Report - cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php

Report Overview

Submitted URL
cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
IP
40.67.201.30
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2023-03-25 21:34:50
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
66

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.mitid.dk	unknown	2017-04-03T14:46:36Z	2023-03-29T15:25:14Z	5.3 kB	236 kB	95.100.107.87
whos.amung.us	12687	2014-04-02T16:27:13Z	2023-03-29T12:52:10Z	462 B	297 B	104.22.74.171
ic.tynt.com	4300	2013-08-06T03:33:59Z	2023-03-29T12:59:06Z	2.2 kB	1.2 kB	67.202.105.34
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	50 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	34.211.126.51
cdn.tynt.com	7260	2012-05-21T18:51:48Z	2023-03-29T12:31:48Z	386 B	7.3 kB	104.18.36.173
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
cert.login.dokument.info.40-67-201-30.cprapid.com	unknown	2023-03-14T10:36:58Z	2023-03-29T10:49:56Z	14 kB	752 kB	40.67.201.30
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.4 kB	6.2 kB	23.36.76.226
de.tynt.com	1252	2013-08-06T03:33:59Z	2023-03-29T12:44:24Z	499 B	404 B	67.202.105.33
widgets.amung.us	12623	2012-05-21T21:25:54Z	2023-03-29T12:31:46Z	393 B	415 B	104.22.75.171
t.dtscout.com	11951	2017-01-30T05:52:42Z	2023-03-29T12:31:47Z	471 B	971 B	141.101.120.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-03-14	medium	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	Nordea Bank

PhishTank

Scan Date	Severity	Indicator	Alert
2023-03-15	medium	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	Other

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-25	medium	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed
2023-03-25	medium	cprapid.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (16)

	URL	Size	First Seen	Last Seen
	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	865 B	2023-03-14	2023-04-20
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:44:09 Last Seen2023-04-20 20:37:41 Times Seen55 Hash 43d760a33f39f20362e2714a89b518e9 df962a799adbbebfb940b17d60c95490d218c3d7 be151e29b3346f2e8d1d219828fcabd8673d9b3f2a06df2c82f7f43f81e0b53d Loading...

	t.dtscout.com/pv/?_a=v&_h=cert.login.dokument.info.40-67-201-30.cprapid.com&_ss=3zlxz2is39&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=hy58&_cb=_dtspv.c	52 B	2023-03-29	2023-03-29
Pretty URL t.dtscout.com/pv/?_a=v&_h=cert.login.dokument.info.40-67-201-30.cprapid.com&_ss=3zlxz2is39&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=hy58&_cb=_dtspv.c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:36:30 Last Seen2023-03-29 22:36:30 Times Seen1 Hash c079470dc2770436a5c57727070874e8 86805c245e21de199b069dffb51b81f513002e6f 044634dae1b24395d32a1f46041bd80ec5dd4dbbaa86b7b14b68e6118a089e74 Loading...

	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	30 B	2023-03-13	2023-04-11
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:05:50 Last Seen2023-04-11 19:10:00 Times Seen49 Hash 4affbb1bcd478fcb687610382841ab13 76a99c4aa3b9dd38c7f7391b924b35103cb33e76 f915c2252d54209d99117a7cc549fe9bd7df7555b212541294f3453115e8fd79 Loading...

	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	236 B	2023-03-26	2023-04-20
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:22:38 Last Seen2023-04-20 20:37:41 Times Seen63 Hash c9c77ee4f3365bf985af71cfbe56d7d9 1b2cc393ee8e5fd170537a0142338099ee8c55b3 423de8f33e546a89bbaffc472957251586477bdec637afc366496796e6a1e487 Loading...

	whos.amung.us/pingjs/?k=nordi001&t=Nordea%20-%20identifikation&c=s&x=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&y=&a=0&d=1.346&v=27&r=18	26 B	2023-03-26	2023-04-06
Pretty URL whos.amung.us/pingjs/?k=nordi001&t=Nordea%20-%20identifikation&c=s&x=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&y=&a=0&d=1.346&v=27&r=18 IP 104.22.74.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:19:47 Last Seen2023-04-06 07:52:47 Times Seen3 Hash a5508def01522e3ba482ffe2a422b031 eb45dab3a801c8960283836decb2bff650b18871 e059cf2fe9ad09521ce8ff082eb065b13d3132c55152c4c8a653ff089a123694 Loading...

	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	463 B	2023-03-08	2023-08-19
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:23:38 Last Seen2023-08-19 13:27:55 Times Seen62 Hash 12ce6263ec9a8b39052bb88a4d32f022 079864bd3f57d5abaf5dbedd1d1230af550d200e 69c811cc0046ee6925b3f2c92f3a227b2b96746d5ea3b50d61051659f27e0f25 Loading...

