| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php | 208.115.218.22 | 200 OK | 1.6 kB |
URL User Request GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
CertificateIssuercPanel, Inc. Subjectatbu.edu.ng Fingerprint82:12:4F:F5:B3:8F:6D:99:2E:0F:17:ED:C1:46:73:C2:A4:F5:28:97 ValidityMon, 04 Mar 2024 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashdcf8d7bca8ca9bf7e476bb2a0fb8aade bc895f3d011c26ea628831ef53a139a10c90a284 13c7505100e07ea9511d89a5b91d21b8ad70c9a1af254149843f11ff21281c21
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL | OpenPhish | phishing | DHL Airways, Inc. | PhishTank | phishing | Other |
GET /wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:02:53 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=aa412d3a2cb63f28832a2ad5dd2b520c; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1591
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js | 104.17.24.14 | 200 OK | 3.1 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js IP104.17.24.14:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (542) Hashcc290e6c3aeecf5021dd82ad8df2512a fb983aecd3940e8ebbfe5e74c8099cee9223c957 2a0db34dc14ef4b5ce73b230701c7561e5012667a4c9cb274ecab646e1474995
GET /ajax/libs/jquery.mask/1.14.16/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 00:02:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 3074
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-2087"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 8790
expires: Tue, 15 Apr 2025 00:02:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dEHtkQhVCmSEKKTx4IuDbQZcetoYH9MJ8iGvVCmRDJxaGuqzKUkLYu5Pj%2Fh%2BTLK8sf7nUTsWoXDiQax9Sf%2BNVZbcRJfO%2FztjmtEQ2EHhO4S6vax0bHa4CwDP1yEofYM7pIW3v28T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879a111cd850b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js | 104.17.24.14 | 200 OK | 418 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/js/all.min.js IP104.17.24.14:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65317) Size418 kB (418541 bytes) Hashd5beb8fa265f90be5ccadd6b32b8672f 7bdc23c06b51e7e42c05de486680a3c18aa5ce5a 6a769e18b06859751eaa2259044a6ff76e3ddcd6572a516d8ce3a2d7b8c7538e
GET /ajax/libs/font-awesome/6.2.0/js/all.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 00:02:53 GMT
content-type: application/javascript; charset=utf-8
content-length: 418541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630e6e62-662ed"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 800030
expires: Tue, 15 Apr 2025 00:02:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2Fy6E%2F8eCvnK6ZyA2UgEOJ6oWrj%2BfC2Gxk7TbR9D03WHBnfF1TS50mnIDq1yz8PKNHpX7EUin6%2BL34lrwaVG67TPkgrE5tPqX%2B70uKi4S6YyoYMW%2FkVXs1gEcZf89SHyP%2BGDoT7J"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 879a111cd83cb517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js | 151.101.129.229 | 200 OK | 24 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js IP151.101.129.229:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hash0aa8d64e726c4a57adb5c88f9115996b 901169527507ff9e662cf64d8e361f359308970d 7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:02:53 GMT
age: 217956
x-served-by: cache-fra-eddf8230080-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23943
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css | 151.101.129.229 | 200 OK | 25 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css IP151.101.129.229:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeUnicode text, UTF-8 text, with very long lines (65306) Hashabe91756d18b7cd60871a2f47c1e8192 7c1c9e0573e5cea8bad3733be2fc63aa8c68ea8d 7633b7c0c97d19e682feee8afa2738523fcb2a14544a550572caeecd2eefe66b
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:02:53 GMT
age: 27526614
x-served-by: cache-fra-eddf8230097-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.1.min.js | 151.101.2.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.6.1.min.js IP151.101.2.137:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash00727d1d5d9c90f7de826f1a4a9cc632 ea61688671d0c3044f2c5b2f2c4af0a6620ac6c2 a3cf00c109d907e543bc4f6dbc85eb31068f94515251347e9e57509b52ee3d74
GET /jquery-3.6.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15e40"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 25 Apr 2024 00:02:53 GMT
age: 14619859
x-served-by: cache-lga13629-LGA, cache-hel1410029-HEL
x-cache: HIT, HIT
x-cache-hits: 11, 269153
x-timer: S1714003374.625125,VS0,VE0
vary: Accept-Encoding
content-length: 30957
X-Firefox-Spdy: h2
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/helpers.css | 208.115.218.22 | 200 OK | 4.8 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/helpers.css IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuercPanel, Inc. Subjectatbu.edu.ng Fingerprint82:12:4F:F5:B3:8F:6D:99:2E:0F:17:ED:C1:46:73:C2:A4:F5:28:97 ValidityMon, 04 Mar 2024 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (41897), with CRLF line terminators Hash726c60fc192383fbcf04e19677ad0959 e2e966c2b6164806392449ced617227c27d36ab8 1c7070cf33da6adcb7a6b9ff7eb6e06fd8f64958622d61569b990e8b92c58615
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/css/helpers.css HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=aa412d3a2cb63f28832a2ad5dd2b520c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:02:53 GMT
Server: Apache
Last-Modified: Thu, 06 Oct 2022 11:31:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4814
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/js/js.js | 208.115.218.22 | 200 OK | 3.0 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/js/js.js IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuercPanel, Inc. Subjectatbu.edu.ng Fingerprint82:12:4F:F5:B3:8F:6D:99:2E:0F:17:ED:C1:46:73:C2:A4:F5:28:97 ValidityMon, 04 Mar 2024 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (7339), with CRLF, LF line terminators Hash0f3cbf837ec8ca44afcdfb1b97e6b2e9 3b758416626abcaf74959b6326524919754e30e0 6d2b5289637fb53253e736f4cfcb9893017535fdbc31faf17c8aa00d9a3f9610
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/js/js.js HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=aa412d3a2cb63f28832a2ad5dd2b520c
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:02:54 GMT
Server: Apache
Last-Modified: Thu, 13 Oct 2022 13:01:12 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2970
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/javascript
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/style.css | 208.115.218.22 | 200 OK | 1.5 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/css/style.css IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuercPanel, Inc. Subjectatbu.edu.ng Fingerprint82:12:4F:F5:B3:8F:6D:99:2E:0F:17:ED:C1:46:73:C2:A4:F5:28:97 ValidityMon, 04 Mar 2024 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File typeASCII text, with very long lines (8355), with CRLF line terminators Hasha069deeaea648f7808b57a558e236a24 5b69df096fae1687c08fc844fdb2671daade4cf1 c92e87c72b7e7c1ae975fb98f028fe3dcf87ea7d32ef7a4b093929fa06083af3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/css/style.css HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=aa412d3a2cb63f28832a2ad5dd2b520c
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:02:54 GMT
Server: Apache
Last-Modified: Mon, 17 Oct 2022 08:01:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1501
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/glo-footer-logo.svg | 208.115.218.22 | 200 OK | 3.5 kB |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/glo-footer-logo.svg IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuercPanel, Inc. Subjectatbu.edu.ng Fingerprint82:12:4F:F5:B3:8F:6D:99:2E:0F:17:ED:C1:46:73:C2:A4:F5:28:97 ValidityMon, 04 Mar 2024 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd1b0e043744fd642282117a03d308b17 d8abe7a0887b804e516c45a344c542e291a1a84b 5162de2ee844a80d76b7d7514c02ab7d5de72a5966113323d80eb56bf6ded038
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/imgs/glo-footer-logo.svg HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=aa412d3a2cb63f28832a2ad5dd2b520c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:02:54 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 23:39:22 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3537
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/logo.svg | 208.115.218.22 | 200 OK | 722 B |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/logo.svg IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuercPanel, Inc. Subjectatbu.edu.ng Fingerprint82:12:4F:F5:B3:8F:6D:99:2E:0F:17:ED:C1:46:73:C2:A4:F5:28:97 ValidityMon, 04 Mar 2024 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash3fecc9db35d5d2a9e6e71ab4b02d22e5 628ba2f505b480097445aaf08649a08242bd6847 362bcaa42090e36611031bec6bdaa0600375ef847092cca195c58d3bae9b4419
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/imgs/logo.svg HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=aa412d3a2cb63f28832a2ad5dd2b520c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:02:54 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 23:17:44 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 722
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP216.58.207.227:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://atbu.edu.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 02:02:48 GMT
expires: Wed, 23 Apr 2025 02:02:48 GMT
cache-control: public, max-age=31536000
age: 165606
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP216.58.207.227:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://atbu.edu.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:21:46 GMT
expires: Fri, 18 Apr 2025 17:21:46 GMT
cache-control: public, max-age=31536000
age: 542468
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2 IP216.58.207.227:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22504, version 1.0 Hash1c6c65523675abc6fcd78e804325bd77 898d9808304dc157f5dcb18ca169ec6e2b96b3d7 08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v24/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://atbu.edu.ng
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:32:51 GMT
expires: Fri, 18 Apr 2025 02:32:51 GMT
cache-control: public, max-age=31536000
age: 595803
last-modified: Tue, 02 May 2023 15:12:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/ff.ico | 208.115.218.22 | 200 OK | 325 B |
URL GET HTTP/1.1atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/media/imgs/ff.ico IP208.115.218.22:443 ASN#46475 LIMESTONENETWORKS
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuercPanel, Inc. Subjectatbu.edu.ng Fingerprint82:12:4F:F5:B3:8F:6D:99:2E:0F:17:ED:C1:46:73:C2:A4:F5:28:97 ValidityMon, 04 Mar 2024 00:00:00 GMT - Sun, 02 Jun 2024 23:59:59 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hashd8106bf3a1d00ab43b01e6e3c92500eb 202b5e8654ab1b28351378293bca3b9d844cc29b 9ada5709e264c31b04a05bd85448a9bd5e91925e8d83df5cef0762ec97cc283e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /wp-admin/js/widgets/dhl/tracking/media/imgs/ff.ico HTTP/1.1
Host: atbu.edu.ng
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php
Cookie: PHPSESSID=aa412d3a2cb63f28832a2ad5dd2b520c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 25 Apr 2024 00:02:54 GMT
Server: Apache
Last-Modified: Mon, 26 Oct 2020 23:25:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 325
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/x-icon
|
|
| fonts.googleapis.com/css2?family=Lato:wght@300;400;700;900&display=swap | 142.250.74.106 | 200 OK | 3.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Lato:wght@300;400;700;900&display=swap IP142.250.74.106:443
Requested byhttps://atbu.edu.ng/wp-admin/js/widgets/dhl/tracking/fV5EjH/msg.php CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (3140), with no line terminators Hashee245902afd9b396d86e288b6789aaf2 af50bd3a7dcbd224e0b53d5f3b249647d15cd367 9b50ea58e08c611673f2ef27188071265fc6816fa6734d148c46a6769831dec9
GET /css2?family=Lato:wght@300;400;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://atbu.edu.ng/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 Apr 2024 00:02:54 GMT
date: Thu, 25 Apr 2024 00:02:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|