r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12705
Expires: Sat, 03 Dec 2022 22:02:33 GMT
Date: Sat, 03 Dec 2022 18:30:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6524
Cache-Control: max-age=150548
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:48 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 12:19:56 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7466
Expires: Sat, 03 Dec 2022 20:35:14 GMT
Date: Sat, 03 Dec 2022 18:30:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 18:20:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 648
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: d2DFy1j1MsQbZkbQAvuZQWdQILEOXlG2ByRPhjUe+znjf6ycrQ8FcmbkoQrtfznpuI9EN70xlRY=
x-amz-request-id: YYXX0N0PVEKNS3CC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 17:46:39 GMT
age: 2649
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
support.djek.nl/FirstTech/
178.18.143.201200 OK 14 kB URL HTTP/1.1 support.djek.nl/FirstTech/
IP 178.18.143.201:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (20931), with CRLF line terminators
Hash d5fa0c7aa8d3f5d94d46d34a0746fb4a
5308f8fe9dcfdc7c9871b15a6b5e4684428bb171
e8a9c83bca910cd8d608c2339b50b8a3f3dcf324e3e784ad04fdcd41ba98ab02
Analyzer Verdict Alert openphish First Tech Credit Union
fortinet Phishing
GET /FirstTech/ HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:48 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14029
Keep-Alive: timeout=2, max=100
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 18:30:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/nr-spa-1118.js
178.18.143.201200 OK 13 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/nr-spa-1118.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (32015), with CRLF line terminators
Hash e5008bbe52cb7c3dbc97bea87bb26481
270454327e7f27390dec5cdf25d4c48ffc4d95fb
eaa22940cab13dccf9b600f059187e0013b63f1eb41f64e618ac883aca5196c2
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/nr-spa-1118.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "853f-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12948
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/aec7706684
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/aec7706684
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/aec7706684 HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/css.css
178.18.143.201200 OK 666 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/css.css
IP 178.18.143.201:0
File type ASCII text, with CRLF line terminators
Hash 5239690468dd765cc2efdaf8bb5e9591
74def02ce0680cd1596d10ee6fd9b6473dc23f22
e6ccd5dc75dbe45bb93ac542275e68f674b0725bafab48882c9855817e989cfe
GET /FirstTech/Connexus%20Credit%20Union_files/css.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1b26-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 666
Keep-Alive: timeout=2, max=100
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/yui-reset.css
178.18.143.201200 OK 442 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/yui-reset.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (746), with CRLF line terminators
Hash 8aef766dca9579bc37ec279321c88d9e
7f493dcb8b752edadf5832ecfef8614e70e47e9f
73bb19387863edd8a65876e39b94cda46abd5cfcc86d192a1825d74f3fbdb6ff
GET /FirstTech/Connexus%20Credit%20Union_files/yui-reset.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "31b-5eedcf6a2ee2f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 442
Keep-Alive: timeout=2, max=100
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/jquery.css
178.18.143.201200 OK 829 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/jquery.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (2651), with CRLF line terminators
Hash ba4026b9c7aa09cafab00930363543d9
15931af021a1243617d1778c801520740ef16044
4f1737ae79b30e0af2f13d1ba9cdaca598505ab48ba1534049e0ff1947eb35a7
GET /FirstTech/Connexus%20Credit%20Union_files/jquery.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "a99-5eedcf50e21e4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 829
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/analytics.js
178.18.143.201200 OK 18 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/analytics.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (1656), with CRLF line terminators
Hash 13e24c8986b319e38b76f0db76361942
1aadc448e8fa459314a7537061845cbdb8532da2
33d3fae81b67dc4661f5ab5ca937b49b2abf6b47c8f7ce2cf96f7b2f3a57557b
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/analytics.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "acac-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 17620
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/ext-all.css
178.18.143.201200 OK 18 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/ext-all.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (65409), with CRLF line terminators
Hash 773063a1f62da989055ff1eacab48fc0
703eefbd0eea036489804fd2e70d2b3ee40720a0
2504c66b90f765e679e042ed8d44a9b69431cd786d4972492078736f125ea0a8
GET /FirstTech/Connexus%20Credit%20Union_files/ext-all.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1b963-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 17529
Keep-Alive: timeout=2, max=100
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/grid.css
178.18.143.201200 OK 1.5 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/grid.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (5600), with CRLF line terminators
Hash e717667738168d007eaeaa666a4b538a
c138f013a95976dd3e0ee7a5eaf3a6386f1e431f
a9b2fc74af81a1de406d8b55d168e1b0846af1ac225e731b9604030ea9438ced
GET /FirstTech/Connexus%20Credit%20Union_files/grid.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "160c-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1510
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/sidebar.css
178.18.143.201200 OK 847 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/sidebar.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (2691), with CRLF line terminators
Hash 39b5d696474f2518a797ec95445725e5
1f72c446a978251cfd1e739dec1915b8c9001c9b
b74914541263fc3ea47b76ba913a61c69b69b88e1ab710eeb16b40ef3f0344d6
GET /FirstTech/Connexus%20Credit%20Union_files/sidebar.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "ab2-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 847
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/pretty-checkboxes.css
178.18.143.201200 OK 361 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/pretty-checkboxes.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (743), with CRLF line terminators
Hash e73015807e4d4c679f8e15a2908ef1b6
3e5f6850497e9191ff4ec4370c7c393f87847306
071b116de4c58fd4012952a134f145d5aa2835801b8c43fd5d7354b968f71cfc
GET /FirstTech/Connexus%20Credit%20Union_files/pretty-checkboxes.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "320-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 361
Keep-Alive: timeout=2, max=100
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/iris.css
178.18.143.201200 OK 346 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/iris.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (537), with CRLF line terminators
Hash 4964dd45c5dcf3d2356aea1c469eee17
fcae1099d61898471a06505b54815e939e79a6b8
0dbed80cc950db35092e930a2548754253b58cdb1199d3a4eac0034122e68c34
GET /FirstTech/Connexus%20Credit%20Union_files/iris.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "252-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 346
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/base.css
178.18.143.201200 OK 34 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/base.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (32028), with CRLF line terminators
Hash 57eefd22d8611210e6822456edead76e
b120f6356fbba810add5c0ec724bd7ed6f82efb4
50fd35b6cfb220365497e6ffd85ec140a37887db4bbfa065193e7fce0574e3f3
GET /FirstTech/Connexus%20Credit%20Union_files/base.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "35a86-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34158
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/iris_002.css
178.18.143.201200 OK 15 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/iris_002.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0e9a2f3b49c7977884785abe22b27a51
1d46575e724b9136786b7dd3e1ee5c82ebdd058a
b854a8136de7368c96732afb951d7c50bfb417ae356bf61ffe81200c94074816
GET /FirstTech/Connexus%20Credit%20Union_files/iris_002.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "17a15-5eedcf2f0ea9c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14608
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/browser-unsupported.css
178.18.143.201200 OK 2.1 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/browser-unsupported.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (10371), with CRLF line terminators
Hash df2bcdea1a384a976376e3b8f333f1d8
b6d7c8fe06f1c06537a32f9a2305264bfc8d1dfb
c32fe857599c463f0588e1e69bcd1b815b2749511c93e95fe538f071850cc013
GET /FirstTech/Connexus%20Credit%20Union_files/browser-unsupported.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "28be-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2056
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Authentication.css
178.18.143.201200 OK 3.2 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Authentication.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (20220), with CRLF line terminators
Hash 8f411d7fb42255ac382a1c17ae1c7d9a
4f2cab3f40491147fbc8bf031cdcaf3cc9c2c42e
9285b924759ce74bcf7479f55b5a1da03cc0aa6989145177f65dd3734ad7ff1d
GET /FirstTech/Connexus%20Credit%20Union_files/Authentication.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "4f32-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3237
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/theme.css
178.18.143.201200 OK 4.7 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/theme.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (27196), with CRLF line terminators
Hash d23511482962e3f497425b25069ae198
6f0e6690824593c398664b7eafa476d43e53676f
ceefa8cf263a1a899c9755d5f259c7568f3fb82b8203413b72b9bb48eb3a9f9e
GET /FirstTech/Connexus%20Credit%20Union_files/theme.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "6a71-5eedcf6a2de8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4655
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/fi.css
178.18.143.201200 OK 8.0 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/fi.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (40820), with CRLF line terminators
Hash c978cbf8dce47cf69da9740b4de47a6d
7d4b28657a915821a647446ba0768b1dfc1306b2
40e3c31b2b93181344f712489d780b1172257323575417ac7f83246d895d7d52
GET /FirstTech/Connexus%20Credit%20Union_files/fi.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "9fa6-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7977
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/localization-ts.js
178.18.143.201200 OK 441 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/localization-ts.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (741), with CRLF line terminators
Hash 1d8ae1e60c45ae774ff49222e2280292
9e4a2b2ce601adbb119c4d947fc8f83eec0346cb
55546107623083cdabfff5d70ce6f4f8b9511d5040ba96db568232dd53e28cf6
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/localization-ts.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "318-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 441
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.css
178.18.143.201200 OK 99 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.css
IP 178.18.143.201:0
File type ASCII text, with no line terminators
Hash fc23a0c679b13b3451236e284f4330b9
645e90c3d5cf7cfc0e23afd02c63eabf987715f9
63e578f6d6e2225151cd126931d55fa822949e94f8888cf81912fb7e492b0a9c
GET /FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "68-5eedcf6a2ee2f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 99
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/jquery-ui.css
178.18.143.201200 OK 7.6 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/jquery-ui.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (29352), with CRLF line terminators
Hash c5537111f351964e36cb0e1ecff37e73
3a91b251a035a69ce25d843961b2def1ffbe3982
b4ed5f8b5895332d87d5f9ea14bcf901f97174b6c25f9b36701ac4b909283758
GET /FirstTech/Connexus%20Credit%20Union_files/jquery-ui.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "79bb-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7578
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: text/css
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/popper.js
178.18.143.201200 OK 7.2 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/popper.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (20164), with CRLF line terminators
Hash f4286afad3eb7fa8ef3b696d59c6ccc8
07e1b12e92e7defed8b2b042b87cf525fdc5fe92
5605bf68bbd9a14a553af5301c790f4214e0573307984ec60c885b8bd6bd6802
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/popper.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "4f76-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7245
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/iris.js
178.18.143.201200 OK 30 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/iris.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6805ed1ce79138651746b971b9ed46f3
c10e8b6cc09beb6bcadddbda23d1f0e7383dd304
351b2f44257fa01dae2eb209c52e4c99589e3fa35056881a7e88c12d65075e7e
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/iris.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "24f5f-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 29571
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/polyfill.js
178.18.143.201200 OK 9.3 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/polyfill.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (27394), with CRLF line terminators
Hash 304dd489515edf884300bc342ed6564d
baf67714b0659f4108143d8dc25cea26d33c7c6a
a69ab2493bbe5ed27e87ac3d725de51f193aa27d99e6e7c071c8cdeca0422be7
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/polyfill.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "7018-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9305
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/103929_awfcPP4TLsBKE7bbi7Z8kSgcccc
178.18.143.201200 OK 19 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/103929_awfcPP4TLsBKE7bbi7Z8kSgcccc
IP 178.18.143.201:0
File type Unicode text, UTF-8 text, with very long lines (65520), with no line terminators
Hash b5b117ac20a0b74e963ec1068075bf55
d9987bbdc9d0b8a3395391fe8721c716a8657cc4
11de31b749fa45c7cfec60a0389afb0f5e32c6e03c3d14a93f1959b215268989
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/103929_awfcPP4TLsBKE7bbi7Z8kSgcccc HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1484b-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18628
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/vendor.js
178.18.143.201200 OK 38 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/vendor.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (51679), with CRLF line terminators
Hash a78ddb6258297b76b031801317858510
67e18a445b0942c83faf4226c655cded3b62835e
81cf6449f44e25e52ae672d1c8c721f6191f0210b407b96574fadc6cff69a326
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/vendor.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "22014-5eedcf6a2de8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 37570
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/knockout.js
178.18.143.201200 OK 32 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/knockout.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (635), with CRLF line terminators
Hash 1dd6153dbae8ab572ac40bda93da4c4b
d756da54f84706ae6a26ee212820d00f829e5d3d
8f6ffadacc1d28d8f2b142e89bd4d634d733d3fc11a9c3d85226c0e1dc5a495e
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/knockout.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1ad9e-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 31699
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/globals.js
178.18.143.201200 OK 18 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/globals.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (31981), with CRLF line terminators
