| onecapitalschoicebank.com/assets/images/logoIcon/logo.png | 176.123.0.55 | 200 OK | 9.3 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/logoIcon/logo.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 489 x 100, 8-bit/color RGBA, non-interlaced Hashc2583db088c53391d37211e99a9e72b1 c237a9bcb355f8d3c702b61380ea9d9d83433d61 089e16284f2c873bc109daa9581fc7b30d1aaa83ee7c517c6d53c33185897ee2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/logoIcon/logo.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 9308
last-modified: Mon, 06 Jun 2022 03:57:08 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-1.png | 176.123.0.55 | 200 OK | 59 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-1.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 6004 x 1204, 8-bit/color RGBA, non-interlaced Hash4213c49e0f4f7bcd45fd28aee8c741c3 2517c2565746c672462c1a1447f0a051b7879421 152525ccecdefe278523c6a5202fbcfd2dbf8e84eb27731c7c01bf37d8a4a2fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/images/elements/white-wave-1.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 59376
last-modified: Thu, 08 Jul 2021 15:05:48 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-2.png | 176.123.0.55 | 200 OK | 58 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/images/elements/white-wave-2.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 6004 x 1204, 8-bit/color RGBA, non-interlaced Hash77bafa6973a2db4e9444b838fbd0d87c 63869b30fe2b30988b709d4a5c5066ce1657c6dc d8ad124882205653f68573919b090d44e05347407e0ec391549d125662039ad9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/images/elements/white-wave-2.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 57488
last-modified: Thu, 08 Jul 2021 15:07:14 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/partner_section/61000a7d441c71627392637.png | 176.123.0.55 | 200 OK | 8.5 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/partner_section/61000a7d441c71627392637.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced Hashc877e8b5534009a7aac53fcb7217e66e 6ad35a577de49962abd058278b12587dd3b2d0d0 4f7d94e0dd5f6737eb084b795f4127cee3277b05c0654ff4ac67207d68ee8c0c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/partner_section/61000a7d441c71627392637.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 8458
last-modified: Tue, 27 Jul 2021 16:30:38 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/partner_section/610009d71ce7c1627392471.png | 176.123.0.55 | 200 OK | 18 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/partner_section/610009d71ce7c1627392471.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced Hash48474ca587ee60b0062fdd6aa5fcf985 e8bd5dda72f30442c9ba24d0239508298c4780ae 44198e2d044c09a6bfcb047f11357733414427f99b345470e3fdf3533013b2b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/partner_section/610009d71ce7c1627392471.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 17642
last-modified: Tue, 27 Jul 2021 16:27:52 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/partner_section/61000905dec851627392261.png | 176.123.0.55 | 200 OK | 11 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/partner_section/61000905dec851627392261.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced Hash29144dbcd11e7118d6dd93655972d439 d781796492b077fc7a5afad14f369a0200a20b20 6db34574280a11f0fdb7ca3b0ea719f3a35dff8818dc731870b7c69acae8d419
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/partner_section/61000905dec851627392261.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 10775
last-modified: Tue, 27 Jul 2021 16:24:22 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/partner_section/610008c8078b71627392200.png | 176.123.0.55 | 200 OK | 10 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/partner_section/610008c8078b71627392200.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced Hash69f643384060be63fbfe50a58d678194 142c57e2ca30c4ede10c6de25c850e94380bb7e1 a2644abc6be0a478e74cc75219bf2fee36b1778f3da7d62d2b34e34005b2eb32
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/partner_section/610008c8078b71627392200.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 10408
last-modified: Tue, 27 Jul 2021 16:23:22 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/partner_section/6100088e88e2d1627392142.png | 176.123.0.55 | 200 OK | 18 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/partner_section/6100088e88e2d1627392142.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced Hasha3b2bb8ce3985dea5cf169c2c4ed8d2e 0b546d003c2e1aa1b428d9e307f1053d1280b7d8 3838ee068c2be9fbe063809e683af351ce50583cc495935386db6656dfdc2404
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/partner_section/6100088e88e2d1627392142.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 17998
last-modified: Tue, 27 Jul 2021 16:22:24 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/partner_section/6100084858a641627392072.png | 176.123.0.55 | 200 OK | 14 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/partner_section/6100084858a641627392072.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced Hashb324018888ce5474385bd9a8b56a6e10 77a8a0df43dfe5c4a171f554b1adf776b14cfc5f e07476c154a007b6dc661644aa5944e81a98321a70bd1f242388394af3267057
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/partner_section/6100084858a641627392072.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 14362
last-modified: Tue, 27 Jul 2021 16:21:14 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/partner_section/610007f09805f1627391984.png | 176.123.0.55 | 200 OK | 14 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/partner_section/610007f09805f1627391984.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced Hash2c16441295525a98adc44b749b309170 2770cd0199175a8b06cb4e0a36e701c5274c46ab 4aa64b08e747a2334f63f72d95b0ad5c8d1cc9e2bf3c3502f7b9e001621c14f0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/partner_section/610007f09805f1627391984.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/png
content-length: 14528
last-modified: Tue, 27 Jul 2021 16:19:46 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/about/60c75675a19651623676533.jpg | 176.123.0.55 | 200 OK | 69 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/about/60c75675a19651623676533.jpg IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 650x485, components 3 Hash16022d87e87bf4b4cd7fbbba9e92a6a3 447aebe710e1cfa0e6041bb9def2edb27242d643 51392f2fe402f539f56dceb1ad1cc44d41bff45df00b281b869e8c4950703548
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/about/60c75675a19651623676533.jpg HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: image/jpeg
content-length: 68783
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:12 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashdb15baa85e7cec8919d1c4a70d3d2a08 3f5fc176066b635ec0c7011d466e93673680365d 22201da9fb8c3c93ab4c2e0a38abcf4673811476406c756a005f2683c6829b16
GET /css2?family=Exo:wght@400;600;700&family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 06:22:13 GMT
date: Sat, 04 May 2024 06:22:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/global/js/iziToast.min.js | 176.123.0.55 | 200 OK | 5.6 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/global/js/iziToast.min.js IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashc4742c4b59c800493361a91114602563 ae19b893fd42003afdf9bc7034314b11ef2cb13e 47a1f04bdf0b0bf59cd6cd8c9463762ce624986c77d05ac899b7cd1f4bd5ce4b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/global/js/iziToast.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 30 Jun 2021 02:57:44 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/global/css/iziToast.min.css | 176.123.0.55 | 200 OK | 20 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/global/css/iziToast.min.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash78cb5b3607d3e156b3669351826d9d63 6c2ce0db3330a13119ccff3b64ed7267c18e4fe1 2fad4b8114a9167d1193ec1bca875960656a7fb89e01c3b8e0143852347c6836
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/global/css/iziToast.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 30 Jun 2021 02:57:44 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/js/lightcase.js | 176.123.0.55 | 200 OK | 22 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/js/lightcase.js IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash03def6c9c5d398b98b722de29cf64881 ad1afa2ddc84df13c29b3190830cae4df7b9ce51 e1234c3426503cac50f0e7e5d1a7e7d64d5902d79410e31ca645d1c2d431371d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/js/lightcase.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css | 142.250.74.35 | 200 OK | 4.0 kB |
URL GET HTTP/2www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css IP142.250.74.35:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeASCII text, with very long lines (20367), with no line terminators Hash72d3a735ccca1027f6b3afba2c93e3a7 67f8eff8d17334c59c28fc1753bf451527c7490d c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1
GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:13 GMT
expires: Sat, 03 May 2025 16:31:13 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 49861
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js | 176.123.0.55 | 200 OK | 400 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/js/lib/jquery-3.5.1.min.js IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Size400 kB (400273 bytes) Hash0f9cd907fbb72ea322dbde3c8daea34e 2a2bf268c3d547608253cb4c6602b41509f712cc bb670657a78a42dd0ffb3ff616e281050c74ebda6000048f0dd7b656e42b42ca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/js/lib/jquery-3.5.1.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/why_choose/60d497b25b98a1624545202.jpg | 176.123.0.55 | 200 OK | 314 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/why_choose/60d497b25b98a1624545202.jpg IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 1920x1280, components 3 Size314 kB (313811 bytes) Hash2e8d31e0bead1bdde573b8de0a7b560e a72c57c6bdcc1f3d22912aee979cdf4ff018c1a7 551b9ff72ef7ccdf2c6c9b84b685149296deddc3b6d284db9918081d5de0845a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/why_choose/60d497b25b98a1624545202.jpg HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: image/jpeg
content-length: 313811
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/js/lib/slick.min.js | 176.123.0.55 | 200 OK | 52 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/js/lib/slick.min.js IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash772214e5ecdb82fa3998e6176c404a50 eba964254a4aeebc6222dba110beaac3b5419ffb 45f7d5224055d88ae548b260c5295bab9b38b54277e6cd4be0eeeccb3fa99b87
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/js/lib/slick.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 22:40:35 GMT
expires: Fri, 02 May 2025 22:40:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 114099
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-solid-900.woff2 | 176.123.0.55 | 200 OK | 79 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-solid-900.woff2 IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 79444, version 331.524 Hashb15db15f746f29ffa02638cb455b8ec0 75a88815c47a249eadb5f0edc1675957f860cca7 7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 79444
last-modified: Thu, 01 Jul 2021 15:35:22 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/js/app.js | 176.123.0.55 | 200 OK | 23 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/js/app.js IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash2a0342664b61f043cb19b909fca274b8 451d1dfddcb227e743192d41c13c06a25264b322 30e1e72ea37c9e9268ce05620401e6fb8935dd02abfae517f0dea12d3646aecb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/js/app.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 17 Jul 2021 10:16:56 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/exo/v21/4UaOrEtFpBISc36j.woff2 | 216.58.207.227 | 200 OK | 21 kB |
URL GET HTTP/2fonts.gstatic.com/s/exo/v21/4UaOrEtFpBISc36j.woff2 IP216.58.207.227:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21400, version 1.0 Hasha4f30d3991eed8f78531c584a3355b55 d9abd700bd57cd2a35bf3ab4280af18d6712dbd5 533560ab5ad5c4f2c81404249e7277e57c2ea8e434b5a4965932d93ad5fc56d8
GET /s/exo/v21/4UaOrEtFpBISc36j.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21400
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 08:53:17 GMT
expires: Sat, 03 May 2025 08:53:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:48:44 GMT
content-type: font/woff2
age: 77337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/fonts/la-solid-900.woff2 | 176.123.0.55 | 200 OK | 97 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/fonts/la-solid-900.woff2 IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 96752, version 1.0 Hash36fc297902c9a2e857858baa6ac25f2c 89d9531c0c70a8751dff83c1917baab1f16a2071 10a68e01209d939afa9318ee71601b0a6e10f025d4cd6d98a492d340b73941fb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/fonts/la-solid-900.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/line-awesome.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 96752
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-regular-400.woff2 | 176.123.0.55 | 200 OK | 14 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-regular-400.woff2 IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13584, version 331.524 Hashc20b5b7362d8d7bb7eddf94344ace33e 260bb01acd44d88dcb7f501a238ab968f86bef9e 6a8c8e9e1e7f692c21af1956de163f3d026778e6449fe93a09a671847ca1ae65
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 13584
last-modified: Thu, 01 Jul 2021 15:35:22 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-brands-400.woff2 | 176.123.0.55 | 200 OK | 77 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/webfonts/fa-brands-400.woff2 IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 76612, version 331.524 Hasha06da7f0950f9dd366fc9db9d56d618a 509988477da79c146cb93fb728405f18e923c2de 5d9190292acdd48ba0fc35080f7e7448f3cdf0d79199a4d23f0f49b5341fdf29
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/all.min.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: font/woff2
content-length: 76612
last-modified: Thu, 01 Jul 2021 15:35:22 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main | 142.250.74.74 | 200 OK | 73 kB |
URL GET HTTP/2translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main IP142.250.74.74:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (2297) Hash605f56f43acc68919c70135617d4d7f5 b8378f17248b2beb8ad28dc47d89d570917752eb a91e9b2563b0fcf3155dd2afb6a8f88dcee2fb654ce55cc1cb0436e1fe024bac
GET /_/translate_http/_/js/k=translate_http.tr.no.vlWcFy1Qa4I.O/am=ABA/d=1/exm=el_conf/ed=1/rs=AN8SPfq6l3AG_8lO_Z07zI9zgoV_hHwsug/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 72608
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:14:19 GMT
expires: Fri, 02 May 2025 17:14:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 May 2024 19:12:22 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 133675
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/logoIcon/logo.png | 176.123.0.55 | 200 OK | 9.3 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/logoIcon/logo.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 489 x 100, 8-bit/color RGBA, non-interlaced Hashc2583db088c53391d37211e99a9e72b1 c237a9bcb355f8d3c702b61380ea9d9d83433d61 089e16284f2c873bc109daa9581fc7b30d1aaa83ee7c517c6d53c33185897ee2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/logoIcon/logo.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:14 GMT
content-type: image/png
content-length: 9308
last-modified: Mon, 06 Jun 2022 03:57:08 GMT
expires: Wed, 03 Jul 2024 06:22:14 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png | 142.250.74.35 | 200 OK | 910 B |
URL GET HTTP/3www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png IP142.250.74.35:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced Hashefa6bb2bfe459bc6f4bdafa3db0383f6 52d15ce52fe50643e542c17812de43f4ed1b6ee0 6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 07:21:52 GMT
expires: Sat, 03 May 2025 07:21:52 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/png
vary: Origin
age: 82822
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg | 216.58.207.227 | 200 OK | 3.3 kB |
URL GET HTTP/3fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg IP216.58.207.227:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeSVG Scalable Vector Graphics image Hash2bd5c073a88b83ed74db88282a56ddfb d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650 ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09
GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:32:19 GMT
expires: Sat, 03 May 2025 11:32:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 67795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/images/branding/product/2x/translate_24dp.png | 142.250.74.35 | 200 OK | 1.8 kB |
URL GET HTTP/3www.gstatic.com/images/branding/product/2x/translate_24dp.png IP142.250.74.35:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hashc69c796362406f9e11c7f4bf5bb628da e489ce95ab56208090868882113d7416abf46775 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:13:15 GMT
expires: Fri, 02 May 2025 02:13:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 187739
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback | 142.250.74.106 | | 1.4 kB |
URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP142.250.74.106:0
Hasha3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 04 May 2024 06:22:15 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=513=AGcA_QOQyYMDNCmGJhCian-TWY6c-ZDud_oBQqTl4aAkZyh2mp_g-xDVa2hz8-p9xnKO_ItTRJAac4qGEGuXgzOxKuwyl4H8-Ito4GdD9vfoFphZZkFvIaI4aXrhJr3aGqAWwlQ9YkEOPP3teD85iDIWFcybcLojHEaguXJbWis; expires=Sun, 03-Nov-2024 06:22:15 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
expires: Sat, 04 May 2024 06:22:15 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/main.css | 176.123.0.55 | 200 OK | 15 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/main.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeassembler source, ASCII text, with CRLF line terminators Hashe72968ee11d1f8c67daa4f5a5db6e014 034ca0ea660c7667763aafed778265a47b4a1f2b c920b1029c7ffc0e65303aa14e30b3d5eba85374c71be8f645eead6960c222e0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/main.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 07 Sep 2021 13:33:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css | 142.250.74.35 | 200 OK | 4.0 kB |
URL GET HTTP/2www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css IP142.250.74.35:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeASCII text, with very long lines (20367), with no line terminators Hash72d3a735ccca1027f6b3afba2c93e3a7 67f8eff8d17334c59c28fc1753bf451527c7490d c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1
GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/am=AAM/d=0/rs=AN8SPfo47ZI4Pt9KwV-0738jND9vOwmjgQ/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:13 GMT
expires: Sat, 03 May 2025 16:31:13 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 49862
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| onecapitalschoicebank.com/assets/images/logoIcon/favicon.png | 176.123.0.55 | 200 OK | 14 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/logoIcon/favicon.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced Hash1ec43eeea478e0bd5388863999134bb4 36fff49b90994546c9793d789cd342b215b9e438 5f078cbffed13783f38340c213a36aa2ff2ee34f5a6044808d2651fa3991e2b0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/logoIcon/favicon.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:14 GMT
content-type: image/png
content-length: 13572
last-modified: Tue, 10 Aug 2021 15:23:36 GMT
expires: Wed, 03 Jul 2024 06:22:14 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0 | 142.250.74.74 | 200 OK | 0 B |
URL OPTIONS HTTP/3translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0 IP142.250.74.74:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://onecapitalschoicebank.com/
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://onecapitalschoicebank.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 04 May 2024 06:22:24 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0 | 142.250.74.74 | 200 OK | 131 B |
URL OPTIONS HTTP/3translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0 IP142.250.74.74:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://onecapitalschoicebank.com/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 1186
Origin: https://onecapitalschoicebank.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://onecapitalschoicebank.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 04 May 2024 06:22:25 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| onecapitalschoicebank.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js | 176.123.0.55 | 200 OK | 81 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/js/lib/bootstrap.bundle.min.js IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65293) Hasha3b0a9f767ac0014b919593207a08b27 cd42a3722f0d90bfed00cb2e9be372b07aa8562f 886a0d1005f4d663e11473c81ea20b2b9d618372313df55223d2c571dffc5698
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/js/lib/bootstrap.bundle.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/line-awesome.min.css | 176.123.0.55 | 200 OK | 90 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/line-awesome.min.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash83990816d866ab76b13d84ace2719131 766d43778e58361f7a4afacaba0522acd43235db bea206623c78b4e67179f151e75883719faf521e192add54d14570dfebf4e032
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/line-awesome.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/lib/slick.css | 176.123.0.55 | 200 OK | 1.8 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/lib/slick.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (1895), with no line terminators Hashb3f4dd9bd98c76eb638e0cc6d0184721 2fbbc2e81bf1ac6dde9bf24c013524df1973480a b2dce8f0973f7debc99cd2dfb90f65f37004c26c81a131def9cefa00c7fa00dd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/lib/slick.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/custom.css | 176.123.0.55 | 200 OK | 4.5 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/custom.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (4926), with no line terminators Hash430e8d7b84a26db4dbaa86da932debd0 970e2b9c561c41bf788fe613140a31e9e2e882c2 08f1df64a5602550e238e61b8444a26fae45eb0c39890eeb65af8b484fc94dc8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/custom.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 06 Sep 2021 23:08:44 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/js/lib/wow.min.js | 176.123.0.55 | 200 OK | 8.4 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/js/lib/wow.min.js IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (8515), with no line terminators Hashda4ec6a3e988677b1eff06cb90e95927 4083d1ec23a24f9f0eeb025501b9806b567249aa 85a9285b248eb56c2268288cfcea3ea7806c912ebb82d256fcd7c4e5b7e9c740
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/js/lib/wow.min.js HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/images/elements/right-arrow.png | 176.123.0.55 | 200 OK | 41 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/images/elements/right-arrow.png IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typePNG image data, 2133 x 2133, 8-bit/color RGBA, non-interlaced Hash6d7b1621cc6394dad52ed3b5190e158e 3f40b5943730289de46cd8187b84a7256dc1a6a9 450653504df54779e11ce8db2e6c0ae6223c9e6ce17da46ea9efd8efdb66c8fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/images/elements/right-arrow.png HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/assets/templates/basic/css/main.css
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: image/png
content-length: 41392
last-modified: Thu, 08 Jul 2021 12:25:38 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/ | 176.123.0.55 | 200 OK | 52 kB |
URL User Request GET HTTP/2onecapitalschoicebank.com/ IP176.123.0.55:443
CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:11 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; expires=Sat, 04-May-2024 08:22:11 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D; expires=Sat, 04-May-2024 08:22:11 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/all.min.css | 176.123.0.55 | 200 OK | 59 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/all.min.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (58392) Hash76cb46c10b6c0293433b371bae2414b2 0038dc97c79451578b7bd48af60ba62282b4082b 876d023d9d10c97941b80c3b03e2a5b94631ff7a4af9cee5604a6a2d39718d84
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/all.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| translate.google.com/translate_a/element.js?cb=googleTranslateElementInit | 216.58.211.14 | 200 OK | 89 kB |
URL GET HTTP/2translate.google.com/translate_a/element.js?cb=googleTranslateElementInit IP216.58.211.14:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (2064) Hashd1692bb470ff4b25d431fe825628b3fe b2aa5070d906c7a8898f3d3305d6375603a71acb 70d986f6da11f431ad226d7f9b08dce263a22e39d3afde0b313ada63ce5d7c36
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 06:22:12 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c | 176.123.0.55 | 200 OK | 4.2 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (4409), with no line terminators Hash3674886ed6c5ff4142432b52a9153a47 c2922220f6e80cb523579737a49180d9e1d4e9f4 8841c447f624b0f73095037a1b11ad590a5fe2eac8d4a473d182b39c65c98191
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/color.php?color=00a6f7&secondColor=14233c HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: text/css;charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: BYPASS
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/images/frontend/banner/60c756944f1271623676564.jpg | 176.123.0.55 | 200 OK | 369 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/images/frontend/banner/60c756944f1271623676564.jpg IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 90", baseline, precision 8, 1920x1280, components 3 Size369 kB (369119 bytes) Hash13316ccec61c1c97a8697fbad586829c 4bfbc37e1638bf41cd8663d9e49a4163c2092e78 d25aaa9ac79b4f2232df9e29e4193317e4849a0704673a4f9a985582320cccfb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/images/frontend/banner/60c756944f1271623676564.jpg HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:13 GMT
content-type: image/jpeg
content-length: 369119
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Wed, 03 Jul 2024 06:22:13 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/lib/bootstrap.min.css | 176.123.0.55 | 200 OK | 153 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/lib/bootstrap.min.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
Size153 kB (153111 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/lib/bootstrap.min.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| onecapitalschoicebank.com/assets/templates/basic/css/lightcase.css | 176.123.0.55 | 200 OK | 17 kB |
URL GET HTTP/2onecapitalschoicebank.com/assets/templates/basic/css/lightcase.css IP176.123.0.55:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuercPanel, Inc. Subjectonecapitalschoicebank.com FingerprintC0:8F:A8:5C:89:FC:14:C6:4A:13:17:85:75:DF:08:F1:71:89:34:B4 ValidityThu, 02 May 2024 00:00:00 GMT - Wed, 31 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (428) Hash80b7c66f2e29e454c97163847d7dbf33 e6d0e505dcd94d227f5d7e729bf8fa31cc3f4b4a 6abe037a0f81d267b7204382b790c50db94d6ea85b6103e20c7e1299b48051bb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/templates/basic/css/lightcase.css HTTP/1.1
Host: onecapitalschoicebank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkxOcDhMSVFYVzhLN2dFUnBDQ2liR1E9PSIsInZhbHVlIjoiSkE3QWl2MGVqVHN4WWZsekxZdkV3MXNEYVR0bWdvRm1lQ3o1NDVJY1FEdjlTVkVQNkRxdjFSRnpGdWJvcTliWGxhcjBjMHZ3SXR1N1crWm9WajI4TWpFKzNPTTlHcDcrZHRwYUJMQWRTMXl2Mm9EY3ZZYSsrNEg1QmZsbkh3NmUiLCJtYWMiOiJmMDlkNjM4ZWE3MWJhMTQ3MzQ1NmY5MTVmY2EwMzJjNzY4MzY3MzEzNjBmYTlmOTIwMmRmMjM3YjcwODEzNmI0IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlY5aWZkeGFVKy9VZ3dCbmNFM3A4TVE9PSIsInZhbHVlIjoiSEovYndxSkZVeml0aUNaazJIOXlLNEJ1VHBhMjB1anRjMFpqQXM2UUJtNG1KNzZ6UlV2UGxVekpSYVlvcFg3YWNPcER6dEVTajZOZVA5cEZMQllnNzA0eVJRRUU3L2tZTlVYT2RsQkRCd3NGSGZLRFNuQXZhSFR0bkpYM1UvQ1UiLCJtYWMiOiJhZjM2NjQ1Yjg4ZDUxYzMxYWI1MjBiZDE5OTJkZTQ2MTQ5OThhYzhjMWQzN2EwZDNkMDk5MTMyMTVjZWQ5NzE3IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 06:22:12 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 01 Jul 2021 15:35:20 GMT
expires: Mon, 03 Jun 2024 06:22:12 GMT
cache-control: max-age=2592000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: HIT
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20240501 | 216.58.211.14 | 204 No Content | 0 B |
URL GET HTTP/3translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20240501 IP216.58.211.14:443
Requested byhttps://onecapitalschoicebank.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20240501 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://onecapitalschoicebank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
content-type: image/gif; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 06:22:15 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-KHRD1pTT0oTXlUig9mxmHA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/TranslateApiHttp/web-reports?context=eJzjEtDikmLw0pBicEqfwRoExELcHNNXXN_IJnDhyiNtAGiHCUQ"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=19.SE=l38YbydJ5xdS09he91YlPb6EXBp_UKaguItMuj7DK_K8PMqXbpJ6fS5gnSsoHQzos3CqEsI5vWLqKr__ODXYHSOTzjDDfg3dcAg03_puklkfJu0YR8r2_iGCdohXp_zHyK-riE6_ohtIauHY9a7hmIKla9z6fF5ZM4Hs5f-T1Hk; expires=Tue, 03-Jun-2025 22:40:33 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|