	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	296 B	2023-03-13	2023-04-11
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:40:45 Last Seen2023-04-11 19:10:00 Times Seen50 Hash c0cc0ba63ea76098dbef673319501ca9 2c8af94b1eab461e36fd0f62b11730852cad6fdc 43f4cb716a59b28050fe499c7f64551df523ded2030b8ba9f2fc67c23a636741 Loading...

	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	352 B	2023-03-08	2023-04-20
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:06 Last Seen2023-04-20 20:37:41 Times Seen87 Hash 20fb3c0190a762beaea9dc55bb233440 19334f820374a9f1486604884906293932b47971 a826917389ce9f2378f0efcda62a5e800ff9d9e6b49835c427732eecbb24440b Loading...

	cdn.tynt.com/tc.js	18 kB	2023-03-26	2023-06-01
Pretty URL cdn.tynt.com/tc.js IP 104.18.36.173 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 06:14:32 Last Seen2023-06-01 00:32:07 Times Seen1872 Hash 569be2758b9d2b1b2b12b32cb4e77722 c899cb2adea760c6cdb2d471a7408ddbc811e363 b1804777ba20dafab3f354093af8b20442bec0eb61b2d34ea8a735a3bfefa278 Loading...

	cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/js/jquery.js	272 kB	2023-03-07	2024-04-19
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/js/jquery.js IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:27 Last Seen2024-04-19 09:44:37 Times Seen1233 Hash 3f24e8505d471bd934a5a68b86971580 876bd436d3b3c1436a8ac17a654e38d062acf45e 4ef5f864f89db7feaaaa5332c0a99d76076af49fef488806541ca2561e4cb379 Loading...

	cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php	7.4 kB	2023-03-14	2023-04-06
Pretty URL cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php IP 40.67.201.30 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 10:44:09 Last Seen2023-04-06 08:36:23 Times Seen48 Hash fe63cfe27d06be2d4a1a05f3c6890f2b 814b81e1954b80444cc4763aee6713cbb1b0b1bc 62347c38e10bb2388e18068575cc397edbbbb40802914cea17ed25b94ba12e59 Loading...

	t.dtscout.com/i/?l=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&j=	2.1 kB	2023-03-07	2024-04-19
Pretty URL t.dtscout.com/i/?l=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&j= IP 141.101.120.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-19 19:35:51 Times Seen4398 Hash 51bd741af3fcc4984d1a753eebfa1141 534664acf69cbbb5c9b97c96b63dd37bdc580da2 3e9c8e5dcf3cbff9e1b7211551a31fe388f1b8e607fd78a0a34855be65da721c Loading...

	widgets.amung.us/small.js	8.6 kB	2023-03-08	2024-04-19
Pretty URL widgets.amung.us/small.js IP 104.22.75.171 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:44 Last Seen2024-04-19 19:35:51 Times Seen2472 Hash a41caf5294227669425cd5135a26b2a0 a26a13f88c51c37b58fbd8a6b444e9b9150fae16 2052a227c361a7e99ea70f5bdcf54cd9e6c6b493dd4d20b73b376d94ce0dc0d1 Loading...

	de.tynt.com/deb/v2?id=w!nordi001&dn=TC&cc=1&r=&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php	4 B	2023-03-07	2024-04-19
Pretty URL de.tynt.com/deb/v2?id=w!nordi001&dn=TC&cc=1&r=&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php IP 67.202.105.33 ASN #32748 STEADFAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-19 09:17:17 Times Seen3072 Hash 350fd6ef6446635f7a8f608434a405ec a4b6c275ac2c80ec925b5c0c5c6abb79ba897356 d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179 Loading...

		Size	First Seen	Last Seen
	#1 Eval - b2c2041f8d99c45e0f21474fe4f8b7bc	17 B	2023-03-07	2024-04-19
Pretty Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-19 13:33:24 Times Seen7408 Hash b2c2041f8d99c45e0f21474fe4f8b7bc 0b876666393469c726a2e3edbb29544c03a92154 17f5bfdbae6b35ae8bc3b27c069526d694021fe1e37a8027678e770fbb05e061 Loading...

	#2 Eval - 9c6f8328cad252c79720cdebcb48012b	226 B	2023-03-07	2023-05-06
Pretty Observations First Seen2023-03-07 01:03:01 Last Seen2023-05-06 00:45:04 Times Seen958 Hash 9c6f8328cad252c79720cdebcb48012b b853e7b92b0b23aa07f59b4816740de095331d47 bb037a2c6d9cf7fa65d8570beb76b1a31c360826ed6edb8612a584aa1918d62d Loading...

HTTP Transactions (67)

URL IP Response Size

cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php

40.67.201.30

200 OK

96 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (43921)
Size
96 kB (95577 bytes)
Hash
949b5e7f0fbccd072d1d72a0fa0ef935
18c478ad6727c7001385ae01363263e13a4a5ed8
907414afa18c4fa035ca4254a231d33a05480fc11a0cda63c29d24b84a8348c5

Detections

Analyzer	Verdict	Alert
openphish	Nordea Bank
phishtank	Other
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /id/dklogin.php HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2456
Expires: Sat, 25 Mar 2023 22:15:35 GMT
Date: Sat, 25 Mar 2023 21:34:39 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20280
Expires: Sun, 26 Mar 2023 03:12:39 GMT
Date: Sat, 25 Mar 2023 21:34:39 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 21:27:45 GMT
content-type: application/json
age: 414
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7618
Expires: Sat, 25 Mar 2023 23:41:37 GMT
Date: Sat, 25 Mar 2023 21:34:39 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Rzn1v1fOvAApxwgKfvtLjBDt2s2VawQhUIStb+9HiJUOfpd1TU5P52JEURjGF/3x85bxKvETxzc=
x-amz-request-id: 35BJYABSYSM4S5FM
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 21:00:56 GMT
age: 2023
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 21:34:39 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/styles-90d1ba6c2eef1d8f73fc94069cfe444b.css

40.67.201.30

200 OK

46 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/styles-90d1ba6c2eef1d8f73fc94069cfe444b.css
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
assembler source, ASCII text
Size
46 kB (46240 bytes)
Hash
b4e3dd72fa889925a82bcf7bbf0efb38
f073ffd6720b2a76790083c6fc434c3560a6cc39
2bbe5dc049d7c24d18fa1623f48772832cbfa6f3281df6b41723b9bd7f3be7f9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /id/all/styles-90d1ba6c2eef1d8f73fc94069cfe444b.css HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Last-Modified: Mon, 12 Dec 2022 07:05:57 GMT
Accept-Ranges: bytes
Content-Length: 46240
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/scripts-5abe3803d3e5a9e3f93b7ca687779a67.js

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/scripts-5abe3803d3e5a9e3f93b7ca687779a67.js
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10262 bytes)
Hash
14f30905715d19a361d899929539dbf7
cb649c608e3c7e1adc554e41896b168b4af22808
75c5401395a83aa38b3311df3c0cbbcd514ce0fa245248219172b9d0e8bf771d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/scripts-5abe3803d3e5a9e3f93b7ca687779a67.js HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/mitid-4aead61655620afca545eded5d36aa1e.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/mitid-4aead61655620afca545eded5d36aa1e.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10274 bytes)
Hash
4a872843300ef9915c741058b897e840
28e4f984886d6cd071686e514c5447ea6773df21
2bb784d2697f8ae5ed92ee651b9c5d1462213b44956115ba277ef377e1ac080f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/mitid-4aead61655620afca545eded5d36aa1e.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/qrcode-0ee52d9cc6e123879ec6846246f9eff0.js

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/qrcode-0ee52d9cc6e123879ec6846246f9eff0.js
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10260 bytes)
Hash
f09fa01da819b20b09191f53fb366d4d
337b326687773916424c765ddecf437e649dedd7
a889cff49ee49cd2d53e1d5e86a3cc40877d18d87e5fdd12c458947607008d3c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/qrcode-0ee52d9cc6e123879ec6846246f9eff0.js HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/qr_code-c086a1064a1535f8761f7ebef31e5fc5.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/qr_code-c086a1064a1535f8761f7ebef31e5fc5.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10278 bytes)
Hash
0316d020743ffa5fc19f9f4e2ea3eb6b
26ebe5528b59a70acede3528ea1347e56204991c
64b2e387015fd166f94a6e32ce0897d1dc889cc0b421fe066fbdfcbf867a6257

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/qr_code-c086a1064a1535f8761f7ebef31e5fc5.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/codes_app-a89defc476c5ea3f806b6f5360157e81.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/codes_app-a89defc476c5ea3f806b6f5360157e81.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10282 bytes)
Hash
564a4d5d44e8199e80581c3bb16aa8a0
6eb98ab308f277ac7e2f6bea66f64b3e7ab61363
f96a4465d9ccb5cff3b7919b4613394804c62860adb2a05153bcd58c95ea1f7a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/codes_app-a89defc476c5ea3f806b6f5360157e81.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/qrt-78c4b15d93ca856686f6b6f3fa0ce872.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/qrt-78c4b15d93ca856686f6b6f3fa0ce872.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10270 bytes)
Hash
db26d8246fa2cd16896f230b153d54b9
eb8fa66f3167658538a2627f5288e0792f256508
16bbe4f1772f5301dcb120ef0011b76751a1f711f43bae722fc05c51bea98bea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/qrt-78c4b15d93ca856686f6b6f3fa0ce872.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10294 bytes)
Hash
af7b49c29ba16a8bc7631ca6042d8ac0
dabf86d11cdc74cb4b43f5901bdeb1343deac8e4
095e04e7b3d50f48ee6ee016659135c9f3f43a9daf73b84cab34a279f7c79e49