Hash 332fa41359b46e6ffa3711713ff93aaa
8c5d76446730100f042572dacb74b0328fefb16f
4222bd8196cc75f5bd3473c90107874ec8e55c4583ebbff7ed0d127d7ed53c24
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/globals.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "10821-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18479
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/shared.js
178.18.143.201200 OK 1.2 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/shared.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (3158), with CRLF line terminators
Hash b6e9ac5124f68cf3e2cc279068598375
d8eed53a66e0abc47524a434065ce11ee3594a41
560dc085e32c5c73bae4ada283214386d88f52437872972402f337881812b53a
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/shared.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "c92-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1217
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/knockout_002.js
178.18.143.201200 OK 2.4 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/knockout_002.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (7656), with CRLF line terminators
Hash 9c120ee77f171ae8f9f983bdcf8e2df1
8f0812c8c5bbfa4bb0dc1c1be4896dce02ccc252
3a583bc35548c5df077ebd1a23a7dc670bb9121bee3df28d1570c7c93e762c01
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/knockout_002.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1e50-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2377
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/ext.js
178.18.143.201200 OK 221 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/ext.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (46750), with CRLF line terminators
Size 221 kB (220818 bytes)
Hash 17722212734e93835f84ee0b7cbd9ae0
7661ffc48e2c0d43deba26522b64780d4d329ff7
51b7826deae7b8644cb7d5e5658d66d448506b8ad0aa5100c152d54a81c52c61
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/ext.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "c5b8a-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/login.js
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/login.js
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/login.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/flashInterface.js
178.18.143.201200 OK 1.1 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/flashInterface.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (2644), with CRLF line terminators
Hash b3398c8c07f271b96f58dec704938ee8
4a9af51847c1898db40a1b317f24c88907ab91ca
6404060a72ac236ded79c97f585db8b6901e1d19eff522ab4c0afc00bbc33fd9
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/flashInterface.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "b22-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1097
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/plugindetect.js
178.18.143.201200 OK 10 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/plugindetect.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (30324), with CRLF line terminators
Hash 7de46fd61aca0acdde7e67ed02535ef8
1d7e1c42fc2d55fe89773446af440c3c2972f91f
8787e233b041cb8e1fdffa0a437eefb83a79bd9161c4d98daeef0960f7044a3c
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/plugindetect.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "7747-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10167
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/machineInfo.js
178.18.143.201200 OK 1.5 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/machineInfo.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (5113), with CRLF line terminators
Hash 06c03a56bd25ebb898fa3cebfe2b6eed
b37266f9b7bc93f4aa9360844fbb0c648eaf1b01
04d92f0418e5da2a6711c58beab6b7279171356251d2e76e766a7ed1adde61ba
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/machineInfo.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1596-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1535
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Authentication.js
178.18.143.201200 OK 2.1 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Authentication.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (6838), with CRLF line terminators
Hash eb435cbf8ebe3778f61fc27d97943108
5c67c39e44a5a3c4bdfce2cbb23d2924e97e7b77
97e010bc1821b885ba7b1444f11b855fdf442b47e4da681cf437c506a9ccd439
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/Authentication.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1b18-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2089
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Helpers.js
178.18.143.201200 OK 502 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Helpers.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (806), with CRLF line terminators
Hash d0b318c493c5553ed98069144f05166b
7437532495f1c91375f79e3801e6598719d6e294
480d4a62116b53be02bb02b7fea75e07886be6c97ca04e58f5f56c9055ab1d64
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/Helpers.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "37a-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 502
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.js
178.18.143.201200 OK 2.2 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (2344), with CRLF line terminators
Hash d4bec1f696865fe83d4a0829f39f5527
1a892e1d317b60d5fdac0385e102465d7f283ee2
1c23c3d4fd433d0041abdf33a5e777fd567d212c297dbd51c10371ebc581e187
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "18b9-5eedcf6a2ee2f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2172
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFvhP2fxyigUtkgcccc
178.18.143.201200 OK 5.0 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFvhP2fxyigUtkgcccc
IP 178.18.143.201:0
File type ASCII text, with very long lines (20326), with no line terminators
Hash 5af05714fbc0f2f9f22e47ba35ee7daa
475f5981424f63a98f49add981c303edfd8cdf04
b669733a73a2c58a0a5a2d6eba3652aeb411ea15d60f0810705bff757d8f2c57
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFvhP2fxyigUtkgcccc HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "4f66-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4965
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/snippets.js
178.18.143.201200 OK 221 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/snippets.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (367), with no line terminators
Hash b5b47b204e93c8971937ba2ba02026b2
18f3efd3e63c8534af16cb5c71543ae94ddc7ce8
092dc89d63570e59cc5904471f90c5f83cae282ac6e6ac39098d9671512d494c
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/snippets.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "16f-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 221
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/MutualAuth.js
178.18.143.201200 OK 1.5 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/MutualAuth.js
IP 178.18.143.201:0
File type ASCII text, with very long lines (3853), with CRLF line terminators
Hash 1d24bcc2c78a95a64dbc824ef41dcdc5
a3badf737315c26e553d9d60248b352be9d5bffe
3fcd523fc78f6f2c055d9e70df59788b2af95b4cb679e33afccca061a5e7bc2d
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/MutualAuth.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "f3b-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1457
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/app-store.webp
178.18.143.201200 OK 1.1 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/app-store.webp
IP 178.18.143.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 88ee13ae12959c2a4ac8f073d4eaeccc
bd550bacbea4ebc7e280d0e92ab14909bc6a8478
b3a36a3665c80d7325ba725bbc5e3c05f8768278ecd0a53494f81bdfda5aa637
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/app-store.webp HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "440-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1111
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive
Content-Type: image/webp
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Logo.png
178.18.143.201200 OK 20 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Logo.png
IP 178.18.143.201:0
File type PNG image data, 400 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 66dca570d8bfad1df77043a8cb37b022
5c9446e2658bd012bdcda954a8551c65cbf3cb25
e3760298dfe86fec826e4ee7df5d7508c64e5c7d37034ec2f571cd3ea6f63daa
GET /FirstTech/Connexus%20Credit%20Union_files/Logo.png HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:48 GMT
ETag: "4c8d-5eedcf8417e90"
Accept-Ranges: bytes
Content-Length: 19597
Keep-Alive: timeout=2, max=92
Connection: Keep-Alive
Content-Type: image/png
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/play-store.webp
178.18.143.201200 OK 1.7 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/play-store.webp
IP 178.18.143.201:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5d2fb2a8ffe3e09698b61ffa1fee8ea6
67db26698b5cb0970eefeb5a089d6eac3f4aae02
2fd9168c052a3a6e73e45d604f99b9a217ec23858f384bbf05939a686246d6d7
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/play-store.webp HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "66e-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1669
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive
Content-Type: image/webp
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 18:08:58 GMT
cache-control: public,max-age=3600
age: 1311
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
support.djek.nl/stylesheets/fonts/Alkami-font.woff?636833168113306165
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/stylesheets/fonts/Alkami-font.woff?636833168113306165
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stylesheets/fonts/Alkami-font.woff?636833168113306165 HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/print.css
178.18.143.201200 OK 1.9 kB URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/print.css
IP 178.18.143.201:0
File type ASCII text, with very long lines (7734), with CRLF line terminators
Hash 78d425f1a1283f365b2bb6ce050f6699
61e256149640787b13f7d009a08466e7397ce763
6ae244b7252b218f765150b9d88df09f4b6e26fb5d2f220bfcbb6b10d94794f9
GET /FirstTech/Connexus%20Credit%20Union_files/print.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1e63-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1872
Keep-Alive: timeout=2, max=92
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6513
Cache-Control: max-age=145475
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:49 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:55:24 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
support.djek.nl/stylesheets/fonts/AlkamiLogos.woff?636833168113336193
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/stylesheets/fonts/AlkamiLogos.woff?636833168113336193
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stylesheets/fonts/AlkamiLogos.woff?636833168113336193 HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Hash 037d830416495def72b7881024c14b7b
619389190b3cafafb5db94113990350acc8a0278
1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 14:40:10 GMT
expires: Sun, 03 Dec 2023 14:40:10 GMT
cache-control: public, max-age=31536000
age: 13839
last-modified: Mon, 16 Oct 2017 17:33:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
support.djek.nl/stylesheets/fonts/Alkami-font.ttf?636833168113296155
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/stylesheets/fonts/Alkami-font.ttf?636833168113296155
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stylesheets/fonts/Alkami-font.ttf?636833168113296155 HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 160966
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15440, version 1.0\012- data
Hash 55536c8e9e9a532651e3cf374f290ea3
ff3a9b8ae317896cbbcbadfbe615d671bd1d32a2
eca8ffa764a66cd084800e2e71c4176ef089ebd805515664a6cb8d4fb3b598bf
GET /s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:43 GMT
expires: Wed, 29 Nov 2023 15:42:43 GMT
cache-control: public, max-age=31536000
age: 355686
last-modified: Mon, 16 Oct 2017 17:32:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/login.js
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/login.js
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/login.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
support.djek.nl/stylesheets/fonts/AlkamiLogos.ttf?636833168113326186
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/stylesheets/fonts/AlkamiLogos.ttf?636833168113326186
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stylesheets/fonts/AlkamiLogos.ttf?636833168113326186 HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/base.css
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
35.164.183.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.183.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jhjF3xY9PBFy9QrwLkw65A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZTavJpzlQo86NdcPFlJkdOWPHts=
support.djek.nl/API/Locales
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/API/Locales
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /API/Locales HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-NewRelic-ID: VgABWFdUGwACUFlWAwQ=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
support.djek.nl/Modules/YodleeFastLink/YodleeFastLink.css
178.18.143.201500 Internal Server Error 0 B URL HTTP/1.1 support.djek.nl/Modules/YodleeFastLink/YodleeFastLink.css
IP 178.18.143.201:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Modules/YodleeFastLink/YodleeFastLink.css HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1
HTTP/1.1 500 Internal Server Error
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 16:41:08 GMT
expires: Sat, 03 Dec 2022 18:41:08 GMT
cache-control: public, max-age=7200
age: 6582
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=j73&a=1055288261&t=pageview&_s=1&dl=http%3A%2F%2Fsupport.djek.nl%2FFirstTech%2F&ul=en-us&de=UTF-8&dt=First%20Tech%20Federal%20Credit%20Union&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEAB~&jid=897546493&gjid=1508623328&cid=1852662466.1670092247&tid=UA-71023015-1&_gid=430027723.1670092247&_r=1&z=1853878190
142.250.74.110302 Found 418 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=j73&a=1055288261&t=pageview&_s=1&dl=http%3A%2F%2Fsupport.djek.nl%2FFirstTech%2F&ul=en-us&de=UTF-8&dt=First%20Tech%20Federal%20Credit%20Union&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEAB~&jid=897546493&gjid=1508623328&cid=1852662466.1670092247&tid=UA-71023015-1&_gid=430027723.1670092247&_r=1&z=1853878190
IP 142.250.74.110:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 682d03c82b3c89cfc9894a65a5b87c65
104cc8b50e8550fc4bbb269de5596a6bce1dd6ca
4f612f3bc6eb3b2518641db0a414185152dbb8bca26e4545a87673d133cfdf07
GET /r/collect?v=1&_v=j73&a=1055288261&t=pageview&_s=1&dl=http%3A%2F%2Fsupport.djek.nl%2FFirstTech%2F&ul=en-us&de=UTF-8&dt=First%20Tech%20Federal%20Credit%20Union&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEAB~&jid=897546493&gjid=1508623328&cid=1852662466.1670092247&tid=UA-71023015-1&_gid=430027723.1670092247&_r=1&z=1853878190 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_gid=430027723.1670092247&gjid=1508623328&_v=j73&z=1853878190
access-control-allow-origin: *
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f64bb4f404fb7520d6db96ae1caa2507
4cfda08b346c62d0ef554670021fcacab149948b
2a1cdb6f8bf01a799d1c31c01e18f2457e89a5075e991f8df383783ca9615cfd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6508
Cache-Control: max-age=154861
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638b365b-1d7"
Expires: Mon, 05 Dec 2022 13:31:51 GMT
Last-Modified: Sat, 03 Dec 2022 11:43:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f64bb4f404fb7520d6db96ae1caa2507
4cfda08b346c62d0ef554670021fcacab149948b
2a1cdb6f8bf01a799d1c31c01e18f2457e89a5075e991f8df383783ca9615cfd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6508
Cache-Control: max-age=154861
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638b365b-1d7"
Expires: Mon, 05 Dec 2022 13:31:51 GMT
Last-Modified: Sat, 03 Dec 2022 11:43:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_gid=430027723.1670092247&gjid=1508623328&_v=j73&z=1853878190
108.177.14.157302 Found 366 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_gid=430027723.1670092247&gjid=1508623328&_v=j73&z=1853878190
IP 108.177.14.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash d180df1d36a48d723391f6a95ca463b1
bfb32bb0db93959b055e753b77975d31de2d4e92
807fb03495c6f2bd878a75d5ac731d7a6e3c897741683e9670c4c9c35b2a8d83
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_gid=430027723.1670092247&gjid=1508623328&_v=j73&z=1853878190 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://support.djek.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 366
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1377c2956f6d4d989e6fafbe01600b49
7a550dd67e42a8f1ba1468646af02691d0580345
4e0206cd8e1112cdefa7f974876461a968bbcbbf016b1b1c2e3af77346507886
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 08ca0238100c906a665f21b1caa97f47
3f605891faeafb51a36cecd25d331bcc450d34e9
35dac74d71c723f7a8e7585174fad51a0115e4a294a2c0d80b63026e25825618
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190
216.58.211.4302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190
IP 216.58.211.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://support.djek.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190&slf_rd=1&random=1936224488
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 1f3a4f3edea56419c58836a0c80d5cea
1558a7ad0acc0c09cdf39ec92030f7ee5736e595
70aeda0cb136ac1add86931a338558b9f302576cd65537575d232fda623fe2f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190&slf_rd=1&random=1936224488
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190&slf_rd=1&random=1936224488
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190&slf_rd=1&random=1936224488 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://support.djek.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d177680f261fa0b5bf3d5ae3ed69af85
96cdc11262db0a9531fe0cd00e908f3e824c89b3
08eac8282cf4566d382816edac93db8581b65dc2898fc7ea80d7424224ed29ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a83a1999fd2f50f0da7ca8ece2996c6e
0fc049ab3eecad677fbacaec85a5b83b098df9ae
0d5f7ba7d93b77b5890abf342cad5f0ff60486dd07bb6cdbcc570988f597f324
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=96497
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638a6bcb-1d7"
Expires: Sun, 04 Dec 2022 21:19:07 GMT
Last-Modified: Fri, 02 Dec 2022 21:19:07 GMT
Server: nginx
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a83a1999fd2f50f0da7ca8ece2996c6e
0fc049ab3eecad677fbacaec85a5b83b098df9ae
0d5f7ba7d93b77b5890abf342cad5f0ff60486dd07bb6cdbcc570988f597f324
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=96497
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638a6bcb-1d7"
Expires: Sun, 04 Dec 2022 21:19:07 GMT
Last-Modified: Fri, 02 Dec 2022 21:19:07 GMT
Server: nginx
Content-Length: 471
js-agent.newrelic.com/nr-spa-1118.min.js
151.101.130.137200 OK 13 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1118.min.js
IP 151.101.130.137:0
File type ASCII text, with very long lines (32015)
Hash 8652588de7907a2ff449646421e5e5c1
593149229a462cd897d39da89552428d14cdaa7c
9169cade724eb2c4f34ae87c31fcd35529c2861d089fd659d653fd46d2dcd893
GET /nr-spa-1118.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4DwFcnOgMis86rhhe7f7AoG/5omHUqKbvJI1UGQ2X1vKTVJZeIw+R+DnJ7Anap5xLa1oYMt2unw=
x-amz-request-id: 2QM0E5SWXB5M5NJR
last-modified: Wed, 02 Jan 2019 18:42:31 GMT
etag: "7e24c95b9a35bca45860d13c1ef0a95b"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Dec 2022 18:30:50 GMT
via: 1.1 varnish
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 35
x-timer: S1670092251.616976,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 12943
X-Firefox-Spdy: h2
bam.nr-data.net/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2130&ref=http://support.djek.nl/FirstTech/&ap=27&be=774&fe=2046&dc=1582&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1670092246396,%22n%22:0,%22f%22:-6,%22dn%22:-6,%22dne%22:349,%22c%22:349,%22ce%22:380,%22rq%22:381,%22rp%22:421,%22rpe%22:422,%22dl%22:509,%22di%22:1579,%22ds%22:1581,%22de%22:1625,%22dc%22:2045,%22l%22:2045,%22le%22:2047%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
162.247.241.14200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2130&ref=http://support.djek.nl/FirstTech/&ap=27&be=774&fe=2046&dc=1582&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1670092246396,%22n%22:0,%22f%22:-6,%22dn%22:-6,%22dne%22:349,%22c%22:349,%22ce%22:380,%22rq%22:381,%22rp%22:421,%22rpe%22:422,%22dl%22:509,%22di%22:1579,%22ds%22:1581,%22de%22:1625,%22dc%22:2045,%22l%22:2045,%22le%22:2047%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 814f8120cdf5a972bdb0fd5521a92a5d
47f7b3cd340d1fe91766ff27602e319a79bcd14c
5f520e553ae6a634e84b7c8c8d36908d2efa441d716834fd98c012c402b1c3c8
GET /1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2130&ref=http://support.djek.nl/FirstTech/&ap=27&be=774&fe=2046&dc=1582&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1670092246396,%22n%22:0,%22f%22:-6,%22dn%22:-6,%22dne%22:349,%22c%22:349,%22ce%22:380,%22rq%22:381,%22rp%22:421,%22rpe%22:422,%22dl%22:509,%22di%22:1579,%22ds%22:1581,%22de%22:1625,%22dc%22:2045,%22l%22:2045,%22le%22:2047%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:51 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 773e6036980ab4f3-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=60c850ca4178c779; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
onlinebanking.connexuscu.org/Orbital/Connexus/favicons/favicon-16x16.png
104.17.43.19200 OK 284 B URL HTTP/2 onlinebanking.connexuscu.org/Orbital/Connexus/favicons/favicon-16x16.png
IP 104.17.43.19:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 5d15480a42008adfc6a2210aa3c0f34e
a1bb91beaef073f57551849fbd5414b3c4a8bfe1
44922a1bb754a26cf842a1031e8f0d3f2141564f1bfc444fe5cc433fa0a81ee4
GET /Orbital/Connexus/favicons/favicon-16x16.png HTTP/1.1
Host: onlinebanking.connexuscu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 18:30:51 GMT
content-type: image/png
content-length: 284
last-modified: Mon, 24 Oct 2022 06:12:50 GMT
etag: "c641a56fe7d81:0"
x-svr: WEB1618162
expires: Sat, 03 Dec 2022 18:40:51 GMT
cache-control: max-age=600
cf-cache-status: MISS
accept-ranges: bytes
cf-request-id: 157ada76080000b4eb17801000000001
set-cookie: __cf_bm=GV8d655At8Qm.lXvX2RTiGied3KOtHD3rpsZBmFwtFw-1670092251-0-AUr4BqnsC3sy8fW27wfA+8IYf5WPNW1mFWWWdJr1nSPFXaOfNRj3OXFqeIDYbtOYgum9kzWq51snrEcWvpGpVtc=; path=/; expires=Sat, 03-Dec-22 19:00:51 GMT; domain=.connexuscu.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 773e60367c35b4eb-OSL
X-Firefox-Spdy: h2
onlinebanking.connexuscu.org/Orbital/Connexus/favicons/android-chrome-192x192.png
104.17.43.19200 OK 3.7 kB URL HTTP/2 onlinebanking.connexuscu.org/Orbital/Connexus/favicons/android-chrome-192x192.png
IP 104.17.43.19:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash c8966b3355c331595e3b612f18b916ca
1cd1676825c2fc11707a40262e4db5489ff2ae65
8c435616ce0b4a6aa7225924e6fe545125fad916a2c1bc44750dac234a2f7e57
GET /Orbital/Connexus/favicons/android-chrome-192x192.png HTTP/1.1
Host: onlinebanking.connexuscu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 18:30:51 GMT
content-type: image/webp
content-length: 3720
cache-control: max-age=600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=4253
content-disposition: inline; filename="android-chrome-192x192.webp"
etag: "5f7fac6fe7d81:0"
expires: Sat, 03 Dec 2022 18:40:51 GMT
last-modified: Mon, 24 Oct 2022 06:13:02 GMT
vary: Accept
x-svr: WEB1630129
cf-cache-status: MISS
accept-ranges: bytes
cf-request-id: 157ada75fd0000b4ebf3802000000001
set-cookie: __cf_bm=YUGuibbRrWOvFxj.n3pwYXqEdLE0l6vFe2cG3JZmN1Q-1670092251-0-ASmzAVXW9b+av4CZ6+afdk4X8zAFs9S+Dqx4TozPlxT/oukhsfEPYQJENiSvU49P1UF2/2GL2syiuH1i3wTNfKo=; path=/; expires=Sat, 03-Dec-22 19:00:51 GMT; domain=.connexuscu.org; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 773e60366c22b4eb-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 00:57:24 GMT
age: 63207
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bd85z5A6C0nxpDjeSEPp1NHJxXFO5sy1OgTLz7KpdWz61TNrfyQ47Q==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:53:20 GMT
age: 52651
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 74385
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V4Z3TZtTDMjnyxZx7VdJrKtZ-PbZkWnsQ0-1eFDem4TVyRGvk0dc7A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:39:57 GMT
age: 75054
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 48523
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -AurmlKwF0QgfsWBsV3ZN9ZyDhw1Zo82zUqrpkBbvbCfh0j7evV2Tg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 11:01:04 GMT
age: 26987
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bam.nr-data.net/resources/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2603&ref=http://support.djek.nl/FirstTech/&st=1670092246396
162.247.241.14200 OK 36 B URL HTTP/1.1 bam.nr-data.net/resources/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2603&ref=http://support.djek.nl/FirstTech/&st=1670092246396
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash 53a3ea626750648af4133f46cc53d647
80ac81969f48430e1d7b576043128eb1e31a00ee
d5b0605138f0e426edea67794474a27fc6b1519eb938376464051d26de63c39e
POST /resources/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2603&ref=http://support.djek.nl/FirstTech/&st=1670092246396 HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 7628
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:51 GMT
Content-Type: text/plain
Content-Length: 36
Connection: keep-alive
CF-Ray: 773e60398c32b4f3-OSL
Access-Control-Allow-Origin: http://support.djek.nl
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
bam.nr-data.net/events/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2611&ref=http://support.djek.nl/FirstTech/
162.247.241.14200 OK 24 B URL HTTP/1.1 bam.nr-data.net/events/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2611&ref=http://support.djek.nl/FirstTech/
IP 162.247.241.14:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2611&ref=http://support.djek.nl/FirstTech/ HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 228
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:51 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 773e60399d180b3d-OSL
Access-Control-Allow-Origin: http://support.djek.nl
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare
support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/jquery_002.js
178.18.143.201200 OK 0 B URL HTTP/1.1 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/jquery_002.js
IP 178.18.143.201:0
Analyzer Verdict Alert fortinet Phishing
GET /FirstTech/Connexus%20Credit%20Union_files/jquery_002.js HTTP/1.1
Host: support.djek.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "37899-5eedcf50e21e4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript