| fsafeds.compo.sa.com/login.php/login_files/Logo_Master-Reverse(1).svg | 104.21.87.70 | 200 OK | 632 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/login_files/Logo_Master-Reverse(1).svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
File typeHTML document, ASCII text, with very long lines (25799) Size632 kB (631633 bytes) Hash06d1cc9ea32b52fc24745162572855d7 937e8125a480e690397495b9e73f11f3e251fe87 7a9bf214f197623d8767bf5f2a1430cb9701994bf1c2b08a82a3da4dd8d2e8c4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/login_files/Logo_Master-Reverse(1).svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dp6HdY4x29ihVpuMhOVVFXUIIwFCcMfld8z9HeR3t6AuJ%2Bvwp%2FITBaJ1jMl4%2BIFfcZelr8c6NR%2BVm5emlL%2FiNbzprJCUIBw21MAF8Ib6aidOqjZpw8XexPeAcW6v4%2BAOt4AOBqm5Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b8d77b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/assets/images/Logo_Master.svg | 104.21.87.70 | 200 OK | 624 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/assets/images/Logo_Master.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
File typeHTML document, ASCII text, with very long lines (25799) Size624 kB (623870 bytes) Hash06d1cc9ea32b52fc24745162572855d7 937e8125a480e690397495b9e73f11f3e251fe87 7a9bf214f197623d8767bf5f2a1430cb9701994bf1c2b08a82a3da4dd8d2e8c4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/assets/images/Logo_Master.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ssa6TJNPdcLS7zyAaj%2B9aW7slIP6oq%2FUjuouLHETLCG3s%2Byx6k9%2BeAOYQmguvIrkxFT4DvhGMHIPE3adW4ZEX7wXT8QXvG3KgEDVLbWY4YHEuMHjFGgp5MQ9cdL3TrZt28YhtpJZxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b7d73b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/assets/images/minimize_icon.svg | 104.21.87.70 | 200 OK | 338 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/assets/images/minimize_icon.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
File typeHTML document, ASCII text, with very long lines (25799) Size338 kB (337609 bytes) Hash06d1cc9ea32b52fc24745162572855d7 937e8125a480e690397495b9e73f11f3e251fe87 7a9bf214f197623d8767bf5f2a1430cb9701994bf1c2b08a82a3da4dd8d2e8c4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/assets/images/minimize_icon.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8HmYyjyzTgBgpzqF26cSfYnnwzI36MyClWcllgihOavjAumL5fmM3RS5KG%2BrBHWzC3mCiUoSKM6gJfq7%2FTfuVYV7s83XjKmvFn%2BImDoj%2BwZnyx8hRHe3wui3xm0c9JfpPKoQmcBxzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b8d80b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/login_files/Logo_Master-Reverse.svg | 104.21.87.70 | 200 OK | 404 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/login_files/Logo_Master-Reverse.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
File typeHTML document, ASCII text, with very long lines (25799) Size404 kB (403487 bytes) Hash06d1cc9ea32b52fc24745162572855d7 937e8125a480e690397495b9e73f11f3e251fe87 7a9bf214f197623d8767bf5f2a1430cb9701994bf1c2b08a82a3da4dd8d2e8c4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/login_files/Logo_Master-Reverse.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9e%2FRKgrfmgzrvFDjMLn6t1AGJv9P7ImhtlgpI%2FsHtLpeSOw9FrliYC3pOkoy57%2F%2BXO4GNnna1C556G1T8WXIA4QT%2FfRk14U6CaQJrxJB5%2F%2Fp1y2XmuYMecmtIyU9JR%2FHxJeb2c9Z%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b7d6eb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/assets/images/take-a-look-at-your-accounts.svg | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/assets/images/take-a-look-at-your-accounts.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/assets/images/take-a-look-at-your-accounts.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mQW06Syf2dr6XWqSh4x5suBcPnIWlP4slPEFISDe94C4pKxj%2BZlfmUGReEL9ws92UoRnM%2BuagD4x3NXVwMKn8QnxadFE1UBbc9VZW263CYxLTRpyg0bnYlnm06m4m0niApEPLuJKPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b9d89b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/favicon.ico | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/favicon.ico IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/favicon.ico HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:44 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=atflbFEDfHtqY1eqm5%2B0NZ8cuqgFSsk7llD4PUozGSdIaSA31Vrr5ekPQ6PUuDqNu6l96%2Butiz0HLtIAKnHITAC0PfGDsTqDFOkzUTi%2BB6JmvrZSXfm09sHgVLToHorm1QFYq84L%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9f9962b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Regular.f807eddb777f8cc0.woff2 | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Regular.f807eddb777f8cc0.woff2 IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Regular.f807eddb777f8cc0.woff2 HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8OX2kY7xkb6324gJrALVT1GMKdN30BJ7FsY%2BOfeEkH2jRJFCCgmVUmCTpfNAK%2BTOJvCkUismIxAKXIWubCll2%2FfqSHHCVOkiPwdn%2B4ihfEhg4m6eFIvvsth1Ae1o0HhPn%2BsMudjP8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9d3f06b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/login_files/jquery.min.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f99ARGw4IwGix8c3%2FhKpZVEk64%2FyRdWZi70ZMiAl2oVrSlClrBc0oBGuOIz6RDCL%2BW15v%2BQr%2B2Un7TvExQPpvrEWiUPnMPWhzvAJhjHfgctLS3wnj94WojGHvia5518LEmA03%2FYzjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b9d95b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Medium.8df563692fcd9fd0.woff2 | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Medium.8df563692fcd9fd0.woff2 IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Medium.8df563692fcd9fd0.woff2 HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NE4VRBNshCTiEICiXw8tzujphksMSxLZ8MW9WqmLVoWWOE%2BrOLIieSkYv1hjwPP3aXkWYhvDrlt32kWTpNTkeIM7cWrBm3eo89208ekRnMGNnbx797XxjmmYwImnw94pBCxfxVKeeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9d4f11b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Medium.a79c5a54562ff0d7.woff | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Medium.a79c5a54562ff0d7.woff IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Medium.a79c5a54562ff0d7.woff HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJqyqBgFeO5wtJOMBmAFjsTi%2BRsrdXMoNlmIQGSob6vnAlJXLx8YTwq11EL%2F3GX3W7QKSXcJtNy1TcnVXHVAlw%2FjO1LBHz0A9w1lLpuR%2Bw%2FLc1UaBnrAtcc8YMQHAkla%2FeXceTogpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9dffd3b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Light.d5df06158ca97ace.woff | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Light.d5df06158ca97ace.woff IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Light.d5df06158ca97ace.woff HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZKIaCVkXnnkxrPW7hLiqeTij6tyEobtqgS%2FRnhiLumdTuZ8jiyDFwfY5dfgmml7l1oOKeTTQHVBh9Pm2H5AQ0SkdW9Y%2BlSnlooLu%2FIFsK8Gz5GPY9rDXScD9Dnm504x9mLLOZK8j5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9e784bb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/ | 104.21.87.70 | 200 OK | 291 kB |
URL User Request GET HTTP/2fsafeds.compo.sa.com/login.php/ IP104.21.87.70:443
CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/ HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O%2BtWuWZ7orNz5XdBBnocxdf3BROYnUjMqSZZjqIQgNtwsJlFQoWVPhqa38eAYJBSKMSNElWyfQyB4H5ALWxJ7VMz6gsHBtal44cDFTOLRBecpIc38JXYk%2FA6ikBPiLliA9UoBFojkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc995ab2712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fsafeds.compo.sa.com/login.php/login_files/styles.330d80deccf75709.css | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/login_files/styles.330d80deccf75709.css IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/login_files/styles.330d80deccf75709.css HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ngvA9astpF%2FayvFhf12u4jv%2Bs7%2BIpIYrEEb9Ola0LrbGml%2B0FW1XPRbxYOqU5PAKjbe6q4V8vSYX0mGFaQ1uRZxP8YyFCJP%2FHNiMMclkFdaPgKs4Rj3N8JWCne9PB%2FJw2ysjczHUIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b7d6bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/capco-icon-fonts.e3dce399bcb18ec3.woff | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/capco-icon-fonts.e3dce399bcb18ec3.woff IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/capco-icon-fonts.e3dce399bcb18ec3.woff HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WzSWKH1UQzjNv18FCWhW1A5aXveO%2Fl7WUlf8fQFEivF9CoQs9TIIgUeJ0zkscgTTxNPEvHLazfbaaZKua%2FZw0TM2f9KdMwzHKmyK7AAMLJw%2BOYMyFMqSShbya2wt8xC6Nu8E8uhdVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9d4f0ab50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Bold.acf14f737f7438f7.woff2 | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Bold.acf14f737f7438f7.woff2 IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Bold.acf14f737f7438f7.woff2 HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=buos5DhsL4UwBA3UVdTd47pE9gfkmat4ElPY03zQHsUWRg%2FSj6De9qF6lNL66P1oUBH3aIZSVYcRuA%2FWlppgZCcf0%2F%2FZfUdMTCEgMPiCdDVwU57LXXiyvF03rK9JssiVFlz8qMrswg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9d6f39b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Thin.06d7e68503b884ef.woff | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Thin.06d7e68503b884ef.woff IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Thin.06d7e68503b884ef.woff HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oLtEJTb9wJQ2HYqTdPpEaKOhWNXah%2F7saaKJ%2Fh1EextXcFiv6oE8jjxoVpBfKY2S%2F%2BTffJOseuXAEodbCIfDItQrq6Rd4J7wJYzOV0X0IQi4whYL%2Fw5sfZCtqJrzjDYrL2R9xFuSkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9e885fb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/assets/images/fdic.png | 104.21.87.70 | 200 OK | 131 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/assets/images/fdic.png IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
File typeHTML document, ASCII text, with very long lines (25799) Size131 kB (131072 bytes) Hash2ea3e146103f96e2453c4970d233926e 14ef72cd66a6a8f80175077cae3720c644e39a82 151247ef52db7c6f6dbd9f2070dd2018762e4dc93be71c7dfc02c01d208e6360
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/assets/images/fdic.png HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YJFdSzrK6zFCsHkdc4AkBWRGPgeI0xXt6l6VkrOnXaPdXotT2%2B%2F2G66OJze5EKEYlCy%2BZHtvGAIRlnFez5PRMTJ0xsSXv0Yfs2gHBL7C2FnyM2uYMMcO%2Bhb9ZFytzh0ujbAiQcpYCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b8d7bb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/login_files/Logo_Master.svg | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/login_files/Logo_Master.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/login_files/Logo_Master.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wdcTX7ER5UrkHE6jBo0YVlDJ77UxNP3MIc0YryzIH4G5veSdGYDbHcUDG9gEY8Qam7XeNZ8Ro%2B9MNy6scuH6wa5IkWezQ1iDbZtM8MmAYof9O6hbDuESiJGr%2FhwsBbmRTlBdUpVbkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b9d92b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Bold.f783ec7e8ff5a0ee.woff | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Bold.f783ec7e8ff5a0ee.woff IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Bold.f783ec7e8ff5a0ee.woff HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pST325XPPStG1gZJn2sZO3JEpVfouhknEU41yqTcGL8RSEif%2BPw96yDSyq4YsheuKZMrDeCmIF3uCupf8eYKI4rejZ1VIKxF5k30QsF%2B9scPmZEZ8IWAgg%2BVJsORLKmUjl3Tqvnf2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9e8862b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/assets/images/close_icon.svg | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/assets/images/close_icon.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/assets/images/close_icon.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pIwtxA06jIT6tZzTCtdCPRA%2BVP5gbsp30HNKPcI%2BO1Sg7ZmZSvrUodvBjz4TgJOtg5IBfwiDTDmACAYi7jICAGVmNqMj8FnLkf2G44v%2B%2FWS5wl4YZvLTSB16FgQM0z3E8ZHiCptBHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b8d85b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/assets/images/bmo-logo_2.svg | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/assets/images/bmo-logo_2.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/assets/images/bmo-logo_2.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3epJlNPfOLzQWeI8jJSdWTWFPIvv2prA%2B0cObmmVz8%2FoMhJdAe5%2BDuWgSnb7dIRyWDWmk2SRsCKCoAWbkwh1whB9GOU6JK8aPP4wRuoUrtFKEMBM0BFFYO8qnKs4igO7%2FAWq1vY1jQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b8d78b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/assets/images/ehl.png | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/assets/images/ehl.png IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/assets/images/ehl.png HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wqfhjiqB3IAyKYJYqTdxB%2FQu276Uq737jQ5GDvJXsA8h%2FIwOyLfBrXo6pZuZ25B6cWh8dLoPYGNJhpQUWQbAnHurZK4yDI2%2B62TGASO8G50MfqjHmgxZ5YFKxe2%2FLDDBMfm6QPDJ9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9b8d7eb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Thin.5740d8571ba2c17c.woff2 | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Thin.5740d8571ba2c17c.woff2 IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Thin.5740d8571ba2c17c.woff2 HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6k4RTflFb3a8uXCqdxJDPitWVzz7%2B2xt3jXkcDkvJrSzaUTiSu1snTCOqy0vmEZa94J%2BJXMJWcRRSm%2Bz%2Fm3HJATed%2FlppS0q68BpTJxxXcKy7peoFB3CeWmh9ijbS18gxUDyTBclDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9d4f16b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/build/b.8cc58ef1821ab39c.svg | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/build/b.8cc58ef1821ab39c.svg IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/build/b.8cc58ef1821ab39c.svg HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G%2BGzGNRA2mUh2GzS49xs7NxR0XziPj2TqU7dpDy0Ox9XKNlhGJSe48V7ntK4oLGtQ1B50XBL26QqE6lcydtrvn3vl6PrTe99PNajlGyxUgkOvriHDcTLSzb%2FljLLTqJ%2Bd5XQMpyFVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9d3f03b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Light.b37fd88770249dfa.woff2 | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Light.b37fd88770249dfa.woff2 IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Light.b37fd88770249dfa.woff2 HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CDTF3uVNirm4Fa%2F2G5efgzSh1vWdUaZiqUZjW8aU9gsS6mcIAkw%2FJoDx9nXlfLzI3XitrVQA5BPyr31Or5KjvWe1tQ9WGnZP5BB2Z6s3DCQKx0bBPwF4bwfT3PJ2EMMxJfl%2FrxKPjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9d4f1db50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fsafeds.compo.sa.com/login.php/Heebo-Regular.f79824ba5360b07f.woff | 104.21.87.70 | 200 OK | 291 kB |
URL GET HTTP/3fsafeds.compo.sa.com/login.php/Heebo-Regular.f79824ba5360b07f.woff IP104.21.87.70:443
Requested byhttps://fsafeds.compo.sa.com/login.php/ CertificateIssuerLet's Encrypt Subjectcompo.sa.com FingerprintBA:E4:FB:94:5D:FB:B0:81:92:45:8E:5A:10:84:BE:45:97:19:47:50 ValidityThu, 25 Apr 2024 18:52:05 GMT - Wed, 24 Jul 2024 18:52:04 GMT
Size291 kB (291184 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Salesforce |
GET /login.php/Heebo-Regular.f79824ba5360b07f.woff HTTP/1.1
Host: fsafeds.compo.sa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://fsafeds.compo.sa.com/login.php/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 07:23:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Sun, 05 May 2024 07:23:43 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F5Gu0nRu8tYaqHCWsGpgfm9JXk2OvWFxqUmcIC9QxtTtHZhHhceSN4nG3Gkr3eytR2YWQ0Bb0Bf9Ps%2Bk3cLEnBI7YpJJ5WI2yFpmU9vOs2gXmZtEAPAUmmlV%2BAMwHyAkPqp4g%2Flujw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87eefc9dffcfb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|