0fe6ea0.netsolhost.com/pst/w/pb
301 Moved Permanently 247 B URL User Request GET HTTP/2 0fe6ea0.netsolhost.com/pst/w/pb
IP
ASN #19871 NETWORK-SOLUTIONS-HOSTING
Certificate IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint37:77:FA:4D:BF:9B:EA:F6:6A:76:4F:AE:88:AE:97:83:DA:CE:92:D4
ValiditySat, 12 Aug 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash eacf9217b21db3150a85c9e5cd731d1c
86ee82463723c4f1fd9755f5d84683daaba08a83
2d2e957e8c1d7c9987d60266d88caf8253d39e8be4a1ba9c0d8af4ae177d3835
GET /pst/w/pb HTTP/1.1
Host: 0fe6ea0.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: openresty/1.19.9.1
date: Wed, 29 Nov 2023 00:34:25 GMT
content-type: text/html; charset=iso-8859-1
content-length: 247
location: http://0fe6ea0.netsolhost.com/pst/w/pb/
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: "1; mode=block"
referrer-policy: no-referrer-when-downgrade
x-webcom-cache-status: BYPASS
X-Firefox-Spdy: h2
www.labanquepostale.fr/etc.clientlibs/labanquepostale/commons/clientlibs/base/resources/logo-lbp.png
200 OK 8.7 kB URL GET HTTP/1.1 www.labanquepostale.fr/etc.clientlibs/labanquepostale/commons/clientlibs/base/resources/logo-lbp.png
IP
Requested by https://0fe6ea0.netsolhost.com/pst/w/pb/
Certificate IssuerDigiCert Inc
Subjectwww.labanquepostale.fr
Fingerprint27:33:FE:30:05:4C:E9:FA:BA:94:E1:C1:89:D4:13:59:56:D7:4B:C6
ValidityMon, 05 Jun 2023 00:00:00 GMT - Tue, 04 Jun 2024 23:59:59 GMT
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d0d8d8eab03bada9a2ed197e727681e
7a4e52059e11b4784fab81e8e3989cd5945e7007
c6573f8959e56e6a621715af791a527f3da7dc0c1abd9377b83f991ccc85a91c
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /etc.clientlibs/labanquepostale/commons/clientlibs/base/resources/logo-lbp.png HTTP/1.1
Host: www.labanquepostale.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://0fe6ea0.netsolhost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
X-Dispatcher: dispatcher
X-Vhost: publish
Cache-Control: max-age=31536000, public
X-Content-Type-Options: nosniff
Last-Modified: Thu, 07 Apr 2022 12:25:01 GMT
ETag: "21d8-5dc0f91208140"
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=56
Content-Type: image/png
Connection: Keep-Alive
Date: Wed, 29 Nov 2023 00:34:26 GMT
Age: 291
Content-Length: 8664
0fe6ea0.netsolhost.com/pst/w/pb/xzaz/jquery.min.js
200 OK 44 kB URL GET HTTP/2 0fe6ea0.netsolhost.com/pst/w/pb/xzaz/jquery.min.js
IP
ASN #19871 NETWORK-SOLUTIONS-HOSTING
Requested by https://0fe6ea0.netsolhost.com/pst/w/pb/
Certificate IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint37:77:FA:4D:BF:9B:EA:F6:6A:76:4F:AE:88:AE:97:83:DA:CE:92:D4
ValiditySat, 12 Aug 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash b8b9f32781a0294d5ec7a1e536feb3de
39e3d6fe496a93823bc5ec6efdec5b2f30001fba
5f8c13729266d4bcd30eab8b4120885e24b340caefee28d9a673a6019cf122ea
GET /pst/w/pb/xzaz/jquery.min.js HTTP/1.1
Host: 0fe6ea0.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://0fe6ea0.netsolhost.com/pst/w/pb/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=ba2743eec8d502e8c823c10deed91d0e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Wed, 29 Nov 2023 00:34:26 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 28 Nov 2023 20:15:10 GMT
etag: W/"15851-60b3c13533c57"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: "1; mode=block"
referrer-policy: no-referrer-when-downgrade
x-webcom-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
www.labanquepostale.fr/etc.clientlibs/labanquepostale/commons/clientlibs/base/resources/logo-lbp.png
200 OK 8.7 kB URL GET HTTP/1.1 www.labanquepostale.fr/etc.clientlibs/labanquepostale/commons/clientlibs/base/resources/logo-lbp.png
IP
Requested by https://0fe6ea0.netsolhost.com/pst/w/pb/
Certificate IssuerDigiCert Inc
Subjectwww.labanquepostale.fr
Fingerprint27:33:FE:30:05:4C:E9:FA:BA:94:E1:C1:89:D4:13:59:56:D7:4B:C6
ValidityMon, 05 Jun 2023 00:00:00 GMT - Tue, 04 Jun 2024 23:59:59 GMT
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d0d8d8eab03bada9a2ed197e727681e
7a4e52059e11b4784fab81e8e3989cd5945e7007
c6573f8959e56e6a621715af791a527f3da7dc0c1abd9377b83f991ccc85a91c
Analyzer Verdict Alert urlquery phishing Phishing - La Banque postale
GET /etc.clientlibs/labanquepostale/commons/clientlibs/base/resources/logo-lbp.png HTTP/1.1
Host: www.labanquepostale.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://0fe6ea0.netsolhost.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
X-Dispatcher: dispatcher
X-Vhost: publish
Cache-Control: max-age=31536000, public
X-Content-Type-Options: nosniff
Last-Modified: Thu, 07 Apr 2022 12:25:01 GMT
ETag: "21d8-5dc0f91208140"
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=56
Content-Type: image/png
Connection: Keep-Alive
Date: Wed, 29 Nov 2023 00:34:27 GMT
Age: 292
Content-Length: 8664
0fe6ea0.netsolhost.com/pst/w/pb/
200 OK 96 kB URL User Request GET HTTP/2 0fe6ea0.netsolhost.com/pst/w/pb/
IP
ASN #19871 NETWORK-SOLUTIONS-HOSTING
Certificate IssuerSectigo Limited
Subject*.netsolhost.com
Fingerprint37:77:FA:4D:BF:9B:EA:F6:6A:76:4F:AE:88:AE:97:83:DA:CE:92:D4
ValiditySat, 12 Aug 2023 00:00:00 GMT - Sun, 11 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pst/w/pb/ HTTP/1.1
Host: 0fe6ea0.netsolhost.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Wed, 29 Nov 2023 00:34:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.0.28
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=ba2743eec8d502e8c823c10deed91d0e; path=/
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: "1; mode=block"
referrer-policy: no-referrer-when-downgrade
x-webcom-cache-status: BYPASS
content-encoding: gzip
X-Firefox-Spdy: h2
aqua-e.it//tools/htbnposta/b.css
200 OK 228 kB URL GET HTTP/2 aqua-e.it//tools/htbnposta/b.css
IP
Requested by https://0fe6ea0.netsolhost.com/pst/w/pb/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint3D:D1:2F:2C:2E:25:A0:24:D3:F8:40:15:56:AF:C7:D6:D3:DE:59:98
ValiditySat, 11 Mar 2023 00:00:00 GMT - Sat, 09 Mar 2024 23:59:59 GMT
Size 228 kB (228356 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET //tools/htbnposta/b.css HTTP/1.1
Host: aqua-e.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://0fe6ea0.netsolhost.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 29 Nov 2023 00:34:26 GMT
content-type: text/css
last-modified: Tue, 21 Jun 2022 13:29:17 GMT
etag: W/"37c04-5e1f5350fe8de"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UtUrWT94Vw8R2FZwCqe6eXYE4lenm8qVYcPy9sOtkwMD0TC%2FMJ7FuEtf1RcZ1OFqcf1YhLdb3yXicWENhmMli6f7yHc9b1OiISWFWHJwusRRQMH5CEpLaeY1m98%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82d6c3d21e50b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
206.188.192.243
185.16.252.161