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10304 bytes)
Hash
6188819b0210dc25cb5ce0a8f35b8369
22c4d440c035840ebe36aa932d1abb5cc7bcc635
4f37188e792bdcb0133c4f02d0c75c0a0a1042086256b2db8973b37bfd259cd1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/key-ca4ef88caabfc9bc5dc60a9d9fe78fa3.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/key-ca4ef88caabfc9bc5dc60a9d9fe78fa3.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10270 bytes)
Hash
f258d65a7f311d6c3fa565be87371bc2
2b173ffe570aff72cc1660b2136668fdd3f81703
f85c22307dd6fc8add9eb2f8c782a8010a9041c3ddbc94dc712486eeac9fb536

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/key-ca4ef88caabfc9bc5dc60a9d9fe78fa3.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10276 bytes)
Hash
e4fbc5b0c4d052e6f88c2cb00ade6aa3
9b082c75d58373a499398963d03c77afed5bc7a0
91e7d3894d2513c32473263b84c073007e9112119aff171d25130663cdfac683

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/no-connection-83f79e2367a313b468986e12a237c346.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/no-connection-83f79e2367a313b468986e12a237c346.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10290 bytes)
Hash
9f7db2238a46a1504b33e46488b45238
7efc408a29fc6c972d7cbce5adaa147633d51c13
b48faec42ea32628d1db4230c2e6836dac1552c694215f4307e619cd687ccd63

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/no-connection-83f79e2367a313b468986e12a237c346.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/empty-3857ebe69f653487f8c9d99adde4657f.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/empty-3857ebe69f653487f8c9d99adde4657f.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10274 bytes)
Hash
25e37747b2cb873664ba893797081de0
5040966bb5fa946a348f779bb898dbe29278e127
ebe4b04e15921bf44b0eee5f5896a55469f3139aa1f6111b31b8b606a35a8d3e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/empty-3857ebe69f653487f8c9d99adde4657f.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/service-break-f426cda35f41e4c0b7c30c814b5eb2ee.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/service-break-f426cda35f41e4c0b7c30c814b5eb2ee.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10290 bytes)
Hash
22c6bff65d3bc28ff8d0ccf39bda086c
99f66ef0a7ad221d3f101b6f7db2a4fc5c5a402d
80eda2da2d8213fc7df01071e913000a03a29102c0d0550a30633755a1a38f3d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/service-break-f426cda35f41e4c0b7c30c814b5eb2ee.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/5e73b3c67b0510c4c5cf-6629cb5350d6f3276b2dccc43bd3f397.png

40.67.201.30

200 OK

40 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/5e73b3c67b0510c4c5cf-6629cb5350d6f3276b2dccc43bd3f397.png
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 828 x 300, 4-bit colormap, non-interlaced\012- data
Size
40 kB (40339 bytes)
Hash
6629cb5350d6f3276b2dccc43bd3f397
63d964e5caaa541475a4c2da976871a9f9986067
9fc5b5c44107cfc6701be07fa5d5a4d7ab066607dd7ab6e9f396ac709e28424f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /id/all/5e73b3c67b0510c4c5cf-6629cb5350d6f3276b2dccc43bd3f397.png HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/styles-90d1ba6c2eef1d8f73fc94069cfe444b.css
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 21:40:36 GMT
Accept-Ranges: bytes
Content-Length: 40339
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/aa1ee103968475b48934-3a4d9a8b6adf39716f28af71fc9b030a.woff

40.67.201.30

200 OK

31 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/aa1ee103968475b48934-3a4d9a8b6adf39716f28af71fc9b030a.woff
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Web Open Font Format, TrueType, length 31152, version 0.0\012- data
Size
31 kB (31152 bytes)
Hash
3a4d9a8b6adf39716f28af71fc9b030a
5d9acfd762ccd9a4a519951ad008f119741c513b
21a2a17b532837aeafeb95de9f252bfec714028517f79fb4143845ca4d23353c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /id/all/aa1ee103968475b48934-3a4d9a8b6adf39716f28af71fc9b030a.woff HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/styles-90d1ba6c2eef1d8f73fc94069cfe444b.css
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Last-Modified: Mon, 12 Dec 2022 06:59:54 GMT
Accept-Ranges: bytes
Content-Length: 31152
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff

cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/js/jquery.js

40.67.201.30

200 OK

272 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/js/jquery.js
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
272 kB (272155 bytes)
Hash
3f24e8505d471bd934a5a68b86971580
876bd436d3b3c1436a8ac17a654e38d062acf45e
4ef5f864f89db7feaaaa5332c0a99d76076af49fef488806541ca2561e4cb379

