Overview

URL eleve61.com/logs/delt/7bd8d/index2.php
IP192.124.249.7
ASNAS30148 Sucuri
Location Canada
Report completed2019-03-11 15:56:29 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-11 2 eleve61.com/logs/delt/7bd8d/index2.php Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 192.124.249.7

Date UQ / IDS / BL URL IP
2019-05-08 15:18:10 +0200
0 - 0 - 0 https://sitecheck.sucuri.net/results/angelica (...) 192.124.249.7
2019-05-07 07:26:41 +0200
0 - 0 - 0 avatarbrokers.com 192.124.249.7
2019-04-30 16:29:32 +0200
0 - 0 - 0 https://sitecheck.sucuri.net/ 192.124.249.7
2019-04-20 03:58:18 +0200
0 - 0 - 2 www.unifiedbusinessexperts.us/ 192.124.249.7
2019-04-17 05:25:55 +0200
0 - 0 - 0 https://sitecheck.sucuri.net/results/https/xc (...) 192.124.249.7
2019-04-11 21:52:59 +0200
0 - 0 - 0 miremezcla.com 192.124.249.7
2019-04-10 07:38:15 +0200
0 - 0 - 2 www.unifiedbusinessexperts.us/ 192.124.249.7
2019-03-25 07:10:58 +0100
0 - 0 - 0 avn.org.au 192.124.249.7
2019-03-11 12:47:59 +0100
0 - 0 - 0 historyhaven.com/index.php 192.124.249.7
2019-03-02 09:53:57 +0100
0 - 0 - 0 https://sitecheck.sucuri.net/results/transpar (...) 192.124.249.7

Last 10 reports on ASN: AS30148 Sucuri

Date UQ / IDS / BL URL IP
2019-05-24 23:14:37 +0200
0 - 0 - 2 nahse.org/gfcu/cap/office.php 192.124.249.169
2019-05-24 23:10:06 +0200
0 - 0 - 2 panafricanvisions.com/cnt.doc 192.124.249.119
2019-05-24 21:40:30 +0200
0 - 0 - 0 traincorporates.com 192.124.249.105
2019-05-24 21:15:39 +0200
0 - 0 - 0 www.alabamawx.com/wp-content/themes/wp-prospe (...) 192.124.249.167
2019-05-24 20:33:47 +0200
0 - 0 - 2 lacasainc.net/ 192.124.249.107
2019-05-24 20:14:25 +0200
0 - 0 - 1 scootpassion.com/w45r3/8l6mk.exe 192.124.249.114
2019-05-24 20:14:09 +0200
0 - 0 - 2 bathboating.co.uk/ 192.124.249.168
2019-05-24 19:39:41 +0200
0 - 0 - 4 jgcarpetcleaning.com/wp-content/themes/bb-the (...) 192.124.249.58
2019-05-24 18:55:27 +0200
0 - 0 - 1 kevingreaves.com/ 192.124.249.165
2019-05-24 18:11:06 +0200
0 - 0 - 0 192.124.249.167 192.124.249.167

No other reports on domain: eleve61.com



JavaScript

Executed Scripts (9)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 94, repeated: 1) - SHA256: bd35d645842a6d367fdd941df13df537d633f37d77bed72b0f78d99ea82efad3

                                        < meta name = "google-site-verification"
content = "VU2yQvJo7oUXK_wSPHlnXWRpG4CovRtCrn1xGiTi3vY" / >
                                    


HTTP Transactions (27)


Request Response
                                        
                                            GET /logs/delt/7bd8d/index2.php HTTP/1.1 
Host: eleve61.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         192.124.249.7
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: Sucuri/Cloudproxy
Date: Mon, 11 Mar 2019 14:55:51 GMT
Content-Length: 1868
Connection: keep-alive
X-Sucuri-ID: 19007
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
X-Sucuri-Cache: MISS


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1868
Md5:    05d32ef303bb7413a24e1efd3a295141
Sha1:   4099d6aec343c987a07a60608de909a1ff86e0c0
Sha256: aa3591a1e81283c251dacd1f2c6d2c03631e4583beb7a3af76026e8e80c2007a

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /delta/mtprod/Bootstrap.js HTTP/1.1 
Host: nexus.ensighten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         63.33.37.235
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Cache-Control: max-age=300
Content-Encoding: gzip
Date: Mon, 11 Mar 2019 14:55:52 GMT
Etag: W/"5c866867-4f274"
Last-Modified: Mon, 11 Mar 2019 13:53:43 GMT
Server: nginx
Vary: Accept-Encoding
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   96150
Md5:    89ae6e0e8f0cfd1935fecf15c85923a4
Sha1:   b279f45f277bb38c0064714f1f39e8855f77896f
Sha256: f985176f18c60a66df54e98276e935f3b4f5978b21dc15ed196c7b70429909e7
                                        
                                            GET /error/e.gif?msg=jQuery%20is%20not%20defined&lnn=126&fn=http%3A%2F%2Fnexus.ensighten.com%2Fdelta%2Fmtprod%2FBootstrap.js&cid=912&client=delta&publishPath=mtprod&rid=2759346&did=328107&errorName=ReferenceError HTTP/1.1 
Host: nexus.ensighten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         63.33.37.235
HTTP/1.1 204 No Content
                                        
Cache-Control: no-cache, no-store
Date: Mon, 11 Mar 2019 14:55:52 GMT
Expires: Mon, 11 Mar 2019 14:55:51 GMT
Server: nginx
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /error/e.gif?msg=Object.defineProperty%20is%20not%20a%20function&lnn=389&fn=http%3A%2F%2Fnexus.ensighten.com%2Fdelta%2Fmtprod%2FBootstrap.js&cid=912&client=delta&publishPath=mtprod&rid=2802680&did=538588&errorName=TypeError HTTP/1.1 
Host: nexus.ensighten.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         63.33.37.235
HTTP/1.1 204 No Content
                                        
Cache-Control: no-cache, no-store
Date: Mon, 11 Mar 2019 14:55:52 GMT
Expires: Mon, 11 Mar 2019 14:55:51 GMT
Server: nginx
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/delta.datalayer.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: W/"890b-5838b02a8d449"
Last-Modified: Fri, 08 Mar 2019 01:19:12 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 6561
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=83~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=d92b154e7476a58e185f24416bb21898; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   6561
Md5:    ebc3403955f3ecaefca8468c914fb87c
Sha1:   71009e79bcb959e0a8eb6aa3e0dc88efaf55d8fe
Sha256: 4b104a4501233ca82cb751a5abe766acbbad29286775aedd7a8d78ff36b737fa
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/delta.utils.logger.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: "226e-58382f13b6239"
Last-Modified: Fri, 08 Mar 2019 06:32:24 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 2134
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=98~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=9c1d0fec2627cb330b3c7244bd82bc09; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   2134
Md5:    b0283acae94a8b00b67b188256001f5c
Sha1:   a6e43169e4edcf60d2152ea0a0f8a7f5cb611b88
Sha256: a08c972a05a23a12d03100b1a0a16ecb8e8fc9e766f59c432819717ac7eb8d90
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/main.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: W/"32928-5838b02b9202a"
Last-Modified: Fri, 08 Mar 2019 01:19:15 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 25436
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=15~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=833a343dd9ed2283bde51d450b449b75; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   25436
Md5:    1610d37e37cdd254111de3b345d48aeb
Sha1:   b94e7af64351273d56d43b5dbba81a2d2da05dca
Sha256: 3d8a5a98670c5e642692665a5cb5868406909d988901b0c0a7b83da9d76b2803
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/polyfills.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: "23697-582f7126a09df"
Last-Modified: Wed, 06 Mar 2019 06:49:27 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 32422
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prda-content|~rv=35~m=prda-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=d251fbde66ea202a1378295eb84f0be5; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   32422
Md5:    189e2786dec9dffdb2a11b0f3c858086
Sha1:   ff742b0d686c0e668cc96be3bef2c9c619bfe198
Sha256: d7e4aea246dc350c921cfdf83e203749b7fa4837855e5450b6db2c9896afaef5
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/inline.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: W/"624-5837b1e129e73"
Last-Modified: Thu, 07 Mar 2019 06:21:32 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 842
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prda-content|~rv=51~m=prda-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=87f16dabdad2f4435a65f8f46a80f10c; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   842
Md5:    83f358fe9dcdc2b8a9a3c5197344741d
Sha1:   d9c720c598951a343f7bb8a55e006a3278309aea
Sha256: b610e1a24746a5eac0bcc0f2067fc727ad827a914f530fb4466bf896c212d1a7
                                        
                                            GET /content/www/us/en.damAssetRender.20180509T1731290530400.html/content/dam/delta_homepage_redesign/Logo/Delta%20Logo.svg HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 21 Feb 2019 07:09:31 GMT
Etag: "8a3-5826227e63781"
Accept-Ranges: bytes
X-Powered-By: Delta Airlines, Inc
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 728
Cache-Control: max-age=15552000
Expires: Sat, 07 Sep 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: dlsite=a; path=/; domain=.delta.com akaalb_content_alb=~op=content_prda_prdb:prda-content|~rv=23~m=prda-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=680e7a5b131117b8649a13cff347a0b4; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   728
Md5:    dddef3b0c4bd29d3224306e12dae6e0b
Sha1:   ffbd00420432b47f64da4dd2028316a61c8ee061
Sha256: 8b42884c1f3e3c5f73620df21052ccb57bc73202ebb79ff4472b7b26a0ded8fa
                                        
                                            GET /content/dam/delta-applications/fresh-air-core/5.0.21/fonts/fresh-air-fonts.css HTTP/1.1 
Host: eleve61.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         192.124.249.7
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: Sucuri/Cloudproxy
Date: Mon, 11 Mar 2019 14:55:52 GMT
Content-Length: 0
Connection: keep-alive
X-Sucuri-ID: 19007
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Redirect-By: WordPress
Location: https://eleve61.com/content/dam/delta-applications/fresh-air-core/5.0.21/fonts/fresh-air-fonts.css
Vary: User-Agent
X-Sucuri-Cache: MISS


--- Additional Info ---
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/tracker.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: W/"6941-5837b1fa8c031"
Last-Modified: Thu, 07 Mar 2019 06:22:00 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 8307
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=13~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=d172f368cdef41cfa34f739bfe9dabc7; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   8307
Md5:    7ae0843a83edf9c869258c6fdec407f9
Sha1:   3a2f8a71d545a45fc70803ff9546abd5a8c6cb6b
Sha256: dba444f04520ca94c617beba1167c5e2f7fb61acf74761d1ef70ac6301d57726
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/picturefill-background.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: W/"8af-582f876188ec5"
Last-Modified: Thu, 28 Feb 2019 18:28:48 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 806
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=41~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=4fcd1f17e5c2c3124a5b8cade7161e5a; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   806
Md5:    9a58d596d58571e9e123ad6a40cf2461
Sha1:   b0faadf2a53df4df53fff6dc28041b5b8021872a
Sha256: 59acffbce152edc3e9b11ec4827db90a198505b40b3a12018223d309ef898d52
                                        
                                            GET /content/dam/delta-applications/fresh-air-core/5.0.21/css/fresh-air.css HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: W/"962c8-5837b1e1169dc"
Last-Modified: Thu, 07 Mar 2019 06:21:37 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 74811
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=66~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=b738aa90c142634cd77942e97f98e96a; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   74811
Md5:    4bca392edd746623d8df0af3d5f0a2e3
Sha1:   44b04043a70a9f74ee5a9c096288e5a28e1a0094
Sha256: 5c53dade9876070c49b31cd478541adbce25aa38304ddbb53a1cf3ec4b2b95e0
                                        
                                            GET /content/www/us/en.damAssetRender.20180509T1731290540400.html/content/dam/delta_homepage_redesign/Logo/Sky%20Team.svg HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 21 Feb 2019 07:20:30 GMT
Etag: "24b6-582624f2e3c38"
Accept-Ranges: bytes
X-Powered-By: Delta Airlines, Inc
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Content-Length: 3908
Cache-Control: max-age=15552000
Expires: Sat, 07 Sep 2019 14:55:53 GMT
Date: Mon, 11 Mar 2019 14:55:53 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: dlsite=a; path=/; domain=.delta.com akaalb_content_alb=~op=content_prda_prdb:prda-content|~rv=52~m=prda-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=a841918fac8f38e1f4eaaa569da7acfb; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   3908
Md5:    f9fa1c9d95a4fc2e73cab74bd5a6f3a9
Sha1:   cdfc4d06159527a0beb765229ddcf81301946407
Sha256: 4fcd5fab33b000995b26e8329cdd7a400bc62b28668f6b2030d1630c26489aef
                                        
                                            GET /content/dam/delta-www/responsive/apps/login/favicon.ico HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
X-Frame-Options: SAMEORIGIN
Last-Modified: Thu, 28 Feb 2019 06:04:58 GMT
Etag: "5de6-582ee11ed443e"
Accept-Ranges: bytes
Content-Length: 24038
X-Powered-By: Delta Airlines, Inc
X-Content-Type-Options: nosniff
Cache-Control: must-revalidate, max-age=15552000
Expires: Sat, 07 Sep 2019 14:55:53 GMT
Date: Mon, 11 Mar 2019 14:55:53 GMT
Connection: keep-alive
Set-Cookie: dlsite=b; path=/; domain=.delta.com akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=52~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=370b37d4096a685646f7025190023085; path=/;; HttpOnly


--- Additional Info ---
Magic:  MS Windows icon resource - 4 icons, 64x64, 256-colors
Size:   24038
Md5:    634fea51d5a857ef69ff4faa86f9ae1f
Sha1:   78568477f7fa4c66118bcfb50e790966a008b766
Sha256: 66c850d3c56efcb640b0c4702cf81549f581b3e788885cf8cf13192f6bc08085
                                        
                                            GET /content/dam/delta-applications/user-login/0.2.24/js/vendor.js HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
Content-Encoding: gzip
Etag: W/"2316db-5837b1e149a42"
Last-Modified: Thu, 07 Mar 2019 06:21:45 GMT
Server: Akamai Resource Optimizer
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: Delta Airlines, Inc
Content-Length: 473005
Cache-Control: max-age=604800
Expires: Mon, 18 Mar 2019 14:55:52 GMT
Date: Mon, 11 Mar 2019 14:55:52 GMT
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prdb-content|~rv=39~m=prdb-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=50e5345f86567f5280a0f1137fc0b2e8; path=/;; HttpOnly


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   473005
Md5:    6b60686dc15afad93b6070a5f78b2bcc
Sha1:   ca61211b1312bddd529909e8f909598b61bcdde2
Sha256: 47c0ef4e2bd934f0cb8b314049fe26604db829696887fa92e481cc4c6d4a975f
                                        
                                            GET /content/dam/delta-www/responsive/apps/login/supergraphic-delta.png HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Etag: W/"68d-5826888e6df73"
Last-Modified: Thu, 21 Feb 2019 14:46:08 GMT
Server: Akamai Image Manager
X-Serial: 1922
X-Akamai-SSL-Client-Sid: VbRqymarBjenrq0WgrsoRg==
X-Check-Cacheable: YES
Content-Length: 1000
Cache-Control: private, no-transform, max-age=1036145
Expires: Sat, 23 Mar 2019 14:44:58 GMT
Date: Mon, 11 Mar 2019 14:55:53 GMT
Connection: keep-alive
Set-Cookie: akaalb_content_alb=~op=content_prda_prdb:prda-content|~rv=73~m=prda-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=4a9d1bf1940d9861cb51b789acfc0469; path=/;; HttpOnly


--- Additional Info ---
Magic:  PNG image, 72 x 63, 8-bit colormap, non-interlaced
Size:   1000
Md5:    cb05722b7da235331a12bb3ffe7757c1
Sha1:   bf396da4f3ff21b91ddaf1618a48150df67bd7f4
Sha256: 0fc24a88d16eb8765ec35e8959fb79b7b82e8ea2c9bc0fb483d6729c2de62702
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 11 Mar 2019 14:55:55 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d06241cb7ab196fa2f0996819e3e8d3c
Sha1:   777dbe3a98144aa759a2912e89c65e9e745be438
Sha256: 991003e5814d3437ce031364197738da38ea103c522e92a84702fa719bd0584b
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 11 Mar 2019 14:55:55 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /css?family=Montserrat:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://content.delta.com/content/dam/delta-applications/fresh-air-core/5.0.21/css/fresh-air.css

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 11 Mar 2019 14:55:55 GMT
Date: Mon, 11 Mar 2019 14:55:55 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   239
Md5:    ee71d0726f25591dd68530ae25f76f9c
Sha1:   4a1c9ea1a577bc679c82ec75e2b468a5c92a8f1a
Sha256: bdb10b076492317bc4db53b8bce00d5dac6ddae6260509e3255bd0cc6bd182ae
                                        
                                            GET /content/dam/delta-www/responsive/apps/login/backgroundImage.jpg HTTP/1.1 
Host: content.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php
Cookie: akaalb_content_alb=~op=content_prda_prdb:prda-content|~rv=73~m=prda-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=4a9d1bf1940d9861cb51b789acfc0469; dlsite=b

                                         
                                         2.22.36.224
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Etag: W/"efc5-5827b57041ff6"
Last-Modified: Fri, 22 Feb 2019 13:12:15 GMT
Server: Akamai Image Manager
Content-Length: 61381
Cache-Control: private, no-transform, max-age=1117029
Expires: Sun, 24 Mar 2019 13:13:05 GMT
Date: Mon, 11 Mar 2019 14:55:56 GMT
Connection: keep-alive
Set-Cookie: akaalb_content_alb=~op=content_prdb:prdb-content|content_prda_prdb:prda-content|~rv=73~m=prdb-content:0|prda-content:0|~os=f7e7b6d99036ac35fb4ac14531dad6ff~id=fb73e0560eeb8c8733672b6bba03942d; path=/;; HttpOnly


--- Additional Info ---
Magic:  JPEG image data, EXIF standard
Size:   61381
Md5:    4d1381ba661eedf4f08b781967f3a870
Sha1:   7c209fb385459ed9bc1831c559731dac7a0ccbff
Sha256: 0edc14b5cbfe2e1d53faf0f87773dc11210dfb355372e6219e79f123286a8d0c
                                        
                                            GET /user-login/js/jquery-3.2.1.js HTTP/1.1 
Host: www.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /ruxitagentjs_2SVfhjqr_10119170522100716.js HTTP/1.1 
Host: www.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /content/dam/delta-applications/fresh-air-core/5.0.21/fonts/fresh-air-fonts.css HTTP/1.1 
Host: eleve61.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /ruxitagentjs_2SVfhjqr_10119170522100716.js HTTP/1.1 
Host: www.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://eleve61.com/logs/delt/7bd8d/index2.php

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /us/en/legal/terms-of-use HTTP/1.1 
Host: www.delta.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: dlsite=b

                                         
                                         0.0.0.0
                                        


--- Additional Info ---