www.lijadoradebanco.top/favicon.ico | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL GET HTTP/1.1www.lijadoradebanco.top/favicon.ico IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
GET /favicon.ico HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAKZaejVDDIvUTmnnDRRMx-uwd7GMSPVXTI3lWMCBldgIA2ypmAAAAAADOAADrmJRR7eLbLDpcwx6mCkKcAAAAKn9lmD4W7OwPcexCcw2QOw
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:48 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: bda95b6b9853e4351c3a9ba0fa0a201a-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate | 77.37.55.115 | | 0 B |
URL www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate IP77.37.55.115:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hcdn-cgi/jschallenge-validate HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: http://www.lijadoradebanco.top
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAKZaejVDDIvUTmnnDRRMx-uwd7GMSPVXTI3lWMCBldgIA2ypmAAAAAADOAADrmJRR7eLbLDpcwx6mCkKcAAAAKn9lmD4W7OwPcexCcw2QOw
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:51 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: hcdn=AQEAPZc7Fj8mVXtGf9ym_eeTJj2kgcrGR5gon6xlBfs-u5sA2ypmAAMAAADnAABZ43-wf41AmLcVivUtcdgaAAAAdLX_r2vhStI6C1j49sxR0A; Path=/; SameSite=Lax; HttpOnly
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 42d249a61e8a9473c5376c022b9bbb0c-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
|
|
| | 77.37.55.115 | 403 Forbidden | 2.2 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.lijadoradebanco.top/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: hcdn=AQEAPZc7Fj8mVXtGf9ym_eeTJj2kgcrGR5gon6xlBfs-u5sA2ypmAAMAAADnAABZ43-wf41AmLcVivUtcdgaAAAAdLX_r2vhStI6C1j49sxR0A
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
server: hcdn
date: Thu, 25 Apr 2024 22:36:51 GMT
content-type: text/html
content-length: 2193
vary: accept-encoding
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: b2f3af45f0ef1436b7b11d4a83c642f7-bnk-edge2
|
|
| | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAPZc7Fj8mVXtGf9ym_eeTJj2kgcrGR5gon6xlBfs-u5sA2ypmAAMAAADnAABZ43-wf41AmLcVivUtcdgaAAAAdLX_r2vhStI6C1j49sxR0A
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:52 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 546ac019d1adb76ae411ee8a48c28d80-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge | 77.37.55.115 | 200 OK | 142 B |
URL GET HTTP/1.1www.lijadoradebanco.top/hcdn-cgi/jschallenge IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
Hash61dd858291cf48ba9c31403555277c86 4a265f0a8406d8b98d70b6ad4e8118085fa8dee3 ad0b710c81b3b0b8590b8b0e81e75c640044d5a4565aedc8e16b593986d0049a
GET /hcdn-cgi/jschallenge HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAPZc7Fj8mVXtGf9ym_eeTJj2kgcrGR5gon6xlBfs-u5sA2ypmAAMAAADnAABZ43-wf41AmLcVivUtcdgaAAAAdLX_r2vhStI6C1j49sxR0A
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 6ad04fc4754e592dec12cb7ee9d1b4bc-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: gzip
|
|
| www.lijadoradebanco.top/favicon.ico | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL GET HTTP/1.1www.lijadoradebanco.top/favicon.ico IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
GET /favicon.ico HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAPZc7Fj8mVXtGf9ym_eeTJj2kgcrGR5gon6xlBfs-u5sA2ypmAAMAAADnAABZ43-wf41AmLcVivUtcdgaAAAAdLX_r2vhStI6C1j49sxR0A
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:52 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 5d20840eae3a6872f9bb62b0afd11510-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate | 77.37.55.115 | | 0 B |
URL www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate IP77.37.55.115:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hcdn-cgi/jschallenge-validate HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: http://www.lijadoradebanco.top
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAPZc7Fj8mVXtGf9ym_eeTJj2kgcrGR5gon6xlBfs-u5sA2ypmAAMAAADnAABZ43-wf41AmLcVivUtcdgaAAAAdLX_r2vhStI6C1j49sxR0A
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:55 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: hcdn=AQEAGpcxClTPgszP7FsmkCCKxCDKAQC1SUb8eQm6Cd0OxY0A2ypmAAcAAADnAABJrUjmqHd_VJ2bl3TTQVkFAAAAPOOkEY5n7HRCnZfsHldCew; Path=/; SameSite=Lax; HttpOnly
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d08b7c9f046cff0edb7bda952309fe71-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
|
|
| | 77.37.55.115 | 403 Forbidden | 2.2 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.lijadoradebanco.top/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: hcdn=AQEAGpcxClTPgszP7FsmkCCKxCDKAQC1SUb8eQm6Cd0OxY0A2ypmAAcAAADnAABJrUjmqHd_VJ2bl3TTQVkFAAAAPOOkEY5n7HRCnZfsHldCew
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
server: hcdn
date: Thu, 25 Apr 2024 22:36:55 GMT
content-type: text/html
content-length: 2193
vary: accept-encoding
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: f01b63de11ab88f23afe7bb4536f30d1-bnk-edge2
|
|
| | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAGpcxClTPgszP7FsmkCCKxCDKAQC1SUb8eQm6Cd0OxY0A2ypmAAcAAADnAABJrUjmqHd_VJ2bl3TTQVkFAAAAPOOkEY5n7HRCnZfsHldCew
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:55 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 6b1c84fb7e8ebdf96bc5b517389735e6-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge | 77.37.55.115 | 200 OK | 142 B |
URL GET HTTP/1.1www.lijadoradebanco.top/hcdn-cgi/jschallenge IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
Hash61dd858291cf48ba9c31403555277c86 4a265f0a8406d8b98d70b6ad4e8118085fa8dee3 ad0b710c81b3b0b8590b8b0e81e75c640044d5a4565aedc8e16b593986d0049a
GET /hcdn-cgi/jschallenge HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAGpcxClTPgszP7FsmkCCKxCDKAQC1SUb8eQm6Cd0OxY0A2ypmAAcAAADnAABJrUjmqHd_VJ2bl3TTQVkFAAAAPOOkEY5n7HRCnZfsHldCew
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: c3b006592c6e72d7103c558b11c39a2d-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: gzip
|
|
| www.lijadoradebanco.top/favicon.ico | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL GET HTTP/1.1www.lijadoradebanco.top/favicon.ico IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
GET /favicon.ico HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAGpcxClTPgszP7FsmkCCKxCDKAQC1SUb8eQm6Cd0OxY0A2ypmAAcAAADnAABJrUjmqHd_VJ2bl3TTQVkFAAAAPOOkEY5n7HRCnZfsHldCew
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:55 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d4bc3aeeb21a44600a45d72204819771-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate | 77.37.55.115 | | 0 B |
URL www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate IP77.37.55.115:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hcdn-cgi/jschallenge-validate HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: http://www.lijadoradebanco.top
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAGpcxClTPgszP7FsmkCCKxCDKAQC1SUb8eQm6Cd0OxY0A2ypmAAcAAADnAABJrUjmqHd_VJ2bl3TTQVkFAAAAPOOkEY5n7HRCnZfsHldCew
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:58 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: hcdn=AQEAxrBkIZKtnh7WZzQR02Cbl6sD2CgE5-nLNY6UqmrrqnEA2ypmAAoAAADnAABHPtLfJUnj6-ESEaIZgMNrAAAAvR2I16pXRH8SB0m7YJQjEQ; Path=/; SameSite=Lax; HttpOnly
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 939ad76533b5b116c8ef354ee264f027-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
|
|
| | 77.37.55.115 | 403 Forbidden | 2.2 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.lijadoradebanco.top/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: hcdn=AQEAxrBkIZKtnh7WZzQR02Cbl6sD2CgE5-nLNY6UqmrrqnEA2ypmAAoAAADnAABHPtLfJUnj6-ESEaIZgMNrAAAAvR2I16pXRH8SB0m7YJQjEQ
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
server: hcdn
date: Thu, 25 Apr 2024 22:36:58 GMT
content-type: text/html
content-length: 2193
vary: accept-encoding
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: d025b971df09bfb5aadfb6736754f6aa-bnk-edge2
|
|
| | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAxrBkIZKtnh7WZzQR02Cbl6sD2CgE5-nLNY6UqmrrqnEA2ypmAAoAAADnAABHPtLfJUnj6-ESEaIZgMNrAAAAvR2I16pXRH8SB0m7YJQjEQ
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:58 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 662479f076788dc1eae989d2ea6f3aa8-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge | 77.37.55.115 | 200 OK | 142 B |
URL GET HTTP/1.1www.lijadoradebanco.top/hcdn-cgi/jschallenge IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
Hash61dd858291cf48ba9c31403555277c86 4a265f0a8406d8b98d70b6ad4e8118085fa8dee3 ad0b710c81b3b0b8590b8b0e81e75c640044d5a4565aedc8e16b593986d0049a
GET /hcdn-cgi/jschallenge HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAxrBkIZKtnh7WZzQR02Cbl6sD2CgE5-nLNY6UqmrrqnEA2ypmAAoAAADnAABHPtLfJUnj6-ESEaIZgMNrAAAAvR2I16pXRH8SB0m7YJQjEQ
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: b90cff56a079fb5e76e357413760b0c1-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: gzip
|
|
| www.lijadoradebanco.top/favicon.ico | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL GET HTTP/1.1www.lijadoradebanco.top/favicon.ico IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
GET /favicon.ico HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAxrBkIZKtnh7WZzQR02Cbl6sD2CgE5-nLNY6UqmrrqnEA2ypmAAoAAADnAABHPtLfJUnj6-ESEaIZgMNrAAAAvR2I16pXRH8SB0m7YJQjEQ
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:36:58 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 3b52b2627859666eeb903a406408d91b-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate | 77.37.55.115 | | 0 B |
URL www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate IP77.37.55.115:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hcdn-cgi/jschallenge-validate HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: http://www.lijadoradebanco.top
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAxrBkIZKtnh7WZzQR02Cbl6sD2CgE5-nLNY6UqmrrqnEA2ypmAAoAAADnAABHPtLfJUnj6-ESEaIZgMNrAAAAvR2I16pXRH8SB0m7YJQjEQ
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:01 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: hcdn=AQEAuypEmrCRGM9hlFZZjT7AGZE8G0JNdsWfft8yiQNLfbQA2ypmAA0AAADnAACYzuqaG0JTRjJ8rG7HakTwAAAADStfg2Bn8KXjDEzkAejgPQ; Path=/; SameSite=Lax; HttpOnly
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 89ace8a19ddb0edb4e8d9cdc885bbbd7-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
|
|
| | 77.37.55.115 | 403 Forbidden | 2.2 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.lijadoradebanco.top/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: hcdn=AQEAuypEmrCRGM9hlFZZjT7AGZE8G0JNdsWfft8yiQNLfbQA2ypmAA0AAADnAACYzuqaG0JTRjJ8rG7HakTwAAAADStfg2Bn8KXjDEzkAejgPQ
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
server: hcdn
date: Thu, 25 Apr 2024 22:37:01 GMT
content-type: text/html
content-length: 2193
vary: accept-encoding
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: db08ff2b5700984bc1ea84b6dd2052f4-bnk-edge2
|
|
| | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAuypEmrCRGM9hlFZZjT7AGZE8G0JNdsWfft8yiQNLfbQA2ypmAA0AAADnAACYzuqaG0JTRjJ8rG7HakTwAAAADStfg2Bn8KXjDEzkAejgPQ
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:01 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 933406b6f5b4be59725843d0fbc0ddf1-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge | 77.37.55.115 | 200 OK | 142 B |
URL GET HTTP/1.1www.lijadoradebanco.top/hcdn-cgi/jschallenge IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
Hash61dd858291cf48ba9c31403555277c86 4a265f0a8406d8b98d70b6ad4e8118085fa8dee3 ad0b710c81b3b0b8590b8b0e81e75c640044d5a4565aedc8e16b593986d0049a
GET /hcdn-cgi/jschallenge HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAuypEmrCRGM9hlFZZjT7AGZE8G0JNdsWfft8yiQNLfbQA2ypmAA0AAADnAACYzuqaG0JTRjJ8rG7HakTwAAAADStfg2Bn8KXjDEzkAejgPQ
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 91b63563bdb4284f76d1db29c133469f-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: gzip
|
|
| www.lijadoradebanco.top/favicon.ico | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL GET HTTP/1.1www.lijadoradebanco.top/favicon.ico IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
GET /favicon.ico HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAuypEmrCRGM9hlFZZjT7AGZE8G0JNdsWfft8yiQNLfbQA2ypmAA0AAADnAACYzuqaG0JTRjJ8rG7HakTwAAAADStfg2Bn8KXjDEzkAejgPQ
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:01 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 961cd6ac0b413bba1e3b5c1c213e29bb-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate | 77.37.55.115 | | 0 B |
URL www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate IP77.37.55.115:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hcdn-cgi/jschallenge-validate HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: http://www.lijadoradebanco.top
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEAuypEmrCRGM9hlFZZjT7AGZE8G0JNdsWfft8yiQNLfbQA2ypmAA0AAADnAACYzuqaG0JTRjJ8rG7HakTwAAAADStfg2Bn8KXjDEzkAejgPQ
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:04 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: hcdn=AQEA1z1wuvGNCVm-yO1ehAZFCRbCZlsJ6sbJTxGBYyEI4hkA2ypmABAAAADnAADf3NcIY62KPdCbc_me7zz3AAAAKcQpuLNS6gIQmaNiwogJiA; Path=/; SameSite=Lax; HttpOnly
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 84e3c6243542fb3c6b18fa07ad419722-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
|
|
| | 77.37.55.115 | 403 Forbidden | 2.2 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.lijadoradebanco.top/
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: hcdn=AQEA1z1wuvGNCVm-yO1ehAZFCRbCZlsJ6sbJTxGBYyEI4hkA2ypmABAAAADnAADf3NcIY62KPdCbc_me7zz3AAAAKcQpuLNS6gIQmaNiwogJiA
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 403 Forbidden
server: hcdn
date: Thu, 25 Apr 2024 22:37:05 GMT
content-type: text/html
content-length: 2193
vary: accept-encoding
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: ace435358c88575b23570711d4c102a2-bnk-edge2
|
|
| | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL User Request GET HTTP/1.1IP77.37.55.115:80
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEA1z1wuvGNCVm-yO1ehAZFCRbCZlsJ6sbJTxGBYyEI4hkA2ypmABAAAADnAADf3NcIY62KPdCbc_me7zz3AAAAKcQpuLNS6gIQmaNiwogJiA
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:05 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 938da2a741a2387bdc758f5a4a373fb5-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge | 77.37.55.115 | 200 OK | 142 B |
URL GET HTTP/1.1www.lijadoradebanco.top/hcdn-cgi/jschallenge IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
Hash61dd858291cf48ba9c31403555277c86 4a265f0a8406d8b98d70b6ad4e8118085fa8dee3 ad0b710c81b3b0b8590b8b0e81e75c640044d5a4565aedc8e16b593986d0049a
GET /hcdn-cgi/jschallenge HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEA1z1wuvGNCVm-yO1ehAZFCRbCZlsJ6sbJTxGBYyEI4hkA2ypmABAAAADnAADf3NcIY62KPdCbc_me7zz3AAAAKcQpuLNS6gIQmaNiwogJiA
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 1b700c213329c157ad981c2193417166-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: gzip
|
|
| www.lijadoradebanco.top/favicon.ico | 77.37.55.115 | 403 Forbidden | 2.4 kB |
URL GET HTTP/1.1www.lijadoradebanco.top/favicon.ico IP77.37.55.115:80
Requested byhttp://www.lijadoradebanco.top/
File typeHTML document, ASCII text, with very long lines (4792), with no line terminators Hashb649bb4bbcec6444434d2df7501effb6 f8a04ac654e2234fa2644abf8e293d02bc01c8fd c2779250c7e25bb12281a890f3ec61c3585c5bbad82fbbb55a3068191004fc4a
GET /favicon.ico HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEA1z1wuvGNCVm-yO1ehAZFCRbCZlsJ6sbJTxGBYyEI4hkA2ypmABAAAADnAADf3NcIY62KPdCbc_me7zz3AAAAKcQpuLNS6gIQmaNiwogJiA
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:05 GMT
Content-Type: text/html
Content-Length: 2393
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 13530fe10e7071e6b75cafc0606b962c-bnk-edge2
|
|
| www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate | 77.37.55.115 | | 0 B |
URL www.lijadoradebanco.top/hcdn-cgi/jschallenge-validate IP77.37.55.115:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /hcdn-cgi/jschallenge-validate HTTP/1.1
Host: www.lijadoradebanco.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.lijadoradebanco.top/
Content-Type: application/x-www-form-urlencoded
Content-Length: 74
Origin: http://www.lijadoradebanco.top
DNT: 1
Connection: keep-alive
Cookie: hcdn=AQEA1z1wuvGNCVm-yO1ehAZFCRbCZlsJ6sbJTxGBYyEI4hkA2ypmABAAAADnAADf3NcIY62KPdCbc_me7zz3AAAAKcQpuLNS6gIQmaNiwogJiA
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: hcdn
Date: Thu, 25 Apr 2024 22:37:08 GMT
Content-Type: application/octet-stream
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: hcdn=AQEAZk4PFP-dhDufG7orY4GIjfvWoR-XsZWJFCTYZKZGe-kA2ypmABQAAADnAABBZCuyH_zVio_FnepkFM_pAAAAAErbcNHDXy3d4-AZlBFt6A; Path=/; SameSite=Lax; HttpOnly
alt-svc: h3=":443"; ma=86400
x-hcdn-request-id: 83dee04b78a7e70c5980f48f4d216340-bnk-edge2
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
|
|