r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cd2bda30513692aa11a672c6a599935d
a944c3aa26b461063194a4bb95ce427d23a32d03
d975d1eab40c9fe4986ae0675d79e4f982eb9c0e2f503ca72b3bdf0ec9e7dfdc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D975D1EAB40C9FE4986AE0675D79E4F982EB9C0E2F503CA72B3BDF0EC9E7DFDC"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2428
Expires: Wed, 28 Dec 2022 19:15:18 GMT
Date: Wed, 28 Dec 2022 18:34:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 259d3eba2ac4ea32f0410a59bd01c18a
ab02cd69e6c04e3842ad1778fb0daa6d0e86fddc
0d6ec941dac6d97a0b24c0cf00a5642a4edda68ae5ec8b3019d1ec05f40d2281
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D6EC941DAC6D97A0B24C0CF00A5642A4EDDA68AE5EC8B3019D1EC05F40D2281"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8929
Expires: Wed, 28 Dec 2022 21:03:39 GMT
Date: Wed, 28 Dec 2022 18:34:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b2d59bdbb1ca6324590988ec031cf1fc
bfd4e25af37dcde4bac38d9b178c5ac8e50f8834
cef2180120ef42ff09d54577229c058d41d2c569d485f5a6dcfadc74bf8aa647
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEF2180120EF42FF09D54577229C058D41D2C569D485F5A6DCFADC74BF8AA647"
Last-Modified: Mon, 26 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3107
Expires: Wed, 28 Dec 2022 19:26:37 GMT
Date: Wed, 28 Dec 2022 18:34:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 28 Dec 2022 17:46:47 GMT
content-type: application/json
age: 2883
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: T6b8t3fuF49SIaOYyFdKyQMGEHPYXSllrgHJNPtnp5/vRnPdrdtbiqozlsBmOYUabRlRpIT1c3c=
x-amz-request-id: 9F3KK5K9RYH7R05D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Dec 2022 17:58:25 GMT
age: 2185
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 18:34:50 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0661f3ea73504851fee20d97beed78e5
668449e7c12146d4949ab2cfdc0be3f90b2135bb
af30b454c08ecc58cbd34f6277a1c1700122b4a0094b6eb77e898c369918ec71
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AF30B454C08ECC58CBD34F6277A1C1700122B4A0094B6EB77E898C369918EC71"
Last-Modified: Wed, 28 Dec 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Thu, 29 Dec 2022 00:34:37 GMT
Date: Wed, 28 Dec 2022 18:34:51 GMT
Connection: keep-alive
secure.commbank-alerts.app/netbank
34.68.12.58301 Moved Permanently 251 B URL HTTP/2 secure.commbank-alerts.app/netbank
IP 34.68.12.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash acfbe5404e94a005402f6d837c3b28f5
285899a886dffc8f9592327bc392099acba8b5cc
62974ef7a567c7e9589d7b256f60d166ac5ecfa84048f7860149e2f533d0928f
Analyzer Verdict Alert openphish Commonwealth Bank of Australia
fortinet Phishing
GET /netbank HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html; charset=iso-8859-1
content-length: 251
location: https://secure.commbank-alerts.app/netbank/
x-powered-by: PleskLin
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 28 Dec 2022 18:08:08 GMT
age: 1603
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 125553386d49a0b56facb82deab9bd9f
1a7480b79f4aada477fb5919794f6efd6d44921e
6f3f4223d3c994dd4754df67a11298d736e16f888f301ad2838d0b4db1ac01d7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1888
Cache-Control: max-age=140604
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 18:34:51 GMT
Etag: "63ac0727-1d7"
Expires: Fri, 30 Dec 2022 09:38:15 GMT
Last-Modified: Wed, 28 Dec 2022 09:06:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.213.140.56101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.140.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: h2XJKUlek60KqFEEZaF2Dw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W/80HSaIuXFedZP3W66wvZCG4IA=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1e43d145709ececc50cca6c8293c5b2a
1a40e35ef470dfe2f91db5948d34851f04ca9879
cd5e8e13016bb28d7d5832cc2be80373af22fbb734714b22cab0825cbbf0d9d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5000
Cache-Control: max-age=132927
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 18:34:52 GMT
Etag: "63abdd03-1d7"
Expires: Fri, 30 Dec 2022 07:30:19 GMT
Last-Modified: Wed, 28 Dec 2022 06:06:59 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90b7f9d047f258278693c327bced6af3
009137c4026c5385ba902775f164a6ef7d656cd4
acfe58957dc102731da976a8276b617e5b9a5080cf0b99a60128490ff1140499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5458
Cache-Control: max-age=100984
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 18:34:52 GMT
Etag: "63ab5e72-1d7"
Expires: Thu, 29 Dec 2022 22:37:56 GMT
Last-Modified: Tue, 27 Dec 2022 21:06:58 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 90b7f9d047f258278693c327bced6af3
009137c4026c5385ba902775f164a6ef7d656cd4
acfe58957dc102731da976a8276b617e5b9a5080cf0b99a60128490ff1140499
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5458
Cache-Control: max-age=100984
Content-Type: application/ocsp-response
Date: Wed, 28 Dec 2022 18:34:52 GMT
Etag: "63ab5e72-1d7"
Expires: Thu, 29 Dec 2022 22:37:56 GMT
Last-Modified: Tue, 27 Dec 2022 21:06:58 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
secure.commbank-alerts.app/static/cdn/AppMeasurement/2.22.0/AppMeasurement.js
34.68.12.58404 Not Found 4.3 kB URL HTTP/2 secure.commbank-alerts.app/static/cdn/AppMeasurement/2.22.0/AppMeasurement.js
IP 34.68.12.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8e0347fb476053d282cf545465181f03
4e303d65622d630f2f768f93e762080349a67079
8fd88c7ae4ddd14be517e2522d5081f110d4633f8f6048381d3c5b71ac056a58
Analyzer Verdict Alert urlquery phishing Phishing - Commonwealth Bank
fortinet Phishing
GET /static/cdn/AppMeasurement/2.22.0/AppMeasurement.js HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
secure.commbank-alerts.app/secure/static/js/main.170f99e1.chunk.js
34.68.12.58404 Not Found 516 B URL HTTP/2 secure.commbank-alerts.app/secure/static/js/main.170f99e1.chunk.js
IP 34.68.12.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 24ae6a8b0119c32881407a755325d7c5
4cfbabd99f2343bd62dddf27650b86730d71a379
20eb7ba03626f89c9902ce3617e585ca84e46b3d730053511c7843edce1a4f19
Analyzer Verdict Alert fortinet Phishing
GET /secure/static/js/main.170f99e1.chunk.js HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:52 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
ces.d2.sc.omtrdc.net/b/ss/commsec-internal-prod,ces-global-prod/10/JS-2.22.0/s54064127640781?AQB=1&ndh=1&pf=1&callback=s_c_il[0].doPostbacks&et=1&t=9%2F7%2F2021%2015%3A38%3A14%201%20-600&d.&nsid=0&jsonv=1&.d&mid=31227247454990840902120286489044697833&aamlh=8&ce=UTF-8&ns=ces&cdp=3&pageName=public%3Alogin&g=https%3A%2F%2Fwww2.commsec.com.au%2Fsecure%2Flogin&cc=AUD&ch=Private&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&h1=public%3Alogin&c6=public%3Alogin&v6=public%3Alogin&c11=New&v11=New&c13=commsec%3Aweb%3Aprivate&v13=commsec%3Aweb%3Aprivate&c16=public%3Alogin&v22=31227247454990840902120286489044697833&c43=public%3Alogin&v43=Typed%2FBookmarked&v47=Typed%2FBookmarked&v48=Typed%2FBookmarked&v49=Typed%2FBookmarked&v50=Desktop&v51=Desktop&v55=Visitor%20API%20Present&s=1536x864&c=24&j=1.6&v=N&k=Y&bw=500&bh=530&mcorgid=CB513704532E6DD00A490D44%40AdobeOrg&lