r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10333
Expires: Mon, 05 Dec 2022 14:08:54 GMT
Date: Mon, 05 Dec 2022 11:16:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11769
Expires: Mon, 05 Dec 2022 14:32:50 GMT
Date: Mon, 05 Dec 2022 11:16:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1484
Cache-Control: max-age=171562
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:41 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 10:56:03 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Pz3N3SqG9mmih6/8YlAdKdjUxFwmGnn1veUAEzCWTIYSzdYikzDzsJUDrqqXqLqWyNLlQCNM0Xo=
x-amz-request-id: A9EYPA2R7X9E92E1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 10:47:23 GMT
age: 1758
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 10:20:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3386
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:16:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1598f744a6f9f9c8434bee980eec9325
d56938130e30df13d078e8356fd5980cc06e458a
a6bacf33a87664a4a1c0dd3d1e20c14d8183c1d45727dc03d70aa41710be4160
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6BACF33A87664A4A1C0DD3D1E20C14D8183C1D45727DC03D70AA41710BE4160"
Last-Modified: Sun, 04 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 05 Dec 2022 17:16:41 GMT
Date: Mon, 05 Dec 2022 11:16:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 11:11:19 GMT
cache-control: public,max-age=3600
age: 322
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1458
Cache-Control: max-age=166469
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:41 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:31:10 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.43.228.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.228.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pcw3ZZYoTcC4KmgpmTgteQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y3rrUf8mVluFG37x8Y9zA12pzs8=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9197
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 11:16:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9197
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 11:16:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9197
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 11:16:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9197
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 11:16:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9197
Expires: Mon, 05 Dec 2022 13:50:00 GMT
Date: Mon, 05 Dec 2022 11:16:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6079166a1ed5bac7373183f03f33b84e
b0c9391b87a4560598e43d5084dda41e267974a9
3e2faccbc3e14a10da4a433d789068cdc3fb2d3e2a04a7e2b7ea5f6f6313dcd4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13647
x-amzn-requestid: 36276b12-9e02-4d00-a100-9aa5c794fc79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ueEWUoAMFj7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1329-7abb45a85c6bc2235c25d61e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Au3s215cCYumuz8qJ7dQFYQ45s4XRo0-zzFcnRLv7gNb3aFHpKnGwg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:07 GMT
age: 48276
etag: "b0c9391b87a4560598e43d5084dda41e267974a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:42:39 GMT
age: 48844
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d5IKLNblcA9AzCoGMpGmIGwUu-kQlHlouju5mm2NwsSOin4MFT40mg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:56:21 GMT
age: 48022
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15537f94-1f24-4010-9d46-d70fec20ced3.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15537f94-1f24-4010-9d46-d70fec20ced3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1be5ade2f8eb160f9974766374c9dd01
8d3d92355304ccfcd50ae96f55b2754220f05187
5087642c70cd92613c2a490b532fc7651c4b25f8712a59b4f7a178cc44cdf90f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15537f94-1f24-4010-9d46-d70fec20ced3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6827
x-amzn-requestid: d4dfc77c-65cc-46f1-b8a3-ea6cebd0976d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUYE2woAMFgPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-639ca0813c23b9cb75ff24c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lhweRJZbG0P_lxekUIz506RXW5f9iVQ1Cvfg-k3gJTWHIrzTu2uenQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 03:26:44 GMT
age: 28199
etag: "8d3d92355304ccfcd50ae96f55b2754220f05187"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 12:09:06 GMT
age: 83257
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:44 GMT
age: 48419
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=DC-11236391
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=DC-11236391
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash 1fdaf9033ade499230b96107fdeaf748
ededef9987090725bac4c75c6d81dee8de8e0aa5
12d2f674243ff3168caa23f4831d54779a7b15703ac85e1423247b62baa22ac2
GET /gtag/js?id=DC-11236391 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 11:16:45 GMT
expires: Mon, 05 Dec 2022 11:16:45 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44135
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-332531362
172.217.21.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-332531362
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash d58c9598ef85b2cdf14c20c9c8e50e17
03f470e2a06a93eba403cc72028a541c329e7a37
b219fb8695f7e048621f12ed6607cf579d58fa0614d709a99c35132b02a88363
GET /gtag/js?id=AW-332531362 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 11:16:45 GMT
expires: Mon, 05 Dec 2022 11:16:45 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52879
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=DC-10578597
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=DC-10578597
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash 291d3b9df150cd2d3f6dd06b9041b531
5bc746b25aa9f3c5a1012478ba7220b180cbff2d
77a5fd2eb31b5b7de927e333471bf19743d620ec791787e8c26525cf440f0e09
GET /gtag/js?id=DC-10578597 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 11:16:45 GMT
expires: Mon, 05 Dec 2022 11:16:45 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44136
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/332531362/?random=1645653114554&cv=9&fst=1645653114554&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 986 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/332531362/?random=1645653114554&cv=9&fst=1645653114554&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2395), with no line terminators
Hash b6c82fc34a3e66ac5d45a00bc7f5681f
fb63a6d28059b86c955304d35a0d9c5bce6d2718
ca8374473c098f630238b39f950dafa4950996a4cf3d3656484941e5d28b24ca
GET /pagead/viewthroughconversion/332531362/?random=1645653114554&cv=9&fst=1645653114554&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 986
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/948238967/?random=1645653114556&cv=9&fst=1645653114556&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/948238967/?random=1645653114556&cv=9&fst=1645653114556&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2435), with no line terminators
Hash db3438166ca55988d2614e7844727b62
96cf2bd65fa01565e010c749e3a4c6c253169e62
71ad603490493dd5f82e84ec44a7be633afeb82b13ba3035d30aabb7e3c31723
GET /pagead/viewthroughconversion/948238967/?random=1645653114556&cv=9&fst=1645653114556&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1000
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.trustcommander.net/privacy/4911/privacy_v2_5.js
192.229.233.55200 OK 20 kB URL HTTP/2 cdn.trustcommander.net/privacy/4911/privacy_v2_5.js
IP 192.229.233.55:0
File type C source, Unicode text, UTF-8 text, with very long lines (65339)
Hash 2ce131167303ecdbc14d2ef2359cc08b
4f6491f8595f70dfb8f596c631ad3014d517784e
8211f1a77c47abdb72706cf5d5443916a0b6952b7abf21212eca4c77f42ba4e2
GET /privacy/4911/privacy_v2_5.js HTTP/1.1
Host: cdn.trustcommander.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 31536000
age: 52695
cache-control: max-age=86400, must-revalidate
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
etag: "a8b0fd87d2724695922ae92e272eb317+gzip"
last-modified: Thu, 30 Jun 2022 09:01:12 GMT
server: ECS (ska/F71D)
vary: Accept-Encoding
x-amz-id-2: VzzomJVn+u9dtz1jtrGIwvF5O1v97hj801ekYU6nZOIl/9+pAYWeanLUX5X1rALcH7z3Vw4UweQ=
x-amz-request-id: 64QYCQKMF30QMEGW
x-cache: HIT
x-cdn: VDMS
content-length: 20206
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=AW-319309780
172.217.21.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-319309780
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash ed59b9f1b8ffc787150363f871df9634
24fbe945fc129f75af51bc5f574a2d45b056c6e8
fdc4fee4301d78e22fab02007183f117adc5d0d921d44a32e95e5d0020a836ee
GET /gtag/js?id=AW-319309780 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 11:16:45 GMT
expires: Mon, 05 Dec 2022 11:16:45 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 52984
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/319309780/?random=1645653114559&cv=9&fst=1645653114559&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 985 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/319309780/?random=1645653114559&cv=9&fst=1645653114559&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2395), with no line terminators
Hash 37a0c6a760d4cbdc00c8c9a1a9954385
f707e6680c74aa1e9c4598ef88e8dad700d4c66a
4fe9a91a001a25a1cfc64f8541357ffe686d69ce8dcc3a97076fc0091cb7ca36
GET /pagead/viewthroughconversion/319309780/?random=1645653114559&cv=9&fst=1645653114559&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 985
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/925186924/?random=1645653114561&cv=9&fst=1645653114561&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 985 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/925186924/?random=1645653114561&cv=9&fst=1645653114561&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2393), with no line terminators
Hash 2e3c95556830555baedfc7b165cc4894
e6a43667b8ce9a3493528054a4aa5c0977601328
685227c2b9ce486a1718ed6ee925c60dc18674332a2ed0f035fe1ada5e4a2de7
GET /pagead/viewthroughconversion/925186924/?random=1645653114561&cv=9&fst=1645653114561&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 985
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/332531362/?random=1645647994275&cv=9&fst=1645647994275&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/332531362/?random=1645647994275&cv=9&fst=1645647994275&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2481), with no line terminators
Hash 5c5b979ff0c6821186a7dcf4d864dfbb
6b47f342146eb163e2474acdd43abe5da7e6bc3a
d4f9b8e26d7e0b22ac461abd5de9a34b8e86567ef675aeb1f2823d83445958f0
GET /pagead/viewthroughconversion/332531362/?random=1645647994275&cv=9&fst=1645647994275&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1012
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.trustcommander.net/privacy/5414/privacy_v2_2.js
192.229.233.55200 OK 20 kB URL HTTP/2 cdn.trustcommander.net/privacy/5414/privacy_v2_2.js
IP 192.229.233.55:0
File type C source, Unicode text, UTF-8 text, with very long lines (65339)
Hash 86e3dc970d481ed47bb711ca14ccf445
57ef9cebebd6a70c843b00d08eb7db1e119aa152
4729ac071a451abbc7ffe66287f510caf496f9ef6ad343c5a128ddee40dcc42c
GET /privacy/5414/privacy_v2_2.js HTTP/1.1
Host: cdn.trustcommander.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 31536000
age: 52699
cache-control: max-age=86400, must-revalidate
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
etag: "0ec10140b06db2fffd825a53c173861e+gzip"
last-modified: Fri, 29 Apr 2022 07:45:06 GMT
server: ECS (ska/F70C)
vary: Accept-Encoding
x-amz-id-2: vgDaUNzMx8SdV5Uqr+LXwM5wUAEQQTf0v84jXmWTU960fHTE830PHGNk2taWYuNY6A8/A7M3oqw=
x-amz-request-id: 12DR82J45WFX7FZ8
x-cache: HIT
x-cdn: VDMS
content-length: 19828
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1004668939/?random=1645647994279&cv=9&fst=1645647994279&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1004668939/?random=1645647994279&cv=9&fst=1645647994279&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2485), with no line terminators
Hash d29dfd0f3128c3259936f398c9009212
4ad06bc15b3449c5f60eb209ca74b4ea5e04b77e
08cbc407a4a515480a7f69884fd074bbc03443b98841eb78a84eac3e8a087765
GET /pagead/viewthroughconversion/1004668939/?random=1645647994279&cv=9&fst=1645647994279&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1010
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1004668939/?random=1645653114552&cv=9&fst=1645653114552&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1004668939/?random=1645653114552&cv=9&fst=1645653114552&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2437), with no line terminators
Hash d7fcc60b23a1a3be369f4376c1fa2c0c
040b75afae01c67b190f7d4b4a812cd1569f2909
a69a776dc2709927163b5071234747877a31004543f2bfd4530151a5d7326709
GET /pagead/viewthroughconversion/1004668939/?random=1645653114552&cv=9&fst=1645653114552&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1002
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/319309780/?random=1645647994281&cv=9&fst=1645647994281&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/319309780/?random=1645647994281&cv=9&fst=1645647994281&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2481), with no line terminators
Hash 4d446557a39ab093afaa301c8cf659d4
9f4ad98a5f7f2b28423da92260561ddaeffc18a1
e7fd7d1a2b8ba7560d6df1801f8be800283c313b749755a663073a66d9d20913
GET /pagead/viewthroughconversion/319309780/?random=1645647994281&cv=9&fst=1645647994281&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1011
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.trustcommander.net/privacy/4898/privacy_v2_17.js
192.229.233.55200 OK 20 kB URL HTTP/2 cdn.trustcommander.net/privacy/4898/privacy_v2_17.js
IP 192.229.233.55:0
File type C source, Unicode text, UTF-8 text, with very long lines (65338)
Hash 94f63e9b85b2a4bf18f1bc7966ee002c
aa64e1122adf9a54b25ea93b7d3107b8bf03ebb4
dd12428b2a0d1e5366ecfc74afb7bf3fde6bac26881706aa4fc22bfc3e8824be
GET /privacy/4898/privacy_v2_17.js HTTP/1.1
Host: cdn.trustcommander.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-methods: HEAD, GET
access-control-allow-origin: *
access-control-max-age: 31536000
cache-control: max-age=86400, must-revalidate
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:46 GMT
etag: "6978bbaf72d83ba73a4a4356819368c6+gzip"
last-modified: Fri, 01 Jul 2022 07:09:38 GMT
server: AmazonS3
vary: Accept-Encoding
x-amz-id-2: 3XPljA4dCJmc3nw5P6rnxqNiLaSrZWcaDu1LZrt6YMR1+qtc+Z0NqGICmJ64ITcf3UuYgpZblJU=
x-amz-request-id: ERCDXMKW47ZR3K7J
x-cdn: VDMS
content-length: 20310
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/dkb-global.js?etag=55c3852cc4f6c1e93b1e71e743b434a28b2f2c0d
103.50.162.157404 Not Found 355 B URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/dkb-global.js?etag=55c3852cc4f6c1e93b1e71e743b434a28b2f2c0d
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/js/dkb-global.js?etag=55c3852cc4f6c1e93b1e71e743b434a28b2f2c0d HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 09 Mar 2021 04:58:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/925186924/?random=1645647994284&cv=9&fst=1645647994284&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/925186924/?random=1645647994284&cv=9&fst=1645647994284&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2483), with no line terminators
Hash efa30862a5bde9f05742a4ecae82c2f8
0e1cf9b05860d6420037dfc3b46fb96baddbf9d7
23937e40c029b649b9009771982bd155b207f9ed2a6c430a4310ed4d693bec3d
GET /pagead/viewthroughconversion/925186924/?random=1645647994284&cv=9&fst=1645647994284&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1012
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
abhayintegratedservices.com/dkb/assets/js/product-global.js?etag=d711c9f78c6a7897c6b3ead8e0ca8a52c67c7b45
103.50.162.157404 Not Found 355 B URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/product-global.js?etag=d711c9f78c6a7897c6b3ead8e0ca8a52c67c7b45
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
GET /dkb/assets/js/product-global.js?etag=d711c9f78c6a7897c6b3ead8e0ca8a52c67c7b45 HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 09 Mar 2021 04:58:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/948238967/?random=1645647994287&cv=9&fst=1645647994287&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/948238967/?random=1645647994287&cv=9&fst=1645647994287&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2481), with no line terminators
Hash 4c2c9c81e765a2ad746f04f963aa9fd5
ea7009e0649ffe1b12f0d22bbb1137883d9ea2cc
3a1e96b5e9ae6c29c5d7799073c5bcffde3b336133fb4ee5215161b12f74f47b
GET /pagead/viewthroughconversion/948238967/?random=1645647994287&cv=9&fst=1645647994287&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1012
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:45 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5670c32d73c3d5771a2d9396774a7eb9
3fb62916ff54f22a011e11730ba87fea48e5d239
062531ed89864b713048421c9639d4a6249e92f33ef4177206f1deb5d85a8757
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e43934754757e60c0ef28a287f9408e9
c319e63380f1bc639b65b64f1c571163564373a2
4ac2294b8551262271d4665fdd1e719063756146b76d6006a3b0f979eeb4e716
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6506
Cache-Control: max-age=136223
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Etag: "638d2ad2-139"
Expires: Wed, 07 Dec 2022 01:07:08 GMT
Last-Modified: Sun, 04 Dec 2022 23:18:42 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e43934754757e60c0ef28a287f9408e9
c319e63380f1bc639b65b64f1c571163564373a2
4ac2294b8551262271d4665fdd1e719063756146b76d6006a3b0f979eeb4e716
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6506
Cache-Control: max-age=136223
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Etag: "638d2ad2-139"
Expires: Wed, 07 Dec 2022 01:07:08 GMT
Last-Modified: Sun, 04 Dec 2022 23:18:42 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 4958a27223789b95e100f0977bee68d9
73e926412efc76fd5a1cd153291a9121f6d83772
4238e5ad86bebbd12d6670ede245d9665f241e3196a4fb59d771d1eb3831faa6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=158926
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Etag: "638d9ceb-2d7"
Expires: Wed, 07 Dec 2022 07:25:31 GMT
Last-Modified: Mon, 05 Dec 2022 07:25:31 GMT
Server: nginx
Content-Length: 727
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash dd3b777e35feca4c7b6c9dc2c7881701
83e2861b6f70ce121424a7347a344d7fe5ad6bf2
d96ddcc73895f9d49690d6571db8b991927c3331282db2050a32e6cd262f3533
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3471
Cache-Control: max-age=167048
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:45 GMT
Etag: "638daf16-2d7"
Expires: Wed, 07 Dec 2022 09:40:53 GMT
Last-Modified: Mon, 05 Dec 2022 08:43:02 GMT
Server: ECS (amb/6B99)
X-Cache: HIT
Content-Length: 727
analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o70ey&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=4a5b03e1-bfbb-4ff6-832a-1410d701fb0f&tw_document_href=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&tpx_cb=twttr.conversion.loadPixels
104.244.42.3200 OK 57 B URL HTTP/2 analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o70ey&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=4a5b03e1-bfbb-4ff6-832a-1410d701fb0f&tw_document_href=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&tpx_cb=twttr.conversion.loadPixels
IP 104.244.42.3:0
File type ASCII text, with no line terminators
Hash d6cff1cc2ef6dbf2da25fade3bab8c65
c96e2822fd1459b7f171d86d88dcd76bc167c113
8d5b13815d3883037c78495a28abfe1815bfc702cade0cd8a7592be793e72996
GET /i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o70ey&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=4a5b03e1-bfbb-4ff6-832a-1410d701fb0f&tw_document_href=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&tpx_cb=twttr.conversion.loadPixels HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
date: Mon, 05 Dec 2022 11:16:44 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_IHVd3M1TZTehJO6gVkmcvg=="; Max-Age=63072000; Expires=Wed, 04 Dec 2024 11:16:45 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 57
content-encoding: gzip
x-transaction-id: aa9f8f59b9e00657
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: f13b9b980e811100000d4642a760affe9277e0b610a830702da31cdacf6c8efa
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o70ey&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=6b84eec8-b93a-4cc4-a1d4-4648d57174bf&tw_document_href=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&tpx_cb=twttr.conversion.loadPixels
104.244.42.3200 OK 57 B URL HTTP/2 analytics.twitter.com/i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o70ey&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=6b84eec8-b93a-4cc4-a1d4-4648d57174bf&tw_document_href=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&tpx_cb=twttr.conversion.loadPixels
IP 104.244.42.3:0
File type ASCII text, with no line terminators
Hash d6cff1cc2ef6dbf2da25fade3bab8c65
c96e2822fd1459b7f171d86d88dcd76bc167c113
8d5b13815d3883037c78495a28abfe1815bfc702cade0cd8a7592be793e72996
GET /i/adsct?type=javascript&version=2.0.4&p_id=Twitter&p_user_id=0&txn_id=o70ey&events=%5B%5B%22pageview%22%2Cnull%5D%5D&tw_sale_amount=0&tw_order_quantity=0&tw_iframe_status=0&event_id=6b84eec8-b93a-4cc4-a1d4-4648d57174bf&tw_document_href=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&tpx_cb=twttr.conversion.loadPixels HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
date: Mon, 05 Dec 2022 11:16:45 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_ny1csHtFCnzJ/31o8LWKGg=="; Max-Age=63072000; Expires=Wed, 04 Dec 2024 11:16:45 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 57
content-encoding: gzip
x-transaction-id: 35cb076bd0d27f64
strict-transport-security: max-age=631138519
x-response-time: 104
x-connection-hash: f13b9b980e811100000d4642a760affe9277e0b610a830702da31cdacf6c8efa
X-Firefox-Spdy: h2
res.ihre.dkb.de/res/dkb/b97318873798f30c5b7de5c73b096a4f.png
52.215.98.6200 OK 1.2 kB URL HTTP/1.1 res.ihre.dkb.de/res/dkb/b97318873798f30c5b7de5c73b096a4f.png
IP 52.215.98.6:0
File type PNG image data, 120 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash b97318873798f30c5b7de5c73b096a4f
3becd2ab3d246f1918e0fb4938ca33d40e052a34
56f693a748244a37167086e734c81d0b7344d03a0748522d3a13abb58e661fe9
GET /res/dkb/b97318873798f30c5b7de5c73b096a4f.png HTTP/1.1
Host: res.ihre.dkb.de
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/png
Date: Mon, 05 Dec 2022 11:16:45 GMT
ETag: "4a4-5e76027503d80"
Last-Modified: Mon, 29 Aug 2022 12:10:46 GMT
Server: Apache
Content-Length: 1188
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 42e97d0fe7a5805e0712a823b6383fa4
c90b1f644b1630052909e871e1e5392e7c620cfe
8200f90dfb01c544e132d1a3594749b146289aec38a6a7b1dc64eace4ff397e4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 11:16:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 05:51:54 GMT
Expires: Fri, 09 Dec 2022 05:51:53 GMT
Etag: "c90b1f644b1630052909e871e1e5392e7c620cfe"
Cache-Control: max-age=325507,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 774c5f167b470b02-OSL
responder.wt-safetag.com/resp/api/get/438500649507193?url=https%3A%2F%2Flocalhost%2F&v=5
185.54.150.22204 No Content 0 B URL HTTP/1.1 responder.wt-safetag.com/resp/api/get/438500649507193?url=https%3A%2F%2Flocalhost%2F&v=5
IP 185.54.150.22:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /resp/api/get/438500649507193?url=https%3A%2F%2Flocalhost%2F&v=5 HTTP/1.1
Host: responder.wt-safetag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Mon, 05 Dec 2022 11:16:45 GMT
Connection: keep-alive
Cache-Control: max-age: 0, must-revalidate
Content-Type: text/javascript
Vary: Accept-Encoding
Set-Cookie: ; SameSite=None
abhayintegratedservices.com/dkb/assets/js/dkb-login.js?etag=5a289d688b0861053ca8bc8e245a44b8998daf50
103.50.162.157200 OK 10 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/dkb-login.js?etag=5a289d688b0861053ca8bc8e245a44b8998daf50
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (787)
Hash 634d4f19d429e7dfe01d381ce66ab4a6
d79ea49871f9124ca4dd4fb69552d52b0ef7e20e
3aca3740a1ea80dcefadaba0f60afda904a4c2c0dcebe0eb02b1aa679bc7ec13
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
fortinet Phishing
GET /dkb/assets/js/dkb-login.js?etag=5a289d688b0861053ca8bc8e245a44b8998daf50 HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10087
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/img/large.jpg
103.50.162.157200 OK 21 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/img/large.jpg
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.4 (Macintosh), datetime=2021:09:03 15:42:18], baseline, precision 8, 190x145, components 3\012- data
Hash ff5e0cc2326e40c56a35d8c39b7dbfa1
ab52498fc5b216e7f20d465e76c49882c6f96614
3d142d0841f4f025ec89d506a446d642de2d51444aa050fabfba9f5302f53ebf
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
GET /dkb/assets/img/large.jpg HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
content-length: 21083
content-type: image/jpeg
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/product-global.js?etag=d711c9f78c6a7897c6b3ead8e0ca8a52c67c7b45
103.50.162.157404 Not Found 355 B URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/product-global.js?etag=d711c9f78c6a7897c6b3ead8e0ca8a52c67c7b45
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
GET /dkb/assets/js/product-global.js?etag=d711c9f78c6a7897c6b3ead8e0ca8a52c67c7b45 HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902; dtCookie=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258; rxVisitor=1670239003641K8BU9N6D3M2D82EGQ4LTBAN83JHAU18P; dtPC=-79$439003633_212h1vHJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0e0; rxvt=1670240803654|1670239003645; dtLatC=408; dtSa=-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 09 Mar 2021 04:58:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Mon, 05 Dec 2022 11:16:46 GMT
server: Apache
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/dkb-global.js?etag=55c3852cc4f6c1e93b1e71e743b434a28b2f2c0d
103.50.162.157404 Not Found 355 B URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/dkb-global.js?etag=55c3852cc4f6c1e93b1e71e743b434a28b2f2c0d
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cb50b952a1a41c3358018129e081d511
9b3ce22f173597240fd0c22ff649f3ffb9c6ea99
791b5cb893932898c350d1ec9888ee9c2feaea002431d12e9a1ba29331813be0
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/js/dkb-global.js?etag=55c3852cc4f6c1e93b1e71e743b434a28b2f2c0d HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902; dtCookie=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258; rxVisitor=1670239003641K8BU9N6D3M2D82EGQ4LTBAN83JHAU18P; dtPC=-79$439003633_212h1vHJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0e0; rxvt=1670240803654|1670239003645; dtLatC=408; dtSa=-
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
last-modified: Tue, 09 Mar 2021 04:58:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 355
content-type: text/html
date: Mon, 05 Dec 2022 11:16:46 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b4c9bc834e851e84ac0f779a505ac0c6
f9746f1a2d68290ba8ba920ec78ecf1602f11eac
a3d9e104fbe02e14a43829a34689265973087658cbb9e7430ab03ed257b6e83f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b4c9bc834e851e84ac0f779a505ac0c6
f9746f1a2d68290ba8ba920ec78ecf1602f11eac
a3d9e104fbe02e14a43829a34689265973087658cbb9e7430ab03ed257b6e83f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b4c9bc834e851e84ac0f779a505ac0c6
f9746f1a2d68290ba8ba920ec78ecf1602f11eac
a3d9e104fbe02e14a43829a34689265973087658cbb9e7430ab03ed257b6e83f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b4c9bc834e851e84ac0f779a505ac0c6
f9746f1a2d68290ba8ba920ec78ecf1602f11eac
a3d9e104fbe02e14a43829a34689265973087658cbb9e7430ab03ed257b6e83f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
10578597.fls.doubleclick.net/activityi;src=10578597;type=invmedia;cat=dkb_f0;ord=3525461671540;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch?
142.250.74.38200 OK 284 B URL HTTP/2 10578597.fls.doubleclick.net/activityi;src=10578597;type=invmedia;cat=dkb_f0;ord=3525461671540;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (601), with no line terminators
Hash 6c7c5a9a630ddfee47964a08facb0cb2
5ca10c98b77d4a35e64ca53deb5c2b03e992911d
c69e04ff80f267c980f7772101736abcf3eccfc1370147de924283b20fc4b059
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
GET /activityi;src=10578597;type=invmedia;cat=dkb_f0;ord=3525461671540;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch? HTTP/1.1
Host: 10578597.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 284
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:47 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/tc_OMD_21.js
103.50.162.157200 OK 58 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/tc_OMD_21.js
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 63c35eefad37973e64bd6cd0f3e96c91
92133c07371c3108d43c093345d120fef2006575
cfdc2aa571cdf3449f8e4cd2d904d1099946e9c581c4b760a0fa67133bfca33b
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/js/tc_OMD_21.js HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
11236391.fls.doubleclick.net/activityi;src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php?
142.250.74.38200 OK 257 B URL HTTP/2 11236391.fls.doubleclick.net/activityi;src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php?
IP 142.250.74.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (529), with no line terminators
Hash 62fc9bcb56f1bf485d21356ff447a84f
da46267a160ccae561bda4eb574f49a3477461b4
7902a07cf2e235898e94893a0f5c84ba6797f78ab71a03c2f365829e178af7af
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
GET /activityi;src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php? HTTP/1.1
Host: 11236391.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 257
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 05-Dec-2022 11:31:47 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/css/dkb-global-print.css?etag=e34e0daf654c2cdab53c84a6142b1dfdce8864d8
103.50.162.157200 OK 58 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/css/dkb-global-print.css?etag=e34e0daf654c2cdab53c84a6142b1dfdce8864d8
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 3fa846150deb1da79a344dfef1fb1e18
95a1b1d7377bc62de28cbdbab2ddc3b3edd97f24
279b0b7f1832698f429c8463a3b93e8ca8633992a6edf665d5d8ab066dd38c9e
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/css/dkb-global-print.css?etag=e34e0daf654c2cdab53c84a6142b1dfdce8864d8 HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902; dtCookie=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258; rxVisitor=1670239003641K8BU9N6D3M2D82EGQ4LTBAN83JHAU18P; dtPC=-79$439003633_212h1vHJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0e0; rxvt=1670240803654|1670239003645; dtLatC=408; dtSa=-
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 05 Dec 2022 11:16:46 GMT
server: Apache
X-Firefox-Spdy: h2
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 04 Dec 2022 16:19:20 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: I1-pfhaVV3teiZsP8AQ8s1r0gUbTpCZIkSRWTERCkRbTj8JfX0khgw==
Age: 68248
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 917d281ca22c901597795b51fd9df338
be0e026d76f26092edfc1f67ea98ddc4a539439a
5f47f5ac32d4c80f29c4a69a830ec9427dd0055fc57973f01f73ec22503cd30c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=12000009&Ver=2&mid=711668cf-0224-4cb5-8390-2a7a110a4798&sid=7061087094e511ecaa802b0267ee9044&vid=7061177094e511ec8cfbf9903138312a&vids=0&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1920&sh=1080&sc=24&tl=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&p=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&r=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php<=311&evt=pageLoad&msclkid=N&sv=1&rn=203848
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=12000009&Ver=2&mid=711668cf-0224-4cb5-8390-2a7a110a4798&sid=7061087094e511ecaa802b0267ee9044&vid=7061177094e511ec8cfbf9903138312a&vids=0&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1920&sh=1080&sc=24&tl=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&p=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&r=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php<=311&evt=pageLoad&msclkid=N&sv=1&rn=203848
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=12000009&Ver=2&mid=711668cf-0224-4cb5-8390-2a7a110a4798&sid=7061087094e511ecaa802b0267ee9044&vid=7061177094e511ec8cfbf9903138312a&vids=0&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1920&sh=1080&sc=24&tl=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&p=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&r=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php<=311&evt=pageLoad&msclkid=N&sv=1&rn=203848 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=23F980C4155F660C3B4A92B5140867E1; domain=.bing.com; expires=Sat, 30-Dec-2023 11:16:47 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 50F6B4C1A11040AB87E377F8C011F186 Ref B: OSL30EDGE0413 Ref C: 2022-12-05T11:16:47Z
date: Mon, 05 Dec 2022 11:16:47 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1004668939/?random=1645647994279&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=4090894009&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1004668939/?random=1645647994279&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=4090894009&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1004668939/?random=1645647994279&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=4090894009&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/319309780/?random=1645653114559&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=2299153220&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/319309780/?random=1645653114559&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=2299153220&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/319309780/?random=1645653114559&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=2299153220&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1004668939/?random=1645653114552&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=3844739912&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1004668939/?random=1645653114552&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=3844739912&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1004668939/?random=1645653114552&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=3844739912&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.mouseflow.com/projects/a5c8723d-5b80-4b04-8df5-425eccf81a04.js
151.139.128.10301 Moved Permanently 0 B URL HTTP/2 cdn.mouseflow.com/projects/a5c8723d-5b80-4b04-8df5-425eccf81a04.js
IP 151.139.128.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /projects/a5c8723d-5b80-4b04-8df5-425eccf81a04.js HTTP/1.1
Host: cdn.mouseflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 05 Dec 2022 11:16:47 GMT
accept-ranges: bytes
content-length: 0
location: https://cdn.mouseflow.com/projects/a5c8723d-5b80-4b04-8df5-425eccf81a04_eu.js
cache-control: max-age=86400
x-hw: 1670239007.cds212.sk1.hn,1670239007.cds226.sk1.c
x-hw-loc: https://cdn.mouseflow.com/projects/a5c8723d-5b80-4b04-8df5-425eccf81a04.js
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/948238967/?random=1645653114556&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1393872822&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/948238967/?random=1645653114556&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1393872822&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/948238967/?random=1645653114556&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1393872822&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/925186924/?random=1645653114561&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=298748469&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/925186924/?random=1645653114561&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=298748469&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/925186924/?random=1645653114561&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=298748469&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e388f1ab4ec88104f57cf23944ee684
39178c45ed645709cc388d5790b1b58a3272a62f
e33b88f6f77d90b65a8fed943a45623e51f1efbdae401a1652f24be68408dba0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 1d7e4f10c3ad1b1c77c22da415fb1d94
3f9d03590c3411adc6f30137cfd90c8562782921
cc12034116bbddfde296e42f055f4a7c075ad2536000b21d596a58e9809dd11a
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 11:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Fri, 09 Dec 2022 09:39:30 GMT
ETag: "3f9d03590c3411adc6f30137cfd90c8562782921"
Last-Modified: Mon, 05 Dec 2022 09:39:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 238
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 774c5f2458100b69-OSL
bat.bing.com/action/0?ti=12000009&Ver=2&mid=c3d8669b-d3d9-45d9-bf7f-d8b616a6f78f&sid=7061087094e511ecaa802b0267ee9044&vid=7061177094e511ec8cfbf9903138312a&vids=0&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1920&sh=1080&sc=24&tl=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&p=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&r=http%3A%2F%2Flocalhost%2F%2Fdkb%2F<=402&evt=pageLoad&msclkid=N&sv=1&rn=61593
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=12000009&Ver=2&mid=c3d8669b-d3d9-45d9-bf7f-d8b616a6f78f&sid=7061087094e511ecaa802b0267ee9044&vid=7061177094e511ec8cfbf9903138312a&vids=0&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1920&sh=1080&sc=24&tl=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&p=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&r=http%3A%2F%2Flocalhost%2F%2Fdkb%2F<=402&evt=pageLoad&msclkid=N&sv=1&rn=61593
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=12000009&Ver=2&mid=c3d8669b-d3d9-45d9-bf7f-d8b616a6f78f&sid=7061087094e511ecaa802b0267ee9044&vid=7061177094e511ec8cfbf9903138312a&vids=0&uach=pv%3D10.0.0&pi=918639831&lg=en-US&sw=1920&sh=1080&sc=24&tl=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&p=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&r=http%3A%2F%2Flocalhost%2F%2Fdkb%2F<=402&evt=pageLoad&msclkid=N&sv=1&rn=61593 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=384F4636EC3461B30EEC5447ED63605F; domain=.bing.com; expires=Sat, 30-Dec-2023 11:16:47 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 20D51C7529E84124AEFDEDE2C816C73F Ref B: OSL30EDGE0413 Ref C: 2022-12-05T11:16:47Z
date: Mon, 05 Dec 2022 11:16:47 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/12000009.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/12000009.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/12000009.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=108423FC736C6D520A22318D723B6CBF; domain=.bing.com; expires=Sat, 30-Dec-2023 11:16:47 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4AD3A392CE7F48B181A508EED5303FD7 Ref B: OSL30EDGE0413 Ref C: 2022-12-05T11:16:47Z
date: Mon, 05 Dec 2022 11:16:47 GMT
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=1E55C8FAE577641D1D3FDA8BE4206546; domain=.bing.com; expires=Sat, 30-Dec-2023 11:16:47 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 469FC28D87224B5490DA99BCB25296A3 Ref B: OSL30EDGE0413 Ref C: 2022-12-05T11:16:47Z
date: Mon, 05 Dec 2022 11:16:47 GMT
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/319309780/?random=1645653114559&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=2299153220&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/319309780/?random=1645653114559&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=2299153220&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/319309780/?random=1645653114559&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=2299153220&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/332531362/?random=1645653114554&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1402016166&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/332531362/?random=1645653114554&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1402016166&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/332531362/?random=1645653114554&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1402016166&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/948238967/?random=1645653114556&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1393872822&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/948238967/?random=1645653114556&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1393872822&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/948238967/?random=1645653114556&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1393872822&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/948238967/?random=1645647994287&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=906107331&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/948238967/?random=1645647994287&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=906107331&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/948238967/?random=1645647994287&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=906107331&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/925186924/?random=1645653114561&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=298748469&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/925186924/?random=1645653114561&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=298748469&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/925186924/?random=1645653114561&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=298748469&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Mon, 05 Dec 2022 11:16:47 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/925186924/?random=1645647994284&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1685112734&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/925186924/?random=1645647994284&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1685112734&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/925186924/?random=1645647994284&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1685112734&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b4c9bc834e851e84ac0f779a505ac0c6
f9746f1a2d68290ba8ba920ec78ecf1602f11eac
a3d9e104fbe02e14a43829a34689265973087658cbb9e7430ab03ed257b6e83f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/319309780/?random=1645647994281&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=943709171&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/319309780/?random=1645647994281&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=943709171&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/319309780/?random=1645647994281&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=943709171&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/925186924/?random=1645647994284&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1685112734&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/925186924/?random=1645647994284&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1685112734&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/925186924/?random=1645647994284&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1685112734&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/319309780/?random=1645647994281&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=943709171&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/319309780/?random=1645647994281&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=943709171&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/319309780/?random=1645647994281&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=943709171&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/332531362/?random=1645653114554&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1402016166&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/332531362/?random=1645653114554&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1402016166&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/332531362/?random=1645653114554&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=1402016166&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1004668939/?random=1645653114552&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=3844739912&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1004668939/?random=1645653114552&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=3844739912&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1004668939/?random=1645653114552&cv=9&fst=1645650000000&num=1&bg=ffffff&guid=ON&eid=376635470&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=6&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2F&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=3844739912&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e388f1ab4ec88104f57cf23944ee684
39178c45ed645709cc388d5790b1b58a3272a62f
e33b88f6f77d90b65a8fed943a45623e51f1efbdae401a1652f24be68408dba0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
abhayintegratedservices.com/dkb/assets/img/170407_1024x1024_Logo_Banking_App.png
103.50.162.157200 OK 9.1 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/img/170407_1024x1024_Logo_Banking_App.png
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type PNG image data, 1024 x 1024, 8-bit colormap, non-interlaced\012- data
Hash 46fd8bc6e78fc8d4a40345174a261b91
3592e37d910a1be4dceedffb98c6694e6e79eb6d
b9c750ea19b6182aa8ec5272465dd30ad7785eb8af8e76d3338a50845d6fe0ec
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
GET /dkb/assets/img/170407_1024x1024_Logo_Banking_App.png HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902; dtCookie=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258; rxVisitor=1670239003641K8BU9N6D3M2D82EGQ4LTBAN83JHAU18P; dtPC=-79$439003633_212h1vHJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0e0; rxvt=1670240804478|1670239003645; dtLatC=408; dtSa=-; tCdebugLib=1; tc_cj_v2=%5Ecl_%5Dny%5B%5D%5D_mmZZZZZZKPQJLMSJJNNOPZZZ%5D; tc_cj_v2_cmp=; tc_cj_v2_med=; TCPID=1221211116444623888563
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
content-length: 9134
content-type: image/png
date: Mon, 05 Dec 2022 11:16:47 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.mouseflow.com/projects/a5c8723d-5b80-4b04-8df5-425eccf81a04_eu.js
151.139.128.10200 OK 18 kB URL HTTP/2 cdn.mouseflow.com/projects/a5c8723d-5b80-4b04-8df5-425eccf81a04_eu.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (62675), with no line terminators
Hash fb7b912dd0eece3c7b6221e4b098672f
d409d6da6ca1599c985e7cb57f1dea5c1160667e
38a983a608253ff5147ebb6500241f1ec387af0b03167d3a56b61ca39d1292fd
GET /projects/a5c8723d-5b80-4b04-8df5-425eccf81a04_eu.js HTTP/1.1
Host: cdn.mouseflow.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abhayintegratedservices.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 11:16:47 GMT
cache-control: max-age=86400
content-encoding: gzip
content-length: 17575
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Nov 2022 13:05:09 GMT
accept-ranges: bytes
etag: "8070dea2a3d91:0"
server:
x-hw: 1670239007.cds212.sk1.hn,1670239007.cds209.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 917d281ca22c901597795b51fd9df338
be0e026d76f26092edfc1f67ea98ddc4a539439a
5f47f5ac32d4c80f29c4a69a830ec9427dd0055fc57973f01f73ec22503cd30c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2e388f1ab4ec88104f57cf23944ee684
39178c45ed645709cc388d5790b1b58a3272a62f
e33b88f6f77d90b65a8fed943a45623e51f1efbdae401a1652f24be68408dba0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b4c9bc834e851e84ac0f779a505ac0c6
f9746f1a2d68290ba8ba920ec78ecf1602f11eac
a3d9e104fbe02e14a43829a34689265973087658cbb9e7430ab03ed257b6e83f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/1004668939/?random=1645647994279&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=4090894009&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1004668939/?random=1645647994279&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=4090894009&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1004668939/?random=1645647994279&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=4090894009&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/img/favicon.ico
103.50.162.157200 OK 242 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/img/favicon.ico
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type MS Windows icon resource - 5 icons, -64x-64, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 242 kB (242142 bytes)
Hash b35d0dda49783541abcaab8f61083b76
af5c9c13f5c9de59ecfd9ad98b6f680c2114b438
b3e982ffba0784b0d1cc5541ce7f272b4a8a6540baab2a29880fb9295e6c741d
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
GET /dkb/assets/img/favicon.ico HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902; dtCookie=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258; rxVisitor=1670239003641K8BU9N6D3M2D82EGQ4LTBAN83JHAU18P; dtPC=-79$439003633_212h1vHJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0e0; rxvt=1670240804478|1670239003645; dtLatC=408; dtSa=-; tCdebugLib=1; tc_cj_v2=%5Ecl_%5Dny%5B%5D%5D_mmZZZZZZKPQJLMSJJNNOPZZZ%5D; tc_cj_v2_cmp=; tc_cj_v2_med=; TCPID=1221211116444623888563
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 11:16:47 GMT
server: Apache
content-type: image/x-icon
content-length: 242142
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
cache-control: max-age=604800
expires: Mon, 12 Dec 2022 11:16:47 GMT
x-server-cache: false
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
abhayintegratedservices.com/dkb/assets/css/dkb_responsive.min.css?etag=656cf0e1
103.50.162.157200 OK 246 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/css/dkb_responsive.min.css?etag=656cf0e1
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Size 246 kB (246332 bytes)
Hash ea7739c7ba22276c6cd4c85349244734
1b55be3950775520ad7bc65b9d4b50f47d8a497d
409e91095557a5bc3408a7ae0a80e1fc291c39b5c97b07f2b475bcd2d0a36f8c
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
GET /dkb/assets/css/dkb_responsive.min.css?etag=656cf0e1 HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/948238967/?random=1645647994287&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=906107331&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/948238967/?random=1645647994287&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=906107331&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/948238967/?random=1645647994287&cv=9&fst=1645646400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1040&u_aw=1920&u_cd=24&u_his=7&u_tz=120&u_java=false&u_nplug=5&u_nmime=2>m=2oa2g0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch&ref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php&tiba=DKB%20-%20Deutsche%20Kreditbank%20AG%20-%20Internet%20Banking&async=1&fmt=3&is_vtc=1&random=906107331&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/css/dkb-global.css?etag=9b9a5402bfdca7a80bdfde84cf57e86abb3d47e1
103.50.162.157200 OK 64 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/css/dkb-global.css?etag=9b9a5402bfdca7a80bdfde84cf57e86abb3d47e1
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 9ae04d00c4a63eb663ff915ac3864277
ea60840cb5aeb81894e085f2893c24ab08953723
1a8746670ff68fd239e982215d67aa81cf38a0c99f71b35f0bdd92c958fffe83
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
fortinet Phishing
GET /dkb/assets/css/dkb-global.css?etag=9b9a5402bfdca7a80bdfde84cf57e86abb3d47e1 HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 917d281ca22c901597795b51fd9df338
be0e026d76f26092edfc1f67ea98ddc4a539439a
5f47f5ac32d4c80f29c4a69a830ec9427dd0055fc57973f01f73ec22503cd30c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5767929539662;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch
142.250.74.130200 OK 281 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5767929539662;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (600), with no line terminators
Hash 2dba5096e622105cdbd931883ad0f31e
bb1629933da940843d666d4007952b752c4ca88f
3c84a32175ff166bfb191eab338f6b276b5d1ebbe104e60eafa5b5f2ad7e0075
GET /ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5767929539662;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11236391.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 281
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5ec31a65787cc77222f1312423476c4d
b3f18e8a2d79d9356b6344af74598eda6faa4830
49658c9cde8aa015f6c1464d67fec7c392c66b31459a783317f72c7b0a7d417f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2676
Cache-Control: max-age=116907
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Etag: "638cee56-1d7"
Expires: Tue, 06 Dec 2022 19:45:14 GMT
Last-Modified: Sun, 04 Dec 2022 19:00:38 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
adservice.google.com/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php
142.250.74.130200 OK 259 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (528), with no line terminators
Hash fe7de6b4391ee2f0be76d1db9c854831
c455db37d283f27c5c1b0b11db550f79e82b6d1e
bb35adaf2b9ceb62431ced3ed28dec8bd825112dc90deb83b7e6cbd8b418211f
GET /ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11236391.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=10578597;type=invmedia;cat=dkb_f0;ord=3525461671540;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch
142.250.74.130200 OK 285 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=10578597;type=invmedia;cat=dkb_f0;ord=3525461671540;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (600), with no line terminators
Hash 1bcb4fbd5450fed01a24c42489f453ab
48db5720ccc901b853443098b6b9fe0a569a8df4
e947af7e8b1a0fa1b25a9a00cd180705e5577a92a9833e2b386a1eb8cbd28da9
GET /ddm/fls/i/src=10578597;type=invmedia;cat=dkb_f0;ord=3525461671540;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10578597.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 285
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=10578597;type=invmedia;cat=dkb_f0;ord=2680592507673;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php
142.250.74.130200 OK 261 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=10578597;type=invmedia;cat=dkb_f0;ord=2680592507673;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (528), with no line terminators
Hash 668d50e758e3fe422debaf911f319b2c
b331f11b2565e2cdbfbfbecd9d3e5fea688acdf8
f00c1ea3817693b49c8b3cd0083b8a68d144117ce60f8292ff03811e837b9549
GET /ddm/fls/i/src=10578597;type=invmedia;cat=dkb_f0;ord=2680592507673;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10578597.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 261
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6e5cc4b8239bc84618e9e44c2a34183c
b1f0fa99d1d39374dfcf90123176e9c02eefedfb
9364a68bf91fd8ecf99b2ace1cf42318765e97165cb3ca3f7a88fe03bdd26f24
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6126
Cache-Control: max-age=145227
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Etag: "638d4f7c-1d7"
Expires: Wed, 07 Dec 2022 03:37:14 GMT
Last-Modified: Mon, 05 Dec 2022 01:55:08 GMT
Server: ECS (amb/6B81)
X-Cache: HIT
Content-Length: 471
omd.commander1.com/dc3/?chn=DIRECT_ACCESS&src=&type=C&limit=10&rand=0.7402905620166678
13.36.153.31200 OK 54 B URL HTTP/1.1 omd.commander1.com/dc3/?chn=DIRECT_ACCESS&src=&type=C&limit=10&rand=0.7402905620166678
IP 13.36.153.31:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 88dcd7871047159715d7f44b58f38d73
42fcfec12054feaca65da3fc6a821caef6fc701e
2b58eb0ca672e1bd4664d396ebdcbd97e51edbe64b682592125e79a7a58d3ab4
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
GET /dc3/?chn=DIRECT_ACCESS&src=&type=C&limit=10&rand=0.7402905620166678 HTTP/1.1
Host: omd.commander1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 11:16:47 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
Set-Cookie: tc_cj_v2=%5Ecl_%5Dny%5B%5D%5D_mmZZZZZZKPQJLMSJJQJJJZZZ%5D; expires=Tue, 05-Dec-2023 11:16:47 GMT; path=/; samesite=none; domain=omd.commander1.com; secure
Cache-Control: private, max-age=486000, pre-check=486000
Pragma: private
Expires: Sun, 05 Mar 23 12:16:47 +0100
Server: web
Access-Control-Allow-Origin: *
Content-Encoding: gzip
abhayintegratedservices.com/dkb/banking
103.50.162.157200 OK 22 kB URL HTTP/2 abhayintegratedservices.com/dkb/banking
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash 47efd351604cd7ccbfcd65810af5b1ed
0ca711013f9dbed77da8dad88e4fe6fe2c6144a2
99c6ef5516595904ce1c0f1e8cc11543b180dbde1a995f862245ec9a3c196405
Analyzer Verdict Alert openphish Deutsche Kreditbank
fortinet Phishing
GET /dkb/banking HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 05 Dec 2022 11:16:41 GMT
server: Apache
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
x-server-cache: true
x-proxy-cache: MISS
set-cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902; path=/
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5767929539662;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5767929539662;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5767929539662;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch;u2=;u3=1645647994;~oref=http%3A%2F%2Flocalhost%2Fdkb%2Fbanking.php%3FsearchField%3D%26%2524event%3Dsearch HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Mon, 05 Dec 2022 11:16:47 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php
142.250.74.66200 OK 85 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4a3b3637744caa4a0b08fabbd76cc830
755e5626762ecf38f55012da892a227bf50f15f1
6a12009f3d99f10dd5acb27389beefed79eddd7fa55ddcc591baf92861d51bfb
GET /ddm/fls/i/src=11236391;type=invmedia;cat=pagev0;ord=5148006054972;gtm=2od2g0;auiddc=1332618628.1645647370;u1=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php;u2=;u3=1645653114;~oref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Mon, 05 Dec 2022 11:16:47 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 85
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/ruxitagentjs_ICA2Vfhjqrux_10229211201102017.js
103.50.162.157200 OK 117 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/ruxitagentjs_ICA2Vfhjqrux_10229211201102017.js
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type ASCII text, with very long lines (1626)
Size 117 kB (116794 bytes)
Hash bbbcd0d502bbb8f38507d355c450f46f
07c1420ea2604452ae4f2789ad5c4ca34dbb1fd5
51d4209f561817486cb540dfd49bd3c22641b6ace3e4502e972b0c5b65297459
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/js/ruxitagentjs_ICA2Vfhjqrux_10229211201102017.js HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/tc_DKB_21.js
103.50.162.157200 OK 26 kB URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/tc_DKB_21.js
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Hash ccbc4bb2e68463addcca2c8fc15cb051
1f1f2ac53a033ae26ef1f9af29bff4ac0d57cfbf
68f05a240cd5987da15eb28f7c145f3cfdfdb73ef6f55a828817ecc3664020bd
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/js/tc_DKB_21.js HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b01b16fb7e18301251b0a89703e5895a
5237d4cd06bcfc464411fe5cdceaf93d13dcbd83
944a7b4600d41a8ea2fa5acb7ecb8021ecafd9d736a10f968682b3d189b77783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b01b16fb7e18301251b0a89703e5895a
5237d4cd06bcfc464411fe5cdceaf93d13dcbd83
944a7b4600d41a8ea2fa5acb7ecb8021ecafd9d736a10f968682b3d189b77783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion.js
142.250.74.130200 OK 17 kB URL HTTP/2 www.googleadservices.com/pagead/conversion.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (2772)
Hash ac7574cbc5b2e85b7ddfa76b8657e59d
2bbeec5531576d6352b1c2b74e0e05c1ea10251d
bdf1e52afba9d671ea698707f97e8609de6360c502dc7b6eed2f40f979e08387
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10578597.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 05 Dec 2022 11:16:47 GMT
expires: Mon, 05 Dec 2022 11:16:47 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16359567893097152046
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16827
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 181b661534dc3f6bbe887293452f685b
bf4e024b51870992b7b41ee50e570bebf4705bfb
4d7472e9a604e69e65040a318534883d14275d6ef7e19c6eb42a8a25099d8eeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:16:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleadservices.com/pagead/conversion/443063381/?random=1670239005348&cv=9&fst=1670239005348&num=1&npa=1&label=xwAICL7l9bUCENW4otMB&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F10578597.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D10578597%3Btype%3Dinvmedia%3Bcat%3Ddkb_f0%3Bord%3D2680592507673%3Bgtm%3D2od2g0%3Bauiddc%3D1332618628.1645647370%3Bu1%3Dhttp%253A%252F%252Flocalhost%252F%252Fdkb%252Fbanking.php%3Bu2%3D%3Bu3%3D1645653114%3B~oref%3Dhttp%253A%252F%252Flocalhost%252F%252Fdkb%252Fbanking.php&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
142.250.74.130200 OK 1.2 kB URL HTTP/2 www.googleadservices.com/pagead/conversion/443063381/?random=1670239005348&cv=9&fst=1670239005348&num=1&npa=1&label=xwAICL7l9bUCENW4otMB&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F10578597.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D10578597%3Btype%3Dinvmedia%3Bcat%3Ddkb_f0%3Bord%3D2680592507673%3Bgtm%3D2od2g0%3Bauiddc%3D1332618628.1645647370%3Bu1%3Dhttp%253A%252F%252Flocalhost%252F%252Fdkb%252Fbanking.php%3Bu2%3D%3Bu3%3D1645653114%3B~oref%3Dhttp%253A%252F%252Flocalhost%252F%252Fdkb%252Fbanking.php&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2066), with no line terminators
Hash fbbc7b478edafe3571315ab013cc6c74
6a10719bb008232fef4cfb086f53b211924a579e
de2d3e4a70e529acfbe7a5e12b0d716a44471bb7b4f6ed501abf069d80873b3f
GET /pagead/conversion/443063381/?random=1670239005348&cv=9&fst=1670239005348&num=1&npa=1&label=xwAICL7l9bUCENW4otMB&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F10578597.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D10578597%3Btype%3Dinvmedia%3Bcat%3Ddkb_f0%3Bord%3D2680592507673%3Bgtm%3D2od2g0%3Bauiddc%3D1332618628.1645647370%3Bu1%3Dhttp%253A%252F%252Flocalhost%252F%252Fdkb%252Fbanking.php%3Bu2%3D%3Bu3%3D1645653114%3B~oref%3Dhttp%253A%252F%252Flocalhost%252F%252Fdkb%252Fbanking.php&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10578597.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1188
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/443063381/?random=1670239005357&cv=9&fst=1670239005357&num=1&npa=1&label=xwAICL7l9bUCENW4otMB&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F10578597.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D10578597%3Btype%3Dinvmedia%3Bcat%3Ddkb_f0%3Bord%3D3525461671540%3Bgtm%3D2od2g0%3Bauiddc%3D1332618628.1645647370%3Bu1%3Dhttp%253A%252F%252Flocalhost%252Fdkb%252Fbanking.php%253FsearchField%253D%2526%252524event%253Dsearch%3Bu2%3D%3Bu3%3D1645647994%3B~oref%3Dhttp%253A%252F%252Flocalhost%252Fdkb%252Fbanking.php%253FsearchField%253D%2526%252524event%253Dsearch&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
142.250.74.130200 OK 1.2 kB URL HTTP/2 www.googleadservices.com/pagead/conversion/443063381/?random=1670239005357&cv=9&fst=1670239005357&num=1&npa=1&label=xwAICL7l9bUCENW4otMB&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F10578597.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D10578597%3Btype%3Dinvmedia%3Bcat%3Ddkb_f0%3Bord%3D3525461671540%3Bgtm%3D2od2g0%3Bauiddc%3D1332618628.1645647370%3Bu1%3Dhttp%253A%252F%252Flocalhost%252Fdkb%252Fbanking.php%253FsearchField%253D%2526%252524event%253Dsearch%3Bu2%3D%3Bu3%3D1645647994%3B~oref%3Dhttp%253A%252F%252Flocalhost%252Fdkb%252Fbanking.php%253FsearchField%253D%2526%252524event%253Dsearch&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP 142.250.74.130:0
File type ASCII text, with very long lines (2154), with no line terminators
Hash 73ce9305668babbb97dd05bed488643f
ba40bc929c44f92f69d1a6cc80c774b30ba53aa2
cf876bad05c465eb882b83873f413b99f21d7085db50c71de7f9de25c9021686
GET /pagead/conversion/443063381/?random=1670239005357&cv=9&fst=1670239005357&num=1&npa=1&label=xwAICL7l9bUCENW4otMB&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F10578597.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D10578597%3Btype%3Dinvmedia%3Bcat%3Ddkb_f0%3Bord%3D3525461671540%3Bgtm%3D2od2g0%3Bauiddc%3D1332618628.1645647370%3Bu1%3Dhttp%253A%252F%252Flocalhost%252Fdkb%252Fbanking.php%253FsearchField%253D%2526%252524event%253Dsearch%3Bu2%3D%3Bu3%3D1645647994%3B~oref%3Dhttp%253A%252F%252Flocalhost%252Fdkb%252Fbanking.php%253FsearchField%253D%2526%252524event%253Dsearch&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10578597.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 05 Dec 2022 11:16:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1211
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
abhayintegratedservices.com/rb_9e31b311-b969-45c7-a5f2-d3b2e54bbc91?type=js3&sn=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258&svrid=-79&flavor=post&vi=HJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0&modifiedSince=1645029733486&rf=https%3A%2F%2Fabhayintegratedservices.com%2Fdkb%2Fbanking&bp=3&app=4eedb1d900efdee9&crc=1850165435&en=83tqnrwd&end=1
103.50.162.157406 Not Acceptable 226 B URL HTTP/2 abhayintegratedservices.com/rb_9e31b311-b969-45c7-a5f2-d3b2e54bbc91?type=js3&sn=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258&svrid=-79&flavor=post&vi=HJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0&modifiedSince=1645029733486&rf=https%3A%2F%2Fabhayintegratedservices.com%2Fdkb%2Fbanking&bp=3&app=4eedb1d900efdee9&crc=1850165435&en=83tqnrwd&end=1
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 5360980bad11bf9723da89687501effc
1dd1a5c4e08392684b25d8f6cfd7d670b5d9db99
80a265bed528211aa708dcd58f7a95db36eeb7f873c6fe4ddab0b3a1dc0973a4
Analyzer Verdict Alert urlquery phishing Phishing - Deutsche Kreditbank
POST /rb_9e31b311-b969-45c7-a5f2-d3b2e54bbc91?type=js3&sn=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258&svrid=-79&flavor=post&vi=HJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0&modifiedSince=1645029733486&rf=https%3A%2F%2Fabhayintegratedservices.com%2Fdkb%2Fbanking&bp=3&app=4eedb1d900efdee9&crc=1850165435&en=83tqnrwd&end=1 HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 7693
Origin: https://abhayintegratedservices.com
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902; dtCookie=v_4_srv_-2D79_sn_01RUNIEOAPQ3MVOIBA2LN31DL0JA4258; rxVisitor=1670239003641K8BU9N6D3M2D82EGQ4LTBAN83JHAU18P; dtPC=-79$439003633_212h-vHJORKVJTBQFTOARCGUNRLLTVLIGLUTUP-0e0; rxvt=1670240805489|1670239003645; dtLatC=408; dtSa=-; tCdebugLib=1; tc_cj_v2=%5Ecl_%5Dny%5B%5D%5D_mmZZZZZZKPQJLMSJJNNOPZZZ%5D; tc_cj_v2_cmp=; tc_cj_v2_med=; TCPID=1221211116444623888563
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 406 Not Acceptable
content-length: 226
content-type: text/html; charset=iso-8859-1
date: Mon, 05 Dec 2022 11:16:49 GMT
server: Apache
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/tc_DKB_27.js
103.50.162.157200 OK 0 B URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/tc_DKB_27.js
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/js/tc_DKB_27.js HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2
match.adsrvr.org/track/upb/?adv=zg5fhtv&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&upid=gvxg0zp&upv=1.1.0
15.197.193.217200 OK 0 B URL HTTP/2 match.adsrvr.org/track/upb/?adv=zg5fhtv&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&upid=gvxg0zp&upv=1.1.0
IP 15.197.193.217:0
GET /track/upb/?adv=zg5fhtv&ref=http%3A%2F%2Flocalhost%2F%2Fdkb%2Fbanking.php&upid=gvxg0zp&upv=1.1.0 HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abhayintegratedservices.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 11:16:47 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
abhayintegratedservices.com/dkb/assets/js/tc_NTZ_23.js
103.50.162.157200 OK 0 B URL HTTP/2 abhayintegratedservices.com/dkb/assets/js/tc_NTZ_23.js
IP 103.50.162.157:0
ASN #394695 PUBLIC-DOMAIN-REGISTRY
Analyzer Verdict Alert fortinet Phishing
GET /dkb/assets/js/tc_NTZ_23.js HTTP/1.1
Host: abhayintegratedservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abhayintegratedservices.com/dkb/banking
Cookie: PHPSESSID=e55c7d80f029174bbc63131b5cbc9902
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Nov 2022 15:55:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Mon, 05 Dec 2022 11:16:45 GMT
server: Apache
X-Firefox-Spdy: h2