dlnl.newrequireddefence.site/c/a4510ff39c33bdb3?clickid={click_uuid}&bid={bid_cpc}&s1={s1}&s3={s3}&s4={subscriber_age_days}&s5={subid_uuid}&s6={zone_uid}&s7={platform_name}&s8={campaign_id}&s9={click_uuid}&sub1={sub1}
200 OK
3031
URL
HTTP/1.1
dlnl.newrequireddefence.site/c/a4510ff39c33bdb3?clickid={click_uuid}&bid={bid_cpc}&s1={s1}&s3={s3}&s4={subscriber_age_days}&s5={subid_uuid}&s6={zone_uid}&s7={platform_name}&s8={campaign_id}&s9={click_uuid}&sub1={sub1}
IP
Magic
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20195)
Hash
7833719d2c571a775950cd12641507c5
73f25a9be83d43dbf6c196de5bac96a399a63ec0
58eea1f5d4e1bae4fe943571ddd2192e5cef1b08828dd3ef6e5af36ffbae8f30
GET /c/a4510ff39c33bdb3?clickid={click_uuid}&bid={bid_cpc}&s1={s1}&s3={s3}&s4={subscriber_age_days}&s5={subid_uuid}&s6={zone_uid}&s7={platform_name}&s8={campaign_id}&s9={click_uuid}&sub1={sub1} HTTP/1.1
Host: dlnl.newrequireddefence.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 Mar 2023 07:01:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=6409843a000a3ef2; Path=/; Expires=Mon, 08 May 2023 07:01:14 GMT
unique_id2=6409843a000a5a68; Path=/; Expires=Wed, 07 Jun 2023 07:01:14 GMT
impression=; Path=/; Expires=Thu, 09 Mar 2023 07:01:14 GMT
6409843a000a5a68_sl=[269163]; Path=/; Expires=Thu, 23 Mar 2023 07:01:14 GMT
Content-Encoding: gzip
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
8f33f56c329fe0b1570d2ee3e000ce4e
b11fcecd7cc1210d3f3b4e1426a37d3cd138119e
ebcb744a032452533c000c0a9f193fd2566b2389729c41b6c5ed69b9e4cd42d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBCB744A032452533C000C0A9F193FD2566B2389729C41B6C5ED69B9E4CD42D4"
Last-Modified: Tue, 07 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15223
Expires: Thu, 09 Mar 2023 11:14:57 GMT
Date: Thu, 09 Mar 2023 07:01:14 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
7989fc4a69327c765a7e4e68f46c169b
1f3e8e6e9e640c3d99ec52dc947b68fa9c1d335b
b15c98c58fae6a49e831bc0db617bedf8538bbfa011a84553debdcbe461433d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B15C98C58FAE6A49E831BC0DB617BEDF8538BBFA011A84553DEBDCBE461433D0"
Last-Modified: Tue, 07 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7278
Expires: Thu, 09 Mar 2023 09:02:32 GMT
Date: Thu, 09 Mar 2023 07:01:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK
939
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
Magic
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Mar 2023 06:13:42 GMT
content-type: application/json
age: 2853
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
a8901ec6f89f9452d6335be4dd3c3821
aca9da9cfc93413247952e224ac69d684f51d3ac
560f8228fedc912e05b84af1d19fcefca3fec82415180df5d18c5b2a3f533a68
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560F8228FEDC912E05B84AF1D19FCEFCA3FEC82415180DF5D18C5B2A3F533A68"
Last-Modified: Tue, 07 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10207
Expires: Thu, 09 Mar 2023 09:51:22 GMT
Date: Thu, 09 Mar 2023 07:01:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
200 OK
5348
URL
HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP
Magic
PEM certificate\012- , ASCII text
Hash
b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OXn8VxI0zh32CfQ4iYk2h6Ilh4gOpZwUOf+ijS6SPlxGGpEEhasMOqdKFFWoscAQLir8AbPH9hI=
x-amz-request-id: NQJZSVN9GS7RV4YA
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Mar 2023 06:18:18 GMT
age: 2577
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK
12
URL
HTTP/2
contile.services.mozilla.com/v1/tiles
IP
Magic
JSON data\012- , ASCII text, with no line terminators
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Mar 2023 07:01:15 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/landings/269163/1672139499/js/translete.js?1672139499
200 OK
559
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/translete.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
7a2813dd2f72e952a133e5d6f13a808a
7472ee61fbd566913fd48f40f76e63edb9ea1faf
ea14a153c8c32aecd506eeb112e67542e62ea7e312dc77de3149df90c8a9336d
GET /landings/269163/1672139499/js/translete.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: RBr51T0ODz7gLEvfYhB0PkgolHvfW7YY71ygjuKu6iqrM//wOzG9CxCzs6hiJ9Qtg+wbYrmo7Wk=
x-amz-request-id: KA9V5CQZEQAVJ9EE
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "ec54980cfed635492cef5628111560d2"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 09 Mar 2023 07:01:15 GMT
Content-Length: 559
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/css/translate.css?1672139499
200 OK
655
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/css/translate.css?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
64836db20736f1e7995b43489b4bf0ac
a0db33db05acb39dd01d9f19f5eed634682b0ead
d4d21bac4b13cac53c0b921c3aa69d1e010a32ad3ccb7498821aa6e763e71c87
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/css/translate.css?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: m1koesbOjM1FnwtssaFj8KRRXHu4ZQb2oDwztpp80NRYTI6ZHi5QzvvM0Jjq6VHC73tayEY+6kPbTBiXBUZJLg==
x-amz-request-id: PVVTXWYMF2Y8EK4J
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "64836db20736f1e7995b43489b4bf0ac"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 655
Date: Thu, 09 Mar 2023 07:01:15 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/site-protect.2.0.js?1672139499
200 OK
1073
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/site-protect.2.0.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
85e3bd021961fdac95655a71435375f5
9d03222c7a2acb3c790270e3f07bebc485759db2
bd6d5b382238afd5ee6299972b66f4e22521fe96487dfc620be38e1743d71887
GET /landings/269163/1672139499/js/site-protect.2.0.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: xKbZacJsZcFI7rbKuvlXVIOIkFUlTUhHjSZWk3VPltkulgM5zjJp73TFWrlNmR63vui+4A4FWEY=
x-amz-request-id: BTXWXB4ERW6HYF1D
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "311a4a9bfb7699c36f9310aa8484b360"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 09 Mar 2023 07:01:15 GMT
Content-Length: 1073
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/main.js?1672139499
200 OK
769
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/main.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
a22a1a0161c2da8eab4d825d701e0d30
17a279b59fa2371f8661d5558662df7abdcf5442
4d7d84af0a913c75c83eda10419b18fd30ec7f481bf627fa89d8ff450df53580
GET /landings/269163/1672139499/js/main.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: PQZCeUSEbhEyzh003afg62eS7B/jShDAU3RV5yce8PIVr2kLxSHc61i4OWCGqf4CxmCrt3nuo94=
x-amz-request-id: KA9TERX046M833CX
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "a22a1a0161c2da8eab4d825d701e0d30"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 769
Date: Thu, 09 Mar 2023 07:01:15 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/second_back_multi.js?1672139499
200 OK
728
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/second_back_multi.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
cf00d833782706194b8c8d7a10222c7e
eb5fcbf9e53b3e2882d671cea6a73210effff810
b1d0dec6c93c760e5890b5f36ce72d46f4d9be7650d8eda017ef0bb640080b05
GET /landings/269163/1672139499/js/second_back_multi.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: lls0DRgQBq2n/mmtjeVxiDLMtmiBGmUoTvgSTAIu8Gfe0bcOHkmU8e2ixbeqMSB6omJUibRFJh4=
x-amz-request-id: KA9VE17XGGWX28E7
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "f428fe6667efbbe5781d64826256609b"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 09 Mar 2023 07:01:15 GMT
Content-Length: 728
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/js.cockie.min.js?1672139499
200 OK
826
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/js.cockie.min.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Magic
ASCII text, with very long lines (1619), with no line terminators
Hash
80f159394b22e099038b584495222009
49a38d579533fb963f8f0f94687b40f65713b8dd
2d1575e9baafcb2f70a5d4ff82e829c3722535c3b9921c0d1baf5b54a384b109
GET /landings/269163/1672139499/js/js.cockie.min.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: cCDo4f6FLKymtSZNbC/QVIccZi4HQ0ZWiN7YXNsNMXCLco/TkvnnP2bjBWF4f995sH+MEzhBLYU=
x-amz-request-id: KA9TJ4F1E9EHQ5W6
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "aeb03440821eecd362780d1d1f8f4751"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 09 Mar 2023 07:01:15 GMT
Content-Length: 826
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/css/style.css?1672139499
200 OK
2856
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/css/style.css?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
9e6e17753fd08ccffdaab4bc97d7af50
f4a6f23df54e760b305134eb5587ccd0b0c6ad49
01f65c67d47ef19588c9c3e19fc6e2e123ff3f0e2f1cfdf9ad61a655efe23cf8
GET /landings/269163/1672139499/css/style.css?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: p3RYYPyj5mCQTvtqzECfJe4yeU6LfPxkfxYcSd+aYzL9J2LLUM+GhCIiybZH4HAIh6hkRbEkp/U=
x-amz-request-id: 1G8T852E10VJTM4T
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "790ea33cbfafd3311bd7083f70a179c6"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 09 Mar 2023 07:01:15 GMT
Content-Length: 2856
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/interactive.js?1672139499
200 OK
5095
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/interactive.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Magic
ASCII text, with very long lines (24988), with no line terminators
Hash
4f6795f72fdbcb15309fd2aaba55302d
d613bd45610ff3a3e0a581d360847f01de563368
787035c2e2a9154a7ab7805185cf09b73f252b86221c975244259db327db8193
GET /landings/269163/1672139499/js/interactive.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fx8XehK/mY2+pnF/+qBagZ8X9erkTePt+SvjWVf3hUnOQ/fYwwX39X8d5w3C3AnKxdRT91i4XGA=
x-amz-request-id: 6NB5GVSMDVQPG7P9
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "7f1b8cc7b3f5bae928d07c8605d0c0d8"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 09 Mar 2023 07:01:15 GMT
Content-Length: 5095
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK
329
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
Magic
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Last-Modified, Retry-After, Expires, Pragma, Content-Length, Cache-Control, Alert, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Mar 2023 06:12:30 GMT
age: 2925
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
bc9a86b8d3035b57b58750f8896202e8
1485042fff689cadbf0c7a540f430993f23d45e3
b06e4961e184d51008f4adb9c8fe571f08b21b4728e5eac0bb4795861e03aa2f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B06E4961E184D51008F4ADB9C8FE571F08B21B4728E5EAC0BB4795861E03AA2F"
Last-Modified: Tue, 07 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7323
Expires: Thu, 09 Mar 2023 09:03:18 GMT
Date: Thu, 09 Mar 2023 07:01:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
f2dafcd870692da6e90720afafc304b0
c39aff9576aaf7b901b5850caf16e56cfbf05e6f
1bdc6c3e3aa6deb4821aae4b9dad1b9d8d6931baadb31b7fac92da1da25a1de4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BDC6C3E3AA6DEB4821AAE4B9DAD1B9D8D6931BAADB31B7FAC92DA1DA25A1DE4"
Last-Modified: Tue, 07 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8101
Expires: Thu, 09 Mar 2023 09:16:16 GMT
Date: Thu, 09 Mar 2023 07:01:15 GMT
Connection: keep-alive
cdn.stfilecamp.com/multi_push.js?1672139499
200 OK
1072
URL
HTTP/2
cdn.stfilecamp.com/multi_push.js?1672139499
IP
Hash
a50322f9d3f3fafe3fb02be02285e433
c0a894b3bfa545832c3ad1c2f145005d02e50ac4
cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /multi_push.js?1672139499 HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Mar 2023 07:01:16 GMT
cache-control: max-age=3600
content-length: 1072
content-type: text/javascript
last-modified: Thu, 07 Jul 2022 14:21:23 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "a50322f9d3f3fafe3fb02be02285e433"
x-amz-request-id: tx0000000000000123c3bcf-006409843b-30482482-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1678345275.dop009.sk1.t,1678345275.cds071.sk1.hn,1678345276.cds231.sk1.pr
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols
0
URL
HTTP/1.1
push.services.mozilla.com/
IP
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sA/z9Iu40Fhpv198ieoXIw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: l2znBaRdDVs8fw88vbWySp0lj78=
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672139499
200 OK
92013
URL
HTTP/1.1
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672139499
IP
ASN
#14061 DIGITALOCEAN-ASN
Magic
ASCII text, with very long lines (65447)
Hash
0dd85f14c26ab969e3821b1242e990dc
93fab83252b745e1c443d3e2f9aade1ac24f20ba
b6e8a194a1a400ed9f2ce3155e243ccd3a0740066a3d39bc06a7a56193290995
Analyzer
Verdict
Alert
quad9
Sinkholed
GET /ajax/libs/jquery/3.6.0/b/jquery.min.js?1672139499 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Thu, 09 Mar 2023 07:01:16 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Thu, 09 Mar 2023 19:01:16 GMT
cdn-adef.akamaized.net/landings/269163/1672139499/images/info.png
200 OK
1545
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/info.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 23 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash
7f7b44979afb15dfdc18e7d754c6d0f5
7426889578a3a6f20f620611f7ea8d4dadaf3b87
cb2eff4a1cf5f187eda87e71d6039f24af63844617a7f890070b9afd5c965a33
GET /landings/269163/1672139499/images/info.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 3jtURFiCRvsc82AUG5TkAfd0UepvSkEhcjkzjakmEnXBlt6KIm++0du4w/LC0aQohI5/itzTCEQ=
x-amz-request-id: K7HM40PXX8MB56H5
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "7f7b44979afb15dfdc18e7d754c6d0f5"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1545
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon2.png
200 OK
4856
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon2.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 152 x 121, 8-bit/color RGB, non-interlaced\012- data
Hash
a0f86853c68b824dd5c15b0fae66fdfe
0c8ba75f1370ba3c10a309be4c1c96a5067c6098
f58fdb3b3ba6dc0943458179df29efb7201b84ff2edbf03d9ad5cb26c4e52917
GET /landings/269163/1672139499/images/icon2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 9Z00U4wwm31EDuARvnRPhgp7LUdGmkNuZ+jtUseRIcuKCGx7auDhwuGfXPOKfStKJc3jC9aSgOQ=
x-amz-request-id: K7HX6PM4875QWRQM
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "a0f86853c68b824dd5c15b0fae66fdfe"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4856
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray1.gif
200 OK
69
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray1.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 16 x 16\012- data
Hash
3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/ico_tray1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 8rHGMuTm081q3OZNSxySXfNnfF7lFK087LDFa/jcWW2HTauc5GALlo9BoeIPKayFqHTQBzGP2Ro=
x-amz-request-id: BTXKQNVJ9WQ21P8N
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "3ae573d079dcd1d2da4086f2c0c72c45"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 69
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/cross.gif
200 OK
211
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/cross.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 29 x 29\012- data
Hash
45b0c8a1e52d91e8cf84eaf75ebca9a9
0e358b8571f9062dedfacd0c31d54179270153cd
4e635bdab7a300d0ccb5aac26b4610a07ee1b33643578c1a4308e677d7eb595d
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/cross.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: aywY6F4HxWehNhNEbrCtvbShIMeL0qSqSrQFyRD9sHW1O2i9rVTk8l6BKyfHktJ9fzV2UEIjctA=
x-amz-request-id: KA9HGV7QBDBCMWCR
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "45b0c8a1e52d91e8cf84eaf75ebca9a9"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 211
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-logo.png
200 OK
4226
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-logo.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash
2dd0fb3f8327cbd8ae041f7fdb1eb8bf
35cbcecbf827dbf814f249ff6f3124d671afd1a3
98035853429a64f9c5e3a1eb3dacd1592b1eda2f5ec5e54b02fe427e117f0f26
GET /landings/269163/1672139499/images/avira-logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 1+h+RT9BtRhCz7nMkml/raZsgUuaPyN6tI+euz+2Oq5SG9ZqCwgcmiD62jMZz8NkT+BEbAKkQNI=
x-amz-request-id: 272YFFD44BWGDWNV
Last-Modified: Tue, 27 Dec 2022 11:11:40 GMT
ETag: "2dd0fb3f8327cbd8ae041f7fdb1eb8bf"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4226
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon1.png
200 OK
5928
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon1.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 139 x 130, 8-bit/color RGB, non-interlaced\012- data
Hash
fa6582524d715994e9d9036eca9b034b
06cce1b23faba93959df12a9eccaa3d6f51341ce
cf05a371ab1261c3e1f2785e26c95cc5869b37de15c9d48206e78a58894a0cdc
GET /landings/269163/1672139499/images/icon1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YbsI7DilU5zBu5knsJ8i+1BXPP48nOOBmc4qjXAGDQPUWvLZN5kjHGRR6U6olCbSd39K196W044=
x-amz-request-id: KA9JEQAQ5K5X3Y90
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "fa6582524d715994e9d9036eca9b034b"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5928
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_cls.png
200 OK
293
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_cls.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash
9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/win_cls.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dWS/3TyDgCvNOYIyysfKdsg3QExzvGZLhggAQl3On4cFu5rmWCaCPSzoLMZLnGidmBvjw9BLwwc=
x-amz-request-id: PJEWFMXG3K40E7YT
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "9eb68d2ce05c151bda542a7a6356e22c"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 293
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray2.gif
200 OK
377
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray2.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 16 x 16\012- data
Hash
c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/ico_tray2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5iI+bSa6MYbk39zvGwwQSCjrPaD2GXUYCAoUE7wuITowVD2EHVcmqfO+qE3538EJ+lNX6Ti6iXs=
x-amz-request-id: KA9RNVERQAW3C4VD
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "c10bdec858cb0cf9e6cc5865d5925746"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 377
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon3.png
200 OK
5904
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon3.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 137 x 131, 8-bit/color RGB, non-interlaced\012- data
Hash
8a07f71c9d0642e8b94bd2b9687c768f
fb2f6f1a6a421101a4b10c315f340d0565709abf
e77edd6c132664f48fb66468de2e1b5068d61e9f04e03d6a51668b14d00af0ed
GET /landings/269163/1672139499/images/icon3.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 2oeU8IYOvk8wP1hM0lDHt1BTf3zzvO67HfUoI09XuTXSwfUs/AxFbTmI76KB9zRToW2ZRAacnEg=
x-amz-request-id: 3E8C2MPK8644K5E4
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "8a07f71c9d0642e8b94bd2b9687c768f"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5904
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray3.gif
200 OK
234
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray3.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 16 x 16\012- data
Hash
9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/ico_tray3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: rxSK2BNA1W/YjEKUIts4FItidi+GdPhop2yQZ96OH4PXBgQATw2rzb1EgR4v+GOT9DKrF1UCFKQ=
x-amz-request-id: KA9MJYWHDQRMV19H
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "9ce99ec458daf212f9812a90f3fadd13"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 234
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_min.png
200 OK
128
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_min.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash
0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/win_min.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FudlGOv1GiZ4z/ZQibdNN4UZPnm8Q/McRNYeTG60veA3lktfYXcnuvb1fg0DfMQN6T1V+FGxbDQ=
x-amz-request-id: PJEXCSDVGY5AD47G
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "0bb86caf792dd7d24731c18cd37bb68e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 128
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icons.png
200 OK
1932
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icons.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 124 x 22, 8-bit/color RGB, non-interlaced\012- data
Hash
32fded5a952e60a48a879e414c590f24
834e44460475c20ce9f4c801a4ccf53130749af3
d712d6bf38edf55c605c2a568ce2de1caae95d26b00c02c4f9a1eed6f370d76e
GET /landings/269163/1672139499/images/icons.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: W1tosXrCbLo2ChU9HBtkwud4mH8NbMsXbOkF9QZ2VBGecRbljQ+xB4sAubwZWkCNoWYDl+JvGPs=
x-amz-request-id: KA9WBBQZKP0CG32V
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "32fded5a952e60a48a879e414c590f24"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1932
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-white.png
200 OK
59078
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-white.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced\012- data
Hash
15cac20be8d4fdd074e21a4a52604d2f
fd4c43583bec2c7bfae3cb9feb2699abbc50c578
d4ad291dfcf93d75db62260b5ba53ddda1f2a9c855a3019cf7ae52c3cd936739
GET /landings/269163/1672139499/images/avira-white.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ADVEAI/4KwxUp9mHlPPC3GBsFd+GA01Fq2PcKP8iMZ7BHyinVlP6I6pQ7YW/6x3hBJPH5CFJyGg=
x-amz-request-id: KA9NBPFQ04YFH522
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "15cac20be8d4fdd074e21a4a52604d2f"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 59078
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/logo.jpg
200 OK
7653
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/logo.jpg
IP
ASN
#20940 Akamai International B.V.
Magic
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash
04cafbd162493b66a25988eb1cb58d07
fc780a93ddbacd25467c56bfb6bd46e8bc94503e
7aeb8ef4156327a8bb0c98b0f6ecc8409ab462a64c61df589c7e2477bd761628
GET /landings/269163/1672139499/images/logo.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: OJne/AHSW5isVEfwyuu+Baz9AcCp85pWoth83ii39YKGd+XHCa+3y736XfDDQCUh9LIMh08IGLQ=
x-amz-request-id: KA9ZY3Z0A4TBF45E
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "04cafbd162493b66a25988eb1cb58d07"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 7653
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu4.png
200 OK
1812
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu4.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
7af58322b67083908a8519d74471f47d
256a9119feb235759cf98f211bc6398f58c4ee43
bfab83c5a6c9c62450668ba960527fc9b17ed316a52436f0f63fd1eedcd45a3d
GET /landings/269163/1672139499/images/menu4.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: zenhbi5Qdb541LZjp74gTp3ZbQ9xfZO30rpW2UomHTPkEUD3AZ2cv/5Ur996ElSbLAOm6EHVsyc=
x-amz-request-id: K7HQY3KSRAPY0W9T
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "7af58322b67083908a8519d74471f47d"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1812
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu1.png
200 OK
1920
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu1.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
b2b98941a9fe6bbcb6745989b3289b1e
5fb8fce5934af6d3426a37eb58b9846fa80ead39
d9efcb7b0f632cb3d2650c0c676b3c758f00c52f5d1cc5e7963dd456aaa03833
GET /landings/269163/1672139499/images/menu1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ISI+S+dPLUEmLivgZGaAGaFq4U7709vn/b2IYUMcCVMb6M6Rrc8+7d8nBiMgPbbQljb80Rqq/C8=
x-amz-request-id: K7HJ5Y7NSEZHGKYW
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "b2b98941a9fe6bbcb6745989b3289b1e"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1920
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu2.png
200 OK
1665
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu2.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
bc32798c28d2145f979848809ba5f858
7bc0276cd56bf6463113a9c5d33ea9aacbdb5f51
7319ffc0fdb40740b07f1a286348fa0f29676127996481b6310f3dd7f322d4ee
GET /landings/269163/1672139499/images/menu2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: D4Yz5B7mD5DEwVwtKTFTfsaKc6jFF0nzbmeCmboFHu1nqoNCF6HGRn6FIcfGDq55pintKThbTeQ=
x-amz-request-id: ACF31DPAKK1W3YPX
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "bc32798c28d2145f979848809ba5f858"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1665
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu3.png
200 OK
1483
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu3.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
860d945f4bba4b150b4c6300bdd87527
4c3f11a2902bf437bb578871f7e27625f0ae6504
bdca8ddc4aaf7200e8c215c5eedeae489626d9df23313578ac0cfe45854ea0c8
GET /landings/269163/1672139499/images/menu3.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: OteTT61eaop2SS5CCOalHcZxfh+bMC2rAu74vjpPbG56VWuYpgc3+pYhcbnbf0vpAAOzW4pEPKk=
x-amz-request-id: K7HK1DKV2N0DKGDM
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "860d945f4bba4b150b4c6300bdd87527"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1483
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/check.png
200 OK
1946
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/check.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 35 x 34, 8-bit/color RGB, non-interlaced\012- data
Hash
1eab4e4fb7a147352b0027c0e4df1fe6
99e621180265541383f5c081cd6f7c77b7d21e0d
a66a5ce08b112086075a336e9f18d5cea683143b552a50641971ef00d3895207
GET /landings/269163/1672139499/images/check.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: G6HZlw3oJXWMw9z2MXAFWsNJu7D+4BdGTM38bhVnKuFPSZKnPtbsF1dgX2YcqhWKKYf8t4CUWRU=
x-amz-request-id: KA9KDKAH7JFGXWM5
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "1eab4e4fb7a147352b0027c0e4df1fe6"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1946
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/globe-alpha.png
200 OK
302963
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/globe-alpha.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 1440 x 700, 8-bit gray+alpha, non-interlaced\012- data
Hash
bc336a3a0c484d7c65299b9c4af45596
36cb2608b4fef19277220dab7e0cb0a623eee289
af9a953b12a4994939f45054e31302a7b1f59577f69c21376821cf9b922b414b
GET /landings/269163/1672139499/images/globe-alpha.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/landings/269163/1672139499/css/style.css?1672139499
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: NwNg62f5Rpx9p7NY9DU7RJpqC7cNjH0EEOu8MIKzuh2j4HC8XZZYdPr3W6xZ+nwAYXL10wSOPl0=
x-amz-request-id: KA9PD5DESR83PF1J
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "bc336a3a0c484d7c65299b9c4af45596"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 302963
Date: Thu, 09 Mar 2023 07:01:16 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn.stfilecamp.com/stormtrk.js
200 OK
6807
URL
HTTP/2
cdn.stfilecamp.com/stormtrk.js
IP
Hash
39e5f8ad757fe438c784e8d883e47ab0
6b2905489485100c83605f43186c5843031e1f3b
e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a
Analyzer
Verdict
Alert
fortinet
Phishing
GET /stormtrk.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Mar 2023 07:01:16 GMT
cache-control: max-age=1392
content-length: 6807
content-type: text/javascript
last-modified: Sat, 24 Dec 2022 08:48:24 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "39e5f8ad757fe438c784e8d883e47ab0"
x-amz-request-id: tx000000000000012380bb6-0064097b9c-30769e63-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1678345276.dop009.sk1.t,1678345276.cds071.sk1.hn,1678345276.cds014.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/K65h7ENLtOQ
200 OK
472
URL
HTTP/1.1
ocsp.pki.goog/s/gts1p5/K65h7ENLtOQ
IP
Hash
412fb9d70ccfb9f9389df9ca5cf1b85d
1b56669bf795cd932d8dd99d97bf47cc5d0c15c2
f4881940b8ab5282dc575f96e9c574414af8f714797ef0d1599aa08adf5001c2
POST /s/gts1p5/K65h7ENLtOQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Mar 2023 07:01:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stormtrk.com/api/1.0/ping/pong?location=http%3A%2F%2Fdlnl.newrequireddefence.site%2Fc%2Fa4510ff39c33bdb3%3Fclickid%3D%7Bclick_uuid%7D%26bid%3D%7Bbid_cpc%7D%26s1%3D%7Bs1%7D%26s3%3D%7Bs3%7D%26s4%3D%7Bsubscriber_age_days%7D%26s5%3D%7Bsubid_uuid%7D%26s6%3D%7Bzone_uid%7D%26s7%3D%7Bplatform_name%7D%26s8%3D%7Bcampaign_id%7D%26s9%3D%7Bclick_uuid%7D%26sub1%3D%7Bsub1%7D
200 OK
32038
52.51.27.131
23.36.77.32
205.185.216.42![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/info.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2finfo.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icon2.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficon2.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray1.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fico_tray1.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/cross.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fcross.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-logo.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2favira-logo.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icon1.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficon1.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/win_cls.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fwin_cls.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray2.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fico_tray2.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icon3.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficon3.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray3.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fico_tray3.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/win_min.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fwin_min.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icons.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficons.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-white.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2favira-white.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/logo.jpg](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2flogo.jpg"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu4.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu4.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu1.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu1.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu2.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu2.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu3.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu3.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/check.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fcheck.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/globe-alpha.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fglobe-alpha.png"){kind=link}