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /id/partials/js/jquery.js HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Last-Modified: Fri, 05 Feb 2021 08:11:28 GMT
Accept-Ranges: bytes
Content-Length: 272155
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/b90f1e1b93f3b23dd79e-11eca7aa5a85ec0c6cc3deba794b264e.woff

40.67.201.30

200 OK

32 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/b90f1e1b93f3b23dd79e-11eca7aa5a85ec0c6cc3deba794b264e.woff
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Web Open Font Format, TrueType, length 31772, version 0.0\012- data
Size
32 kB (31772 bytes)
Hash
11eca7aa5a85ec0c6cc3deba794b264e
9bd19e1a9d5859833cbd50f501444c8c2afec2e1
ff28a732b1fc6a547797b7a9a7c29025ae41b74cc5e208232418d9c41fb43c44

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /id/all/b90f1e1b93f3b23dd79e-11eca7aa5a85ec0c6cc3deba794b264e.woff HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/all/styles-90d1ba6c2eef1d8f73fc94069cfe444b.css
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 21:34:39 GMT
Server: Apache
Last-Modified: Mon, 12 Dec 2022 06:59:53 GMT
Accept-Ranges: bytes
Content-Length: 31772
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff

www.mitid.dk/mitid-core-client-backend/v1/coreclient.e998ecf45cf7712a1b62.js

95.100.107.87

404 Not Found

209 B

URL HTTP/1.1
www.mitid.dk/mitid-core-client-backend/v1/coreclient.e998ecf45cf7712a1b62.js
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type
JSON data\012- , ASCII text, with no line terminators
Size
209 B (209 bytes)
Hash
35d636d659aac0e73fd047f5ba28ad07
816e4b8319a65de75a06d2462e30967b7b9cf329
4ffc59c41b5f1ea7261b3d4c1a78652233d34449172a640fe6dae6138b28fd71

HTTP Headers

GET /mitid-core-client-backend/v1/coreclient.e998ecf45cf7712a1b62.js HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Server: nginx
Content-Type: application/json
X-Correlation-ID: 0d87cd3e-60fa-4194-b65c-087b57076877
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Content-Disposition: inline;filename=f.txt
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Length: 209
Expires: Sat, 25 Mar 2023 21:34:39 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 25 Mar 2023 21:34:39 GMT
Connection: keep-alive

www.mitid.dk/mitid-core-client-backend/v1/bootstrapper.a29ccd9579584e71dfba.js

95.100.107.87

404 Not Found

211 B

URL HTTP/1.1
www.mitid.dk/mitid-core-client-backend/v1/bootstrapper.a29ccd9579584e71dfba.js
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type
JSON data\012- , ASCII text, with no line terminators
Size
211 B (211 bytes)
Hash
360205d7d9d1d16e537c258c96ea4dd7
e22a3b9e270c744887d8264061e18e579cee85f8
e473b6e8ac57c917b65f45a8ffbe5fab0845ee43444dcedd6204f852aa91ce49

HTTP Headers

GET /mitid-core-client-backend/v1/bootstrapper.a29ccd9579584e71dfba.js HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 404 Not Found
Server: nginx
Content-Type: application/json
X-Correlation-ID: d134954e-2daf-4e16-a8a1-ebc494f2721d
Vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
Content-Disposition: inline;filename=f.txt
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Length: 211
Expires: Sat, 25 Mar 2023 21:34:40 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10304 bytes)
Hash
ccf223ce4c1060f179aabbf557a0b7f9
f6b7626df2340bb3dfedde52c0e597e995c73656
235c43562d10e77e989e2d3fed803d15aefe69d2b74bede30dccf388ea77d362

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/something-went-wrong-9bbd07dc81f3c2a11d2c7735b416ee18.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10276 bytes)
Hash
c0dbfaf0f3c140a584ae7ea7146b9396
d391902bb4a12e271c39e2bbf775766baab05db6
6089b47489c0aa7736af1309a3ce8f8e7c5bf2f00ed79226c7eefbaa6ec341f4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/cancel-d0c0f9d25ebde42bbd552c8ad5363f01.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/no-connection-83f79e2367a313b468986e12a237c346.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/no-connection-83f79e2367a313b468986e12a237c346.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10290 bytes)
Hash
da87902590a4fd4ba38233b99667d6e0
d68b10efa4215a05651950ad190327cbbc20e783
31b82f78dbf1171511eecdb97f5ec94edd25d6d3bd42086692ae1bc9786edd86

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/no-connection-83f79e2367a313b468986e12a237c346.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/empty-3857ebe69f653487f8c9d99adde4657f.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/empty-3857ebe69f653487f8c9d99adde4657f.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10274 bytes)
Hash
5004cd7f0fe5a2be0d2c9a8924a84edc
bdc34dcb7b68600ac240cb4579e7caf5a9e77575
c1c59b50424c65d81ea0fd0be69c0b7adf1b41b5d7bcb35e72649f1f508e5c8c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/empty-3857ebe69f653487f8c9d99adde4657f.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10294 bytes)
Hash
2e497b92aedb046e263a8f19ea8e3517
047f62f417d8c9c8bb90a3d4e1764dda53db895a
0bf00a9fb349404c46676bd99a72ea9cf4604c503e972f950b990991af838a73

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/technical-error-91ca9eec9eed6ed945355d650bb10d41.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/service-break-f426cda35f41e4c0b7c30c814b5eb2ee.svg

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/service-break-f426cda35f41e4c0b7c30c814b5eb2ee.svg
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10290 bytes)
Hash
47b68f962118b7e865384012d83919a2
7e40f2c657945f7b86e0148feba04c8dafe004ac
f13943bcb911591d4caa3fd2d34cb434d992c174e1787d962d0f5017c4062f5e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/service-break-f426cda35f41e4c0b7c30c814b5eb2ee.svg HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/qrcode-0ee52d9cc6e123879ec6846246f9eff0.js

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/qrcode-0ee52d9cc6e123879ec6846246f9eff0.js
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10260 bytes)
Hash
3aa8600af51440aa4dd5af76e569d345
893122f0a006a5846800dca8848a985a87270736
48dadee8400f254117c680adcbcb5a9f4f55f22154bf328d6810130a28d6a8c7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/qrcode-0ee52d9cc6e123879ec6846246f9eff0.js HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

www.mitid.dk/assets/fonts/IBMPlexSans.woff2

95.100.107.87

200 OK

56 kB

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans.woff2
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 55936, version 1.0\012- data
Size
56 kB (55936 bytes)
Hash
21ba7afab46a1da80b4a6010d1e577cd
3a8e5c7d9fd8a018110f550bd26c82942da25d83
61bfa80e071153824914399d5f7ca26ec75fcfe3f4ad20e616e88fe6d9544823

HTTP Headers

GET /assets/fonts/IBMPlexSans.woff2 HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Content-Length: 55936
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "da80-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14352
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

www.mitid.dk/assets/fonts/IBMPlexSans-Bold.woff2

95.100.107.87

200 OK

56 kB

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans-Bold.woff2
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 55824, version 1.0\012- data
Size
56 kB (55824 bytes)
Hash
6f5714bb0cd3db3993f6953d3d5b486d
57b69b1a99f285d7f5b658a6f6f138c3d61ef43e
532d48d8bc62a4c4c630470e0994f5050cd460d6d075ad5a6bc9c722d8f23d15

HTTP Headers

GET /assets/fonts/IBMPlexSans-Bold.woff2 HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Content-Length: 55824
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "da10-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14400
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

www.mitid.dk/assets/fonts/IBMPlexSans-Medium.woff2

95.100.107.87

200 OK

59 kB

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans-Medium.woff2
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 59228, version 1.0\012- data
Size
59 kB (59228 bytes)
Hash
424ab37f3815a06e8faaf045335a2af2
594f133de10f467c8a63c68bd119de1a03465d67
d6ab2d0db92462d6e29aad5d8d10dab76c8b4db9a242359679e2b3cfbfc6d86e

HTTP Headers

GET /assets/fonts/IBMPlexSans-Medium.woff2 HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Content-Length: 59228
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "e75c-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14380
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

www.mitid.dk/assets/fonts/IBMPlexSans-SemiBold.woff2

95.100.107.87

200 OK

60 kB

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans-SemiBold.woff2
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type
Web Open Font Format (Version 2), TrueType, length 59692, version 1.0\012- data
Size
60 kB (59692 bytes)
Hash
57d9a42d3c58bd28eb4e442a1d5ff127
2459d7163cdf94ce45a603c9876924ebe02c33b8
572ef6180698d1ab46b7cc657300ff9c93f2bca2d214739e20d839029f8f4455

HTTP Headers

GET /assets/fonts/IBMPlexSans-SemiBold.woff2 HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Content-Length: 59692
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "e92c-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14369
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/scripts-5abe3803d3e5a9e3f93b7ca687779a67.js

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/scripts-5abe3803d3e5a9e3f93b7ca687779a67.js
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10262 bytes)
Hash
5c054556f87cbc382deaa6d777c3515e
509bdc9eb2a0c635b03477840192cd42ec40b83a
add1f75995169d31c8c1b2f636b3650e4d6d6bd1e550d05a1eb629d542fb3093

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/scripts-5abe3803d3e5a9e3f93b7ca687779a67.js HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 21:17:24 GMT
age: 1036
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3940
Expires: Sat, 25 Mar 2023 22:40:20 GMT
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/favicon-9a39921b4a8d93d5528b4ccdc5d76e91.ico

40.67.201.30

404 Not Found

10 kB

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/assets/images/favicon-9a39921b4a8d93d5528b4ccdc5d76e91.ico
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4070)
Size
10 kB (10278 bytes)
Hash
08797f32758845aff2d8650e8e85a858
aa38d72fc4d0012a1a312007de7e67dedf01b77f
574cbcaf328b79a78550665b7c6e8f391cb321e799752c9c6984384c0c69378e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/images/favicon-9a39921b4a8d93d5528b4ccdc5d76e91.ico HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 21:34:40 GMT
Server: Apache
Accept-Ranges: bytes
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html

push.services.mozilla.com/

34.211.126.51

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.211.126.51:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tUvEz1W+xVksVBxZOR5F6w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UVjo5bpNLe/QXxvx/KgusaPZA6k=

whos.amung.us/pingjs/?k=nordi001&t=Nordea%20-%20identifikation&c=s&x=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&y=&a=0&d=1.346&v=27&r=18

104.22.74.171

200 OK

46 B

URL HTTP/1.1
whos.amung.us/pingjs/?k=nordi001&t=Nordea%20-%20identifikation&c=s&x=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&y=&a=0&d=1.346&v=27&r=18
IP
104.22.74.171:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
46 B (46 bytes)
Hash
0fe323d0ee407d48e38c7e683058c8ab
9ae3fb45309ef6a685a6fdb04322881e2a9d9583
609a087eabfb7a6b61c6e3f37635ac78f556cd2b6f0c379777d0e0d781ea5f77

HTTP Headers

GET /pingjs/?k=nordi001&t=Nordea%20-%20identifikation&c=s&x=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&y=&a=0&d=1.346&v=27&r=18 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 21:34:40 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ada47815e6f95e2-ARN

cdn.tynt.com/tc.js

104.18.36.173

200 OK

6.9 kB

URL HTTP/2
cdn.tynt.com/tc.js
IP
104.18.36.173:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (631)
Size
6.9 kB (6869 bytes)
Hash
73d28c994744440ee2c2cbd7ef8a0181
a1b526b49cd0c92f0265e8fdca1f95353d5f3f37
f3bccdccba8f765388669a963560ca8662447f37df95a38f8d6e74cfee67c0f6

HTTP Headers

GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 25 Mar 2023 21:34:41 GMT
content-type: application/javascript
last-modified: Tue, 14 Mar 2023 15:48:17 GMT
vary: Accept-Encoding
etag: W/"64109741-4750"
content-encoding: gzip
cf-cache-status: HIT
age: 193561
expires: Tue, 28 Mar 2023 21:34:41 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7ada4782abe7b4fd-OSL
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&t=Nordea%20-%20identifikation

67.202.105.34

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&t=Nordea%20-%20identifikation
IP
67.202.105.34:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&t=Nordea%20-%20identifikation HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 21:34:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php

67.202.105.34

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php
IP
67.202.105.34:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 21:34:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

de.tynt.com/deb/v2?id=w!nordi001&dn=TC&cc=1&r=&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php

67.202.105.33

200 OK

4 B

URL HTTP/2
de.tynt.com/deb/v2?id=w!nordi001&dn=TC&cc=1&r=&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php
IP
67.202.105.33:0
ASN
#32748 STEADFAST

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179

HTTP Headers

GET /deb/v2?id=w!nordi001&dn=TC&cc=1&r=&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=86400
expires: Sun, 26 Mar 2023 21:34:41 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA, Sec-CH-UA-Mobile
content-type: application/javascript
content-length: 4
date: Sat, 25 Mar 2023 21:34:41 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php

67.202.105.34

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php
IP
67.202.105.34:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 21:34:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php

67.202.105.34

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php
IP
67.202.105.34:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=w!nordi001&lm=0&ts=1679780095021&dn=TC&iso=0&pu=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 25 Mar 2023 21:34:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11745
Expires: Sun, 26 Mar 2023 00:50:27 GMT
Date: Sat, 25 Mar 2023 21:34:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11745
Expires: Sun, 26 Mar 2023 00:50:27 GMT
Date: Sat, 25 Mar 2023 21:34:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11745
Expires: Sun, 26 Mar 2023 00:50:27 GMT
Date: Sat, 25 Mar 2023 21:34:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8635 bytes)
Hash
73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i6dsVaC_gPijsRqh_EL5tZYZpjNEbQJvKIpPq501TIJZzcLUWeRz9w==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:45:56 GMT
age: 85726
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (4000 bytes)
Hash
85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 05:56:24 GMT
age: 56298
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5296 bytes)
Hash
aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:13 GMT
age: 85049
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7800 bytes)
Hash
5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:53 GMT
age: 85849
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12071 bytes)
Hash
70169fbc493bf12f91f072aa3a30ddde
4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d
8b5fc3c8421d5696522231c3490a0853709897f5c9b645bd5e84398cf84089aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b6f4d1-af89-4aaf-acec-609bb76366de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12071
x-amzn-requestid: 02bb2a93-c0aa-4d43-aa99-759a0418bc20
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfGHYoAMF8BQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-2258162e1901b5cd6e7144d3;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: n7Xm67vDO9_X3Xoe2HXJs4Y9dLE6cZgx16lmW7c3KHv-sOg7rZo9wg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:47:23 GMT
age: 85639
etag: "4cd24b81bd6ade3ab5ff90fc88b0f7497e93391d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6185 bytes)
Hash
dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ye0ADORg1hFVLxcNVj-qS60tlfguOEtyTx_XFU4ooJOcDHqNsqV3kw==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:14 GMT
age: 85048
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/status.php

40.67.201.30

500 Internal Server Error

0 B

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/status.php
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /id/partials/status.php HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 500 Internal Server Error
Date: Sat, 25 Mar 2023 21:34:43 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/status.php

40.67.201.30

500 Internal Server Error

0 B

URL HTTP/1.1
cert.login.dokument.info.40-67-201-30.cprapid.com/id/partials/status.php
IP
40.67.201.30:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /id/partials/status.php HTTP/1.1
Host: cert.login.dokument.info.40-67-201-30.cprapid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/id/dklogin.php
Cookie: PHPSESSID=de11baa3051102cf65e516d9889a1e01

HTTP/1.1 500 Internal Server Error
Date: Sat, 25 Mar 2023 21:34:46 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

www.mitid.dk/assets/fonts/IBMPlexSans.woff

95.100.107.87

200 OK

0 B

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans.woff
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/fonts/IBMPlexSans.woff HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff
Content-Length: 77532
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "12edc-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14400
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

www.mitid.dk/assets/fonts/IBMPlexSans-SemiBold.woff

95.100.107.87

200 OK

0 B

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans-SemiBold.woff
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/fonts/IBMPlexSans-SemiBold.woff HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff
Content-Length: 82228
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "14134-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14400
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

www.mitid.dk/assets/fonts/IBMPlexSans-Bold.woff

95.100.107.87

200 OK

0 B

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans-Bold.woff
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/fonts/IBMPlexSans-Bold.woff HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff
Content-Length: 77160
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "12d68-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14342
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

www.mitid.dk/assets/fonts/IBMPlexSans-Medium.woff

95.100.107.87

200 OK

0 B

URL HTTP/1.1
www.mitid.dk/assets/fonts/IBMPlexSans-Medium.woff
IP
95.100.107.87:0
ASN
#20940 Akamai International B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /assets/fonts/IBMPlexSans-Medium.woff HTTP/1.1
Host: www.mitid.dk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cert.login.dokument.info.40-67-201-30.cprapid.com
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff
Content-Length: 81900
Last-Modified: Tue, 21 Feb 2023 13:35:51 GMT
ETag: "13fec-5f535dbaa5bc0"
Accept-Ranges: bytes
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: Origin
Cache-Control: public, max-age=14341
Date: Sat, 25 Mar 2023 21:34:40 GMT
Connection: keep-alive

widgets.amung.us/small.js

104.22.75.171

200 OK

0 B

URL HTTP/2
widgets.amung.us/small.js
IP
104.22.75.171:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /small.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 25 Mar 2023 21:34:40 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:40 GMT
etag: W/"63c0412c-2170"
expires: Sun, 26 Mar 2023 21:05:42 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 1738
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ada47803f812d65-ARN
X-Firefox-Spdy: h2

t.dtscout.com/i/?l=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&j=

141.101.120.10

200 OK

0 B

URL HTTP/2
t.dtscout.com/i/?l=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&j=
IP
141.101.120.10:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i/?l=http%3A%2F%2Fcert.login.dokument.info.40-67-201-30.cprapid.com%2Fid%2Fdklogin.php&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cert.login.dokument.info.40-67-201-30.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 25 Mar 2023 21:34:40 GMT
content-type: application/javascript
x-s: ger1
set-cookie: m=1; Domain=dtscout.com; Expires=Sat, 25-Mar-2023 22:58:00 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sun, 26-Mar-2023 01:34:40 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1679780080; Domain=dtscout.com; Expires=Mon, 03-Jul-2023 21:34:40 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.573
expires: Sat, 25 Mar 2023 21:34:39 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6dJlZuFkCcmVl4bPmwWY3wgdVvLXoMyHPH%2FeN4WRZv2%2F%2FoX%2BLB48i0Wd1wUWRL2yc2MVKwyua1xrf8Ch2QQzyLMiHP4DVCQFcVAnMdwvnk0bN2iXh1VCnGK2GRLi2Rs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ada47810ace0a23-ARN
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML