| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php | 208.115.218.22 | 200 OK | 1.6 kB |
URL User Request GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
CertificateIssuerLet's Encrypt Subject*.atbu.edu.ng Fingerprint14:A8:A4:3B:E5:0A:78:A8:01:6A:A7:F3:0B:E5:E6:71:3C:51:2A:02 ValiditySat, 04 May 2024 23:23:12 GMT - Fri, 02 Aug 2024 23:23:11 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashe38043861850aab942e4ae023e9b80f2 05b9ca452a8e159cf927c37f1fcd682b9fc2756c ec428be7a3dd65f77cf74ab68be2991beb3227cbc8803685bc42989d3d9b79c3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL | OpenPhish | phishing | DHL Airways, Inc. | PhishTank | phishing | Other |
GET /wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:13:37 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=d89b76505a0c4d5709ea94f9278a9480; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1595
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js | 104.17.24.14 | 200 OK | 3.1 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js IP104.17.24.14:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (542) Hashcc290e6c3aeecf5021dd82ad8df2512a fb983aecd3940e8ebbfe5e74c8099cee9223c957 2a0db34dc14ef4b5ce73b230701c7561e5012667a4c9cb274ecab646e1474995
GET /ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 12:13:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 3074
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-2087"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 503128
expires: Sun, 27 Apr 2025 12:13:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Du5RhHAIlUWZ4wcO2tOWTm4Xwd4yvnE7N6KKr%2BHI2mwHWMtsiMU63LrD%2BZzm6nClWDpKGUGnp6scTSEpHsdgg5rhlfmPl1B8qLwVk%2F9UGLItFvgi1wLnRBNfOOUT49QQhskgSI7M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880120074ee5b51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js | 104.17.24.14 | 200 OK | 418 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js IP104.17.24.14:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65317) Size418 kB (418541 bytes) Hashd5beb8fa265f90be5ccadd6b32b8672f 7bdc23c06b51e7e42c05de486680a3c18aa5ce5a 6a769e18b06859751eaa2259044a6ff76e3ddcd6572a516d8ce3a2d7b8c7538e
GET /ajax/libs/font-awesome/6.2.0/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 12:13:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 418541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630e6e62-662ed"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 585935
expires: Sun, 27 Apr 2025 12:13:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=auT9EN94Z9cPHKNDgfr78fP7G9jqt7QxDcRg%2B5Uua%2BPxEmi5PLtNzkQKdpPcR6lVeRUFjv5ymHARVje%2FpkxunOjoWup0lPV5vVWyoirQeK5wWSBLRiRoWJHw5vOACgqf%2BeDbOesH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880120073eceb51b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.1.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.1.min.js IP151.101.194.137:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74
GET /jquery-3.6.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15e40"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 12:13:37 GMT
age: 940208
x-served-by: cache-lga13629-LGA, cache-hel1410026-HEL
x-cache: HIT, HIT
x-cache-hits: 20, 135097
x-timer: S1715084018.816858,VS0,VE0
vary: Accept-Encoding
content-length: 30957
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js | 151.101.1.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js IP151.101.1.229:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash0aa8d64e726c4a57adb5c88f9115996b 901169527507ff9e662cf64d8e361f359308970d 7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Tue, 07 May 2024 12:13:37 GMT
age: 1298600
x-served-by: cache-fra-eddf8230080-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23943
X-Firefox-Spdy: h2
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/helpers.css | 208.115.218.22 | 200 OK | 4.8 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/helpers.css IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerLet's Encrypt Subject*.atbu.edu.ng Fingerprint14:A8:A4:3B:E5:0A:78:A8:01:6A:A7:F3:0B:E5:E6:71:3C:51:2A:02 ValiditySat, 04 May 2024 23:23:12 GMT - Fri, 02 Aug 2024 23:23:11 GMT
File typeASCII text, with very long lines (41897), with CRLF line terminators Hash726c60fc192383fbcf04e19677ad0959 e2e966c2b6164806392449ced617227c27d36ab8 1c7070cf33da6adcb7a6b9ff7eb6e06fd8f64958622d61569b990e8b92c58615
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/css/helpers.css HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=d89b76505a0c4d5709ea94f9278a9480
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:13:37 GMT
Server: Apache
Last-Modified: Thu, 06 Oct 2022 11:31:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4814
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css | 151.101.1.229 | 200 OK | 25 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css IP151.101.1.229:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65306) Hashabe91756d18b7cd60871a2f47c1e8192 7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d 7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Tue, 07 May 2024 12:13:38 GMT
age: 28607258
x-served-by: cache-fra-eddf8230097-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/js/js.js | 208.115.218.22 | 200 OK | 3.0 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/js/js.js IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerLet's Encrypt Subject*.atbu.edu.ng Fingerprint14:A8:A4:3B:E5:0A:78:A8:01:6A:A7:F3:0B:E5:E6:71:3C:51:2A:02 ValiditySat, 04 May 2024 23:23:12 GMT - Fri, 02 Aug 2024 23:23:11 GMT
File typeJavaScript source, ASCII text, with very long lines (7339), with CRLF, LF line terminators Hash0f3cbf837ec8ca44afcdfb1b97e6b2e9 3b758416626abcaf74959b6326524919754e30e0 6d2b5289637fb53253e736f4cfcb9893017535fdbc31faf17c8aa00d9a3f9610
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/js/js.js HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=d89b76505a0c4d5709ea94f9278a9480
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:13:38 GMT
Server: Apache
Last-Modified: Thu, 13 Oct 2022 13:01:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2970
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/style.css | 208.115.218.22 | 200 OK | 1.5 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/style.css IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerLet's Encrypt Subject*.atbu.edu.ng Fingerprint14:A8:A4:3B:E5:0A:78:A8:01:6A:A7:F3:0B:E5:E6:71:3C:51:2A:02 ValiditySat, 04 May 2024 23:23:12 GMT - Fri, 02 Aug 2024 23:23:11 GMT
File typeASCII text, with very long lines (8355), with CRLF line terminators Hasha069deeaea648f7808b57a558e236a24 5b69df096fae1687c08fc844fdb2671daade4cf1 c92e87c72b7e7c1ae975fb98f028fe3dcf87ea7d32ef7a4b093929fa06083af3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/css/style.css HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=d89b76505a0c4d5709ea94f9278a9480
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:13:38 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 08:01:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1501
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/glo-footer-logo.svg | 208.115.218.22 | 200 OK | 3.5 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/glo-footer-logo.svg IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerLet's Encrypt Subject*.atbu.edu.ng Fingerprint14:A8:A4:3B:E5:0A:78:A8:01:6A:A7:F3:0B:E5:E6:71:3C:51:2A:02 ValiditySat, 04 May 2024 23:23:12 GMT - Fri, 02 Aug 2024 23:23:11 GMT
File typeSVG Scalable Vector Graphics image Hashd1b0e043744fd642282117a03d308b17 d8abe7a0887b804e516c45a344c542e291a1a84b 5162de2ee844a80d76b7d7514c02ab7d5de72a5966113323d80eb56bf6ded038
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/imgs/glo-footer-logo.svg HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=d89b76505a0c4d5709ea94f9278a9480
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:13:38 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 23:39:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3537
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/logo.svg | 208.115.218.22 | 200 OK | 722 B |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/logo.svg IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerLet's Encrypt Subject*.atbu.edu.ng Fingerprint14:A8:A4:3B:E5:0A:78:A8:01:6A:A7:F3:0B:E5:E6:71:3C:51:2A:02 ValiditySat, 04 May 2024 23:23:12 GMT - Fri, 02 Aug 2024 23:23:11 GMT
File typeSVG Scalable Vector Graphics image Hash3fecc9db35d5d2a9e6e71ab4b02d22e5 628ba2f505b480097445aaf08649a08242bd6847 362bcaa42090e36611031bec6bdaa0600375ef847092cca195c58d3bae9b4419
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/imgs/logo.svg HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=d89b76505a0c4d5709ea94f9278a9480
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:13:38 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 23:17:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 722
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 142.250.74.99 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP142.250.74.99:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://atbu.edu.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:17:17 GMT
expires: Fri, 02 May 2025 23:17:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 392181
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2 | 142.250.74.99 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2 IP142.250.74.99:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22504, version 1.0 Hash1c6c65523675abc6fcd78e804325bd77 898d9808304dc157f5dcb18ca169ec6e2b96b3d7 08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://atbu.edu.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 15:45:32 GMT
expires: Fri, 02 May 2025 15:45:32 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:12:45 GMT
content-type: font/woff2
age: 419286
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Lato:wght@300;400;700;900&display=swap | 142.250.74.74 | 200 OK | 24 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Lato:wght@300;400;700;900&display=swap IP142.250.74.74:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash7c22416f214c1cc895894d5f336741ce 4e89aa5de37ea6e46183f066d5aacb60007a09c7 b6c2df333ce25642889dec9a5204f50414dae9f26b30c0eeca0ce959f9d0eb24
GET /css2?family=Lato:wght@300;400;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 12:13:38 GMT
date: Tue, 07 May 2024 12:13:38 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/ff.ico | 208.115.218.22 | 200 OK | 325 B |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/ff.ico IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerLet's Encrypt Subject*.atbu.edu.ng Fingerprint14:A8:A4:3B:E5:0A:78:A8:01:6A:A7:F3:0B:E5:E6:71:3C:51:2A:02 ValiditySat, 04 May 2024 23:23:12 GMT - Fri, 02 Aug 2024 23:23:11 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashd8106bf3a1d00ab43b01e6e3c92500eb 202b5e8654ab1b28351378293bca3b9d844cc29b 9ada5709e264c31b04a05bd85448a9bd5e91925e8d83df5cef0762ec97cc283e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/imgs/ff.ico HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=d89b76505a0c4d5709ea94f9278a9480
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 12:13:38 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 23:25:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 325
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 142.250.74.99 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP142.250.74.99:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://atbu.edu.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:06:03 GMT
expires: Fri, 02 May 2025 02:06:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 468455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|