Source: https://blee58.com/bl/ax/l?user=kenrod@me.com |
SlashNext: detection malicious, Label: Credential Stealing type: Phishing & Social Engineering |
Source: https://dacreativeagency.com |
Matcher: Template: microsoft matched with high similarity |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
Matcher: Template: microsoft matched with high similarity |
Source: Yara match |
File source: 2.4.pages.csv, type: HTML |
Source: Yara match |
File source: 3.5.pages.csv, type: HTML |
Source: Yara match |
File source: 3.7.pages.csv, type: HTML |
Source: Yara match |
File source: 3.8.pages.csv, type: HTML |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
Matcher: Found strong image similarity, brand: MICROSOFT |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: Iframe src: https://bf2b00c1-12461a6c.dacreativeagency.com/Prefetch/Prefetch.aspx |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: Iframe src: https://bf2b00c1-12461a6c.dacreativeagency.com/Prefetch/Prefetch.aspx |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: Iframe src: https://bf2b00c1-12461a6c.dacreativeagency.com/Prefetch/Prefetch.aspx |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: Number of links: 0 |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: Number of links: 0 |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: Title: Sign in to your account does not match URL |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: Title: Create account does not match URL |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: On click: HOSTUI.evt_inlineBack_onclick(); |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: On click: HOSTUI.evt_inlineBack_onclick(); |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: On click: HOSTUI.evt_inlineBack_onclick(); |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: On click: HOSTUI.evt_inlineBack_onclick(); |
Source: https://blee58.com/bl/ax/l?user=kenrod@me.com |
Sample URL: PII: kenrod@me.com |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: <input type="password" .../> found |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: <input type="password" .../> found |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com |
HTTP Parser: No favicon |
Source: https://bf2b00c1-12461a6c.dacreativeagency.com/Prefetch/Prefetch.aspx |
HTTP Parser: No favicon |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: No <meta name="author".. found |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: No <meta name="author".. found |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: No <meta name="author".. found |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: No <meta name="author".. found |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: No <meta name="author".. found |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: No <meta name="copyright".. found |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: No <meta name="copyright".. found |
Source: https://onlines.dacreativeagency.com/?username=kenrod@me.com&sso_reload=true |
HTTP Parser: No <meta name="copyright".. found |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: No <meta name="copyright".. found |
Source: https://signup.dacreativeagency.com/signup?sru=https%3a%2f%2fl1ve.dacreativeagency.com%2foauth20_authorize.srf%3flc%3d1033%26client_id%3d51483342-085c-4d86-bf88-cf50c7252078%26mkt%3dEN-US%26opid%3d59AC3F6F7D3AAF66%26opidt%3d1711644790%26uaid%3d8da31f269ebd451fbb6ab4c102827f89%26contextid%3dE4EA2673871E61DC%26opignore%3d1&mkt=EN-US&uiflavor=web&username=kenrod%40me.com&lw=1&fl=easi2&client_id=51483342-085c-4d86-bf88-cf50c7252078&uaid=8da31f269ebd451fbb6ab4c102827f89&suc=https%3a%2f%2fa4d0aec3-12461a6c.dacreativeagency.com&lic=1 |
HTTP Parser: No <meta name="copyright".. found |
Source: unknown |
HTTPS traffic detected: 23.221.242.90:443 -> 192.168.2.4:49745 version: TLS 1.2 |
Source: unknown |
HTTPS traffic detected: 23.221.242.90:443 -> 192.168.2.4:49748 version: TLS 1.2 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 104.46.162.224 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 173.222.162.32 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 23.221.242.90 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 199.232.214.172 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 199.232.214.172 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 199.232.214.172 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 199.232.214.172 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: unknown |
UDP traffic detected without corresponding DNS query: 1.1.1.1 |
Source: global traffic |
HTTP traffic detected: GET /bl/ax/l?user=kenrod@me.com HTTP/1.1Host: blee58.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /index.html%7D?i=kenrod@me.com HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/?u=cmVlc2Vjb250cmFjdG9yc2VydmljZS5jb20vcmVjL3NoaHNkaGdkL2tlbnJvZEBtZS5jb20=&x=////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/ HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /static/css/main.1b019d38.css HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://mecom-netorgft0926682-sharepoint-com-f3.blee58.com/_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/?u=cmVlc2Vjb250cmFjdG9yc2VydmljZS5jb20vcmVjL3NoaHNkaGdkL2tlbnJvZEBtZS5jb20=&x=////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /static/js/bundle.js HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mecom-netorgft0926682-sharepoint-com-f3.blee58.com/_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/?u=cmVlc2Vjb250cmFjdG9yc2VydmljZS5jb20vcmVjL3NoaHNkaGdkL2tlbnJvZEBtZS5jb20=&x=////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /static/js/main.bdf2bc27.js HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://mecom-netorgft0926682-sharepoint-com-f3.blee58.com/_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/?u=cmVlc2Vjb250cmFjdG9yc2VydmljZS5jb20vcmVjL3NoaHNkaGdkL2tlbnJvZEBtZS5jb20=&x=////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /im/shar2.jpg HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mecom-netorgft0926682-sharepoint-com-f3.blee58.com/_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/?u=cmVlc2Vjb250cmFjdG9yc2VydmljZS5jb20vcmVjL3NoaHNkaGdkL2tlbnJvZEBtZS5jb20=&x=////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /im/spina.gif HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://mecom-netorgft0926682-sharepoint-com-f3.blee58.com/_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/?u=cmVlc2Vjb250cmFjdG9yc2VydmljZS5jb20vcmVjL3NoaHNkaGdkL2tlbnJvZEBtZS5jb20=&x=////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9 |
Source: global traffic |
HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: */*Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com |
Source: global traffic |
HTTP traffic detected: GET /_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/public/manifest.json HTTP/1.1Host: mecom-netorgft0926682-sharepoint-com-f3.blee58.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: manifestReferer: https://mecom-netorgft0926682-sharepoint-com-f3.blee58.com/_layouts/29/sharepoint-aspx/////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w/d////a///q///c/v////f//g///j//j//k/k/y//n//////r///e//e//r/r/?u=cmVlc2Vjb250cmFjdG9yc2VydmljZS5jb20vcmVjL3NoaHNkaGdkL2tlbnJvZEBtZS5jb20=&x=////////////e/r//r/e//d/d//w/s//fd//f/w///s/s/df//f//w/s//s/s/s/sfs/fd///s////////////sd/sw////////g/////////////vvs/////////////////////ss//////////////se///////////////////h////////////h/////////////h//////////////////vvvvd//bdds/hgffddds//////////////dss/ssssssssss/ssssssssssssssssssssss///////////////////////////////////////////////////////////////////////////////////////////////////////////w///////////////////w//////v//n/////////////////a//////////////////m///////////////////////k//////////////////r///////////////q///////////eyydsyywttwtwiww///w//w/w |