Overview

URLsupport.djek.nl/FirstTech/
IP 178.18.143.201 (Netherlands)
ASN#25459 Dataplace B.V.
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-03 18:31:00 UTC
StatusLoading report..
IDS alerts0
Blocklist alert33
urlquery alerts No alerts detected
Tags None

Domain Summary (18)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
onlinebanking.connexuscu.org (2) 615600 2014-10-10 15:18:42 UTC 2017-12-29 13:13:23 UTC 104.17.43.19
ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
fonts.gstatic.com (3) 0 2014-09-09 00:40:21 UTC 2022-12-02 19:44:49 UTC 142.250.74.35 Domain (gstatic.com) ranked at: 540
www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-12-02 17:32:35 UTC 142.250.74.110
bam.nr-data.net (3) 630 2015-02-10 00:06:27 UTC 2022-05-19 12:27:58 UTC 162.247.241.14
r3.o.lencr.org (6) 344 No data No data 95.101.11.115
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-02 17:27:45 UTC 34.102.187.140
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-02 17:12:21 UTC 34.117.237.239
www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-12-02 17:18:59 UTC 142.250.74.163
status.geotrust.com (2) 3662 2018-06-23 22:14:44 UTC 2020-01-21 11:48:52 UTC 93.184.220.29
support.djek.nl (56) 0 2022-12-03 00:11:33 UTC 2022-12-03 15:34:48 UTC 178.18.143.201 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 35.164.183.116
www.google.com (1) 7 2016-03-22 03:56:07 UTC 2022-12-02 17:23:42 UTC 216.58.211.4
js-agent.newrelic.com (1) 378 2018-06-22 04:15:37 UTC 2020-05-01 11:44:04 UTC 151.101.130.137
ocsp.pki.goog (13) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 216.58.211.3
stats.g.doubleclick.net (1) 96 2013-06-10 20:21:11 UTC 2022-12-02 23:39:49 UTC 108.177.14.157
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-12-03 2 support.djek.nl/FirstTech/ First Tech Credit Union

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-03 2 support.djek.nl/FirstTech/ Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/nr-spa-1118.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/aec7706684 Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/analytics.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/localization-ts.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/popper.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/iris.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/polyfill.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/103929_awfcPP4TLs (...) Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/vendor.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/knockout.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/globals.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/shared.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/knockout_002.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/ext.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/login.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/flashInterface.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/plugindetect.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/machineInfo.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Authentication.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/Helpers.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFv (...) Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/snippets.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/MutualAuth.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/app-store.webp Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/play-store.webp Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/login.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff Phishing
2022-12-03 2 support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/jquery_002.js Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 2 reports on IP: 178.18.143.201
Date UQ / IDS / BL URL IP
2022-12-03 22:09:16 +0000 0 - 0 - 2 support.djek.nl/FirstTech/ 178.18.143.201
2022-12-03 18:31:00 +0000 0 - 0 - 33 support.djek.nl/FirstTech/ 178.18.143.201


Last 5 reports on ASN: Dataplace B.V.
Date UQ / IDS / BL URL IP
2023-01-29 07:57:42 +0000 0 - 2 - 3 whatelles.nl/css/Kt4CR4p1UGZGQnGY/ 77.243.232.225
2023-01-29 04:49:51 +0000 0 - 2 - 3 whatelles.nl/css/Kt4CR4p1UGZGQnGY/ 77.243.232.225
2023-01-29 01:48:49 +0000 0 - 0 - 12 weideaccountants.nl/ch/06082022COM/8a2fbfb19f (...) 83.172.188.25
2023-01-29 01:36:55 +0000 0 - 2 - 3 whatelles.nl/css/Kt4CR4p1UGZGQnGY/ 77.243.232.225
2023-01-29 01:09:51 +0000 0 - 0 - 2 ddp.vermaseren.nl/ 83.172.164.32


Last 2 reports on domain: djek.nl
Date UQ / IDS / BL URL IP
2022-12-03 22:09:16 +0000 0 - 0 - 2 support.djek.nl/FirstTech/ 178.18.143.201
2022-12-03 18:31:00 +0000 0 - 0 - 33 support.djek.nl/FirstTech/ 178.18.143.201


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2022-11-29 04:16:35 +0000 0 - 0 - 33 toyotahojinkai.or.jp/FirstTech/ 153.149.177.109
2022-11-29 01:29:55 +0000 0 - 0 - 34 toyotahojinkai.or.jp/FirstTech/ 153.149.177.109
2022-11-16 13:07:58 +0000 0 - 0 - 35 kumi93kumi.com/FirstTech/ 163.44.185.205
2022-11-16 04:07:31 +0000 0 - 0 - 36 kumi93kumi.com/FirstTech/ 163.44.185.205
2022-10-27 00:48:43 +0000 0 - 0 - 36 dulichsaigon.vn/FirstTech 103.15.51.22

JavaScript

Executed Scripts (32)

Executed Evals (3)
#1 JavaScript::Eval (size: 724) - SHA256: fe7c45e36bfbd856c21d23dda787edfdfa98e7934dee4222a3a70e0fba93b1e1
this.compiled = function(values) {
    return '<div class="x-form-item ' + (values['itemCls'] == undefined ? '' : values['itemCls']) + '" tabIndex="-1"><label for="' + (values['id'] == undefined ? '' : values['id']) + '" style="' + (values['labelStyle'] == undefined ? '' : values['labelStyle']) + '" class="x-form-item-label">' + (values['label'] == undefined ? '' : values['label']) + '' + (values['labelSeparator'] == undefined ? '' : values['labelSeparator']) + '</label><div class="x-form-element" id="x-form-el-' + (values['id'] == undefined ? '' : values['id']) + '" style="' + (values['elementStyle'] == undefined ? '' : values['elementStyle']) + '"></div><div class="' + (values['clearCls'] == undefined ? '' : values['clearCls']) + '"></div></div>';
};
#2 JavaScript::Eval (size: 18) - SHA256: 9682f5fddabce48500685b207634adb80fab0ee1b991c2c01cac34fa702983c0
var batch = 30803;
#3 JavaScript::Eval (size: 14) - SHA256: 0510de046e8325540849bad09f31eaaa3e9256fafd330c5d57327dc948812a33
/*@cc_on!@*/ !1

Executed Writes (0)


HTTP Transactions (106)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12705
Expires: Sat, 03 Dec 2022 22:02:33 GMT
Date: Sat, 03 Dec 2022 18:30:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6524
Cache-Control: max-age=150548
Date: Sat, 03 Dec 2022 18:30:48 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 12:19:56 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7466
Expires: Sat, 03 Dec 2022 20:35:14 GMT
Date: Sat, 03 Dec 2022 18:30:48 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 18:20:00 GMT
cache-control: public,max-age=3600
age: 648
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    30db107dcf4380cef05efea409c2e6a3
Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9
Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: d2DFy1j1MsQbZkbQAvuZQWdQILEOXlG2ByRPhjUe+znjf6ycrQ8FcmbkoQrtfznpuI9EN70xlRY=
x-amz-request-id: YYXX0N0PVEKNS3CC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 17:46:39 GMT
age: 2649
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /FirstTech/ HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:48 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14029
Keep-Alive: timeout=2, max=100


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (20931), with CRLF line terminators
Size:   14029
Md5:    d5fa0c7aa8d3f5d94d46d34a0746fb4a
Sha1:   5308f8fe9dcfdc7c9871b15a6b5e4684428bb171
Sha256: e8a9c83bca910cd8d608c2339b50b8a3f3dcf324e3e784ad04fdcd41ba98ab02

Alerts:
  Blocklists:
    - openphish: First Tech Credit Union
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 03 Dec 2022 18:30:48 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/nr-spa-1118.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "853f-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12948
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32015), with CRLF line terminators
Size:   12948
Md5:    e5008bbe52cb7c3dbc97bea87bb26481
Sha1:   270454327e7f27390dec5cdf25d4c48ffc4d95fb
Sha256: eaa22940cab13dccf9b600f059187e0013b63f1eb41f64e618ac883aca5196c2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/aec7706684 HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/css.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1b26-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 666
Keep-Alive: timeout=2, max=100


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   666
Md5:    5239690468dd765cc2efdaf8bb5e9591
Sha1:   74def02ce0680cd1596d10ee6fd9b6473dc23f22
Sha256: e6ccd5dc75dbe45bb93ac542275e68f674b0725bafab48882c9855817e989cfe
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/yui-reset.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "31b-5eedcf6a2ee2f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 442
Keep-Alive: timeout=2, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (746), with CRLF line terminators
Size:   442
Md5:    8aef766dca9579bc37ec279321c88d9e
Sha1:   7f493dcb8b752edadf5832ecfef8614e70e47e9f
Sha256: 73bb19387863edd8a65876e39b94cda46abd5cfcc86d192a1825d74f3fbdb6ff
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/jquery.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "a99-5eedcf50e21e4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 829
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2651), with CRLF line terminators
Size:   829
Md5:    ba4026b9c7aa09cafab00930363543d9
Sha1:   15931af021a1243617d1778c801520740ef16044
Sha256: 4f1737ae79b30e0af2f13d1ba9cdaca598505ab48ba1534049e0ff1947eb35a7
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/analytics.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "acac-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 17620
Keep-Alive: timeout=2, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (1656), with CRLF line terminators
Size:   17620
Md5:    13e24c8986b319e38b76f0db76361942
Sha1:   1aadc448e8fa459314a7537061845cbdb8532da2
Sha256: 33d3fae81b67dc4661f5ab5ca937b49b2abf6b47c8f7ce2cf96f7b2f3a57557b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/ext-all.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1b963-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 17529
Keep-Alive: timeout=2, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (65409), with CRLF line terminators
Size:   17529
Md5:    773063a1f62da989055ff1eacab48fc0
Sha1:   703eefbd0eea036489804fd2e70d2b3ee40720a0
Sha256: 2504c66b90f765e679e042ed8d44a9b69431cd786d4972492078736f125ea0a8
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/grid.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "160c-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1510
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (5600), with CRLF line terminators
Size:   1510
Md5:    e717667738168d007eaeaa666a4b538a
Sha1:   c138f013a95976dd3e0ee7a5eaf3a6386f1e431f
Sha256: a9b2fc74af81a1de406d8b55d168e1b0846af1ac225e731b9604030ea9438ced
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/sidebar.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "ab2-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 847
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2691), with CRLF line terminators
Size:   847
Md5:    39b5d696474f2518a797ec95445725e5
Sha1:   1f72c446a978251cfd1e739dec1915b8c9001c9b
Sha256: b74914541263fc3ea47b76ba913a61c69b69b88e1ab710eeb16b40ef3f0344d6
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/pretty-checkboxes.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "320-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 361
Keep-Alive: timeout=2, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (743), with CRLF line terminators
Size:   361
Md5:    e73015807e4d4c679f8e15a2908ef1b6
Sha1:   3e5f6850497e9191ff4ec4370c7c393f87847306
Sha256: 071b116de4c58fd4012952a134f145d5aa2835801b8c43fd5d7354b968f71cfc
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/iris.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "252-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 346
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (537), with CRLF line terminators
Size:   346
Md5:    4964dd45c5dcf3d2356aea1c469eee17
Sha1:   fcae1099d61898471a06505b54815e939e79a6b8
Sha256: 0dbed80cc950db35092e930a2548754253b58cdb1199d3a4eac0034122e68c34
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/base.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "35a86-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34158
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32028), with CRLF line terminators
Size:   34158
Md5:    57eefd22d8611210e6822456edead76e
Sha1:   b120f6356fbba810add5c0ec724bd7ed6f82efb4
Sha256: 50fd35b6cfb220365497e6ffd85ec140a37887db4bbfa065193e7fce0574e3f3
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/iris_002.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "17a15-5eedcf2f0ea9c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14608
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   14608
Md5:    0e9a2f3b49c7977884785abe22b27a51
Sha1:   1d46575e724b9136786b7dd3e1ee5c82ebdd058a
Sha256: b854a8136de7368c96732afb951d7c50bfb417ae356bf61ffe81200c94074816
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/browser-unsupported.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "28be-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2056
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (10371), with CRLF line terminators
Size:   2056
Md5:    df2bcdea1a384a976376e3b8f333f1d8
Sha1:   b6d7c8fe06f1c06537a32f9a2305264bfc8d1dfb
Sha256: c32fe857599c463f0588e1e69bcd1b815b2749511c93e95fe538f071850cc013
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/Authentication.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "4f32-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3237
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20220), with CRLF line terminators
Size:   3237
Md5:    8f411d7fb42255ac382a1c17ae1c7d9a
Sha1:   4f2cab3f40491147fbc8bf031cdcaf3cc9c2c42e
Sha256: 9285b924759ce74bcf7479f55b5a1da03cc0aa6989145177f65dd3734ad7ff1d
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/theme.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "6a71-5eedcf6a2de8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4655
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27196), with CRLF line terminators
Size:   4655
Md5:    d23511482962e3f497425b25069ae198
Sha1:   6f0e6690824593c398664b7eafa476d43e53676f
Sha256: ceefa8cf263a1a899c9755d5f259c7568f3fb82b8203413b72b9bb48eb3a9f9e
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/fi.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "9fa6-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7977
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (40820), with CRLF line terminators
Size:   7977
Md5:    c978cbf8dce47cf69da9740b4de47a6d
Sha1:   7d4b28657a915821a647446ba0768b1dfc1306b2
Sha256: 40e3c31b2b93181344f712489d780b1172257323575417ac7f83246d895d7d52
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/localization-ts.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "318-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 441
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (741), with CRLF line terminators
Size:   441
Md5:    1d8ae1e60c45ae774ff49222e2280292
Sha1:   9e4a2b2ce601adbb119c4d947fc8f83eec0346cb
Sha256: 55546107623083cdabfff5d70ce6f4f8b9511d5040ba96db568232dd53e28cf6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "68-5eedcf6a2ee2f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 99
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   99
Md5:    fc23a0c679b13b3451236e284f4330b9
Sha1:   645e90c3d5cf7cfc0e23afd02c63eabf987715f9
Sha256: 63e578f6d6e2225151cd126931d55fa822949e94f8888cf81912fb7e492b0a9c
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/jquery-ui.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "79bb-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7578
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (29352), with CRLF line terminators
Size:   7578
Md5:    c5537111f351964e36cb0e1ecff37e73
Sha1:   3a91b251a035a69ce25d843961b2def1ffbe3982
Sha256: b4ed5f8b5895332d87d5f9ea14bcf901f97174b6c25f9b36701ac4b909283758
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/popper.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "4f76-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7245
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20164), with CRLF line terminators
Size:   7245
Md5:    f4286afad3eb7fa8ef3b696d59c6ccc8
Sha1:   07e1b12e92e7defed8b2b042b87cf525fdc5fe92
Sha256: 5605bf68bbd9a14a553af5301c790f4214e0573307984ec60c885b8bd6bd6802

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/iris.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "24f5f-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 29571
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29571
Md5:    6805ed1ce79138651746b971b9ed46f3
Sha1:   c10e8b6cc09beb6bcadddbda23d1f0e7383dd304
Sha256: 351b2f44257fa01dae2eb209c52e4c99589e3fa35056881a7e88c12d65075e7e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/polyfill.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "7018-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9305
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (27394), with CRLF line terminators
Size:   9305
Md5:    304dd489515edf884300bc342ed6564d
Sha1:   baf67714b0659f4108143d8dc25cea26d33c7c6a
Sha256: a69ab2493bbe5ed27e87ac3d725de51f193aa27d99e6e7c071c8cdeca0422be7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/103929_awfcPP4TLsBKE7bbi7Z8kSgcccc HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1484b-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18628
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65520), with no line terminators
Size:   18628
Md5:    b5b117ac20a0b74e963ec1068075bf55
Sha1:   d9987bbdc9d0b8a3395391fe8721c716a8657cc4
Sha256: 11de31b749fa45c7cfec60a0389afb0f5e32c6e03c3d14a93f1959b215268989

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/vendor.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "22014-5eedcf6a2de8f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 37570
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (51679), with CRLF line terminators
Size:   37570
Md5:    a78ddb6258297b76b031801317858510
Sha1:   67e18a445b0942c83faf4226c655cded3b62835e
Sha256: 81cf6449f44e25e52ae672d1c8c721f6191f0210b407b96574fadc6cff69a326

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/knockout.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1ad9e-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 31699
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (635), with CRLF line terminators
Size:   31699
Md5:    1dd6153dbae8ab572ac40bda93da4c4b
Sha1:   d756da54f84706ae6a26ee212820d00f829e5d3d
Sha256: 8f6ffadacc1d28d8f2b142e89bd4d634d733d3fc11a9c3d85226c0e1dc5a495e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/globals.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "10821-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 18479
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (31981), with CRLF line terminators
Size:   18479
Md5:    332fa41359b46e6ffa3711713ff93aaa
Sha1:   8c5d76446730100f042572dacb74b0328fefb16f
Sha256: 4222bd8196cc75f5bd3473c90107874ec8e55c4583ebbff7ed0d127d7ed53c24

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/shared.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "c92-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1217
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3158), with CRLF line terminators
Size:   1217
Md5:    b6e9ac5124f68cf3e2cc279068598375
Sha1:   d8eed53a66e0abc47524a434065ce11ee3594a41
Sha256: 560dc085e32c5c73bae4ada283214386d88f52437872972402f337881812b53a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/knockout_002.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1e50-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2377
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (7656), with CRLF line terminators
Size:   2377
Md5:    9c120ee77f171ae8f9f983bdcf8e2df1
Sha1:   8f0812c8c5bbfa4bb0dc1c1be4896dce02ccc252
Sha256: 3a583bc35548c5df077ebd1a23a7dc670bb9121bee3df28d1570c7c93e762c01

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/ext.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "c5b8a-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text, with very long lines (46750), with CRLF line terminators
Size:   220818
Md5:    17722212734e93835f84ee0b7cbd9ae0
Sha1:   7661ffc48e2c0d43deba26522b64780d4d329ff7
Sha256: 51b7826deae7b8644cb7d5e5658d66d448506b8ad0aa5100c152d54a81c52c61

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/login.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/flashInterface.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "b22-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1097
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2644), with CRLF line terminators
Size:   1097
Md5:    b3398c8c07f271b96f58dec704938ee8
Sha1:   4a9af51847c1898db40a1b317f24c88907ab91ca
Sha256: 6404060a72ac236ded79c97f585db8b6901e1d19eff522ab4c0afc00bbc33fd9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/plugindetect.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "7747-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10167
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (30324), with CRLF line terminators
Size:   10167
Md5:    7de46fd61aca0acdde7e67ed02535ef8
Sha1:   1d7e1c42fc2d55fe89773446af440c3c2972f91f
Sha256: 8787e233b041cb8e1fdffa0a437eefb83a79bd9161c4d98daeef0960f7044a3c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/machineInfo.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1596-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1535
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (5113), with CRLF line terminators
Size:   1535
Md5:    06c03a56bd25ebb898fa3cebfe2b6eed
Sha1:   b37266f9b7bc93f4aa9360844fbb0c648eaf1b01
Sha256: 04d92f0418e5da2a6711c58beab6b7279171356251d2e76e766a7ed1adde61ba

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/Authentication.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "1b18-5eedcf2f0cb5b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2089
Keep-Alive: timeout=2, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (6838), with CRLF line terminators
Size:   2089
Md5:    eb435cbf8ebe3778f61fc27d97943108
Sha1:   5c67c39e44a5a3c4bdfce2cbb23d2924e97e7b77
Sha256: 97e010bc1821b885ba7b1444f11b855fdf442b47e4da681cf437c506a9ccd439

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/Helpers.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "37a-5eedcf2f0dafc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 502
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (806), with CRLF line terminators
Size:   502
Md5:    d0b318c493c5553ed98069144f05166b
Sha1:   7437532495f1c91375f79e3801e6598719d6e294
Sha256: 480d4a62116b53be02bb02b7fea75e07886be6c97ca04e58f5f56c9055ab1d64

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/YodleeFastLink.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:21 GMT
ETag: "18b9-5eedcf6a2ee2f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2172
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2344), with CRLF line terminators
Size:   2172
Md5:    d4bec1f696865fe83d4a0829f39f5527
Sha1:   1a892e1d317b60d5fdac0385e102465d7f283ee2
Sha256: 1c23c3d4fd433d0041abdf33a5e777fd567d212c297dbd51c10371ebc581e187

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/10051_2ByCxz7bbFvhP2fxyigUtkgcccc HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "4f66-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4965
Keep-Alive: timeout=2, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20326), with no line terminators
Size:   4965
Md5:    5af05714fbc0f2f9f22e47ba35ee7daa
Sha1:   475f5981424f63a98f49add981c303edfd8cdf04
Sha256: b669733a73a2c58a0a5a2d6eba3652aeb411ea15d60f0810705bff757d8f2c57

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/snippets.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "16f-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 221
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (367), with no line terminators
Size:   221
Md5:    b5b47b204e93c8971937ba2ba02026b2
Sha1:   18f3efd3e63c8534af16cb5c71543ae94ddc7ce8
Sha256: 092dc89d63570e59cc5904471f90c5f83cae282ac6e6ac39098d9671512d494c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/MutualAuth.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "f3b-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1457
Keep-Alive: timeout=2, max=100


--- Additional Info ---
Magic:  ASCII text, with very long lines (3853), with CRLF line terminators
Size:   1457
Md5:    1d24bcc2c78a95a64dbc824ef41dcdc5
Sha1:   a3badf737315c26e553d9d60248b352be9d5bffe
Sha256: 3fcd523fc78f6f2c055d9e70df59788b2af95b4cb679e33afccca061a5e7bc2d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/app-store.webp HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:19 GMT
ETag: "440-5eedcf2f0bbbb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1111
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   1111
Md5:    88ee13ae12959c2a4ac8f073d4eaeccc
Sha1:   bd550bacbea4ebc7e280d0e92ab14909bc6a8478
Sha256: b3a36a3665c80d7325ba725bbc5e3c05f8768278ecd0a53494f81bdfda5aa637

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/Logo.png HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:01:48 GMT
ETag: "4c8d-5eedcf8417e90"
Accept-Ranges: bytes
Content-Length: 19597
Keep-Alive: timeout=2, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 400 x 120, 8-bit/color RGBA, non-interlaced\012- data
Size:   19597
Md5:    66dca570d8bfad1df77043a8cb37b022
Sha1:   5c9446e2658bd012bdcda954a8551c65cbf3cb25
Sha256: e3760298dfe86fec826e4ee7df5d7508c64e5c7d37034ec2f571cd3ea6f63daa
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/play-store.webp HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: image/webp
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "66e-5eedcf50e3184-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1669
Keep-Alive: timeout=2, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   1669
Md5:    5d2fb2a8ffe3e09698b61ffa1fee8ea6
Sha1:   67db26698b5cb0970eefeb5a089d6eac3f4aae02
Sha256: 2fd9168c052a3a6e73e45d604f99b9a217ec23858f384bbf05939a686246d6d7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 18:08:58 GMT
cache-control: public,max-age=3600
age: 1311
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /stylesheets/fonts/Alkami-font.woff?636833168113306165 HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close

                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/print.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "1e63-5eedcf50e4124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1872
Keep-Alive: timeout=2, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (7734), with CRLF line terminators
Size:   1872
Md5:    78d425f1a1283f365b2bb6ce050f6699
Sha1:   61e256149640787b13f7d009a08466e7397ce763
Sha256: 6ae244b7252b218f765150b9d88df09f4b6e26fb5d2f220bfcbb6b10d94794f9
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6513
Cache-Control: max-age=145475
Date: Sat, 03 Dec 2022 18:30:49 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:55:24 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /stylesheets/fonts/AlkamiLogos.woff?636833168113336193 HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close

                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Dec 2022 14:40:10 GMT
expires: Sun, 03 Dec 2023 14:40:10 GMT
cache-control: public, max-age=31536000
age: 13839
last-modified: Mon, 16 Oct 2017 17:33:12 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15436, version 1.0\012- data
Size:   15436
Md5:    037d830416495def72b7881024c14b7b
Sha1:   619389190b3cafafb5db94113990350acc8a0278
Sha256: 1d5b7c64458f4af91dcfee0354be47adde1f739b5aded03a7ab6068a1bb6ca97
                                        
                                            GET /stylesheets/fonts/Alkami-font.ttf?636833168113296155 HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close

                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 160966
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.35
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:43 GMT
expires: Wed, 29 Nov 2023 15:42:43 GMT
cache-control: public, max-age=31536000
age: 355686
last-modified: Mon, 16 Oct 2017 17:32:43 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15440, version 1.0\012- data
Size:   15440
Md5:    55536c8e9e9a532651e3cf374f290ea3
Sha1:   ff3a9b8ae317896cbbcbadfbe615d671bd1d32a2
Sha256: eca8ffa764a66cd084800e2e71c4176ef089ebd805515664a6cb8d4fb3b598bf
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/login.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /stylesheets/fonts/AlkamiLogos.ttf?636833168113326186 HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Vary: User-Agent
Content-Length: 0
Connection: close

                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/RiskEvaluation.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/fonts/AlkamiLogos.woff HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/Connexus%20Credit%20Union_files/base.css
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jhjF3xY9PBFy9QrwLkw65A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         35.164.183.116
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZTavJpzlQo86NdcPFlJkdOWPHts=

                                        
                                            GET /API/Locales HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-NewRelic-ID: VgABWFdUGwACUFlWAwQ=
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0

                                        
                                            GET /Modules/YodleeFastLink/YodleeFastLink.css HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/
Cookie: _ga=GA1.2.1852662466.1670092247; _gid=GA1.2.430027723.1670092247; _gat=1

search
                                         178.18.143.201
HTTP/1.1 500 Internal Server Error
Content-Type: text/html; charset=UTF-8
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Server: Apache/2
X-Powered-By: PHP/5.6.40
Upgrade: h2,h2c
Connection: Upgrade, close
Vary: User-Agent
Content-Length: 0

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.110
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 16:41:08 GMT
expires: Sat, 03 Dec 2022 18:41:08 GMT
cache-control: public, max-age=7200
age: 6582
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            GET /r/collect?v=1&_v=j73&a=1055288261&t=pageview&_s=1&dl=http%3A%2F%2Fsupport.djek.nl%2FFirstTech%2F&ul=en-us&de=UTF-8&dt=First%20Tech%20Federal%20Credit%20Union&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEAB~&jid=897546493&gjid=1508623328&cid=1852662466.1670092247&tid=UA-71023015-1&_gid=430027723.1670092247&_r=1&z=1853878190 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.110
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_gid=430027723.1670092247&gjid=1508623328&_v=j73&z=1853878190
access-control-allow-origin: *
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   418
Md5:    682d03c82b3c89cfc9894a65a5b87c65
Sha1:   104cc8b50e8550fc4bbb269de5596a6bce1dd6ca
Sha256: 4f612f3bc6eb3b2518641db0a414185152dbb8bca26e4545a87673d133cfdf07
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6508
Cache-Control: max-age=154861
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638b365b-1d7"
Expires: Mon, 05 Dec 2022 13:31:51 GMT
Last-Modified: Sat, 03 Dec 2022 11:43:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6508
Cache-Control: max-age=154861
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638b365b-1d7"
Expires: Mon, 05 Dec 2022 13:31:51 GMT
Last-Modified: Sat, 03 Dec 2022 11:43:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_gid=430027723.1670092247&gjid=1508623328&_v=j73&z=1853878190 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://support.djek.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         108.177.14.157
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 366
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size:   366
Md5:    d180df1d36a48d723391f6a95ca463b1
Sha1:   bfb32bb0db93959b055e753b77975d31de2d4e92
Sha256: 807fb03495c6f2bd878a75d5ac731d7a6e3c897741683e9670c4c9c35b2a8d83
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://support.djek.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         216.58.211.4
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190&slf_rd=1&random=1936224488
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-71023015-1&cid=1852662466.1670092247&jid=897546493&_v=j73&z=1853878190&slf_rd=1&random=1936224488 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://support.djek.nl/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.163
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Dec 2022 18:30:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         216.58.211.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 03 Dec 2022 18:30:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=96497
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638a6bcb-1d7"
Expires: Sun, 04 Dec 2022 21:19:07 GMT
Last-Modified: Fri, 02 Dec 2022 21:19:07 GMT
Server: nginx
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: status.geotrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=96497
Date: Sat, 03 Dec 2022 18:30:50 GMT
Etag: "638a6bcb-1d7"
Expires: Sun, 04 Dec 2022 21:19:07 GMT
Last-Modified: Fri, 02 Dec 2022 21:19:07 GMT
Server: nginx
Content-Length: 471

                                        
                                            GET /nr-spa-1118.min.js HTTP/1.1 
Host: js-agent.newrelic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.130.137
HTTP/2 200 OK
content-type: application/javascript
                                        
x-amz-id-2: 4DwFcnOgMis86rhhe7f7AoG/5omHUqKbvJI1UGQ2X1vKTVJZeIw+R+DnJ7Anap5xLa1oYMt2unw=
x-amz-request-id: 2QM0E5SWXB5M5NJR
last-modified: Wed, 02 Jan 2019 18:42:31 GMT
etag: "7e24c95b9a35bca45860d13c1ef0a95b"
x-amz-version-id: null
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 03 Dec 2022 18:30:50 GMT
via: 1.1 varnish
x-served-by: cache-bma1625-BMA
x-cache: HIT
x-cache-hits: 35
x-timer: S1670092251.616976,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 12943
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32015)
Size:   12943
Md5:    8652588de7907a2ff449646421e5e5c1
Sha1:   593149229a462cd897d39da89552428d14cdaa7c
Sha256: 9169cade724eb2c4f34ae87c31fcd35529c2861d089fd659d653fd46d2dcd893
                                        
                                            GET /1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2130&ref=http://support.djek.nl/FirstTech/&ap=27&be=774&fe=2046&dc=1582&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1670092246396,%22n%22:0,%22f%22:-6,%22dn%22:-6,%22dne%22:349,%22c%22:349,%22ce%22:380,%22rq%22:381,%22rp%22:421,%22rpe%22:422,%22dl%22:509,%22di%22:1579,%22ds%22:1581,%22de%22:1625,%22dc%22:2045,%22l%22:2045,%22le%22:2047%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 773e6036980ab4f3-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=60c850ca4178c779; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   73
Md5:    814f8120cdf5a972bdb0fd5521a92a5d
Sha1:   47f7b3cd340d1fe91766ff27602e319a79bcd14c
Sha256: 5f520e553ae6a634e84b7c8c8d36908d2efa441d716834fd98c012c402b1c3c8
                                        
                                            GET /Orbital/Connexus/favicons/favicon-16x16.png HTTP/1.1 
Host: onlinebanking.connexuscu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.43.19
HTTP/2 200 OK
content-type: image/png
                                        
date: Sat, 03 Dec 2022 18:30:51 GMT
content-length: 284
last-modified: Mon, 24 Oct 2022 06:12:50 GMT
etag: "c641a56fe7d81:0"
x-svr: WEB1618162
expires: Sat, 03 Dec 2022 18:40:51 GMT
cache-control: max-age=600
cf-cache-status: MISS
accept-ranges: bytes
cf-request-id: 157ada76080000b4eb17801000000001
set-cookie: __cf_bm=GV8d655At8Qm.lXvX2RTiGied3KOtHD3rpsZBmFwtFw-1670092251-0-AUr4BqnsC3sy8fW27wfA+8IYf5WPNW1mFWWWdJr1nSPFXaOfNRj3OXFqeIDYbtOYgum9kzWq51snrEcWvpGpVtc=; path=/; expires=Sat, 03-Dec-22 19:00:51 GMT; domain=.connexuscu.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 773e60367c35b4eb-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size:   284
Md5:    5d15480a42008adfc6a2210aa3c0f34e
Sha1:   a1bb91beaef073f57551849fbd5414b3c4a8bfe1
Sha256: 44922a1bb754a26cf842a1031e8f0d3f2141564f1bfc444fe5cc433fa0a81ee4
                                        
                                            GET /Orbital/Connexus/favicons/android-chrome-192x192.png HTTP/1.1 
Host: onlinebanking.connexuscu.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.43.19
HTTP/2 200 OK
content-type: image/webp
                                        
date: Sat, 03 Dec 2022 18:30:51 GMT
content-length: 3720
cache-control: max-age=600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=4253
content-disposition: inline; filename="android-chrome-192x192.webp"
etag: "5f7fac6fe7d81:0"
expires: Sat, 03 Dec 2022 18:40:51 GMT
last-modified: Mon, 24 Oct 2022 06:13:02 GMT
vary: Accept
x-svr: WEB1630129
cf-cache-status: MISS
accept-ranges: bytes
cf-request-id: 157ada75fd0000b4ebf3802000000001
set-cookie: __cf_bm=YUGuibbRrWOvFxj.n3pwYXqEdLE0l6vFe2cG3JZmN1Q-1670092251-0-ASmzAVXW9b+av4CZ6+afdk4X8zAFs9S+Dqx4TozPlxT/oukhsfEPYQJENiSvU49P1UF2/2GL2syiuH1i3wTNfKo=; path=/; expires=Sat, 03-Dec-22 19:00:51 GMT; domain=.connexuscu.org; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 773e60366c22b4eb-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   3720
Md5:    c8966b3355c331595e3b612f18b916ca
Sha1:   1cd1676825c2fc11707a40262e4db5489ff2ae65
Sha256: 8c435616ce0b4a6aa7225924e6fe545125fad916a2c1bc44750dac234a2f7e57
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         95.101.11.115
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12435
Expires: Sat, 03 Dec 2022 21:58:06 GMT
Date: Sat, 03 Dec 2022 18:30:51 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 00:57:24 GMT
age: 63207
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6174
Md5:    b986f9fcbeca91ed5c8d58fbfaf47d19
Sha1:   6e6c8bd2bce144cc4da1cd7be375b046b60dca79
Sha256: 07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bd85z5A6C0nxpDjeSEPp1NHJxXFO5sy1OgTLz7KpdWz61TNrfyQ47Q==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:53:20 GMT
age: 52651
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4309
Md5:    fcb89ca25035b2bbb71ae5dd175fcd40
Sha1:   544428cdad754b1bb7be3cd46a79bf078fd5b450
Sha256: 36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 74385
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9715
Md5:    45182367fd4f8b6dd234eef1022acdb1
Sha1:   d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
Sha256: a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V4Z3TZtTDMjnyxZx7VdJrKtZ-PbZkWnsQ0-1eFDem4TVyRGvk0dc7A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:39:57 GMT
age: 75054
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7732
Md5:    379a4a1b95d3aa3c5a4f8e7f9abb030f
Sha1:   d45dceb3dc58a07197aa5077582b5b1cd2ff791a
Sha256: 1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 48523
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2942
Md5:    b47431190f34eccf0a6efb98e2a32b7d
Sha1:   9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
Sha256: 08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -AurmlKwF0QgfsWBsV3ZN9ZyDhw1Zo82zUqrpkBbvbCfh0j7evV2Tg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 11:01:04 GMT
age: 26987
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5354
Md5:    1e74254b3fdce7d6b84a71a7aff43789
Sha1:   65c8b4abf957f9b54d99d0f78559e639adb29efb
Sha256: f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
                                        
                                            POST /resources/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2603&ref=http://support.djek.nl/FirstTech/&st=1670092246396 HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 7628
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Date: Sat, 03 Dec 2022 18:30:51 GMT
Content-Length: 36
Connection: keep-alive
CF-Ray: 773e60398c32b4f3-OSL
Access-Control-Allow-Origin: http://support.djek.nl
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   36
Md5:    53a3ea626750648af4133f46cc53d647
Sha1:   80ac81969f48430e1d7b576043128eb1e31a00ee
Sha256: d5b0605138f0e426edea67794474a27fc6b1519eb938376464051d26de63c39e
                                        
                                            POST /events/1/aec7706684?a=3248445&v=1118.0c07c19&to=MlVRZUoCW0ZZBUdcXAsffmd7THRATA5WW0cMU1JFUQxbdlcIR0dcCVxWQxcqW1FdHg%3D%3D&rst=2611&ref=http://support.djek.nl/FirstTech/ HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 228
Origin: http://support.djek.nl
Connection: keep-alive
Referer: http://support.djek.nl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 03 Dec 2022 18:30:51 GMT
Content-Length: 24
Connection: keep-alive
CF-Ray: 773e60399d180b3d-OSL
Access-Control-Allow-Origin: http://support.djek.nl
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Vary: Accept-Encoding
Server: cloudflare


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   24
Md5:    bc32ed98d624acb4008f986349a20d26
Sha1:   2d3df8c11d2168ce2c27e0937421d11d85016361
Sha256: 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
                                        
                                            GET /FirstTech/Connexus%20Credit%20Union_files/jquery_002.js HTTP/1.1 
Host: support.djek.nl
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://support.djek.nl/FirstTech/

search
                                         178.18.143.201
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 03 Dec 2022 18:30:49 GMT
Server: Apache/2
Last-Modified: Fri, 02 Dec 2022 19:00:55 GMT
ETag: "37899-5eedcf50e21e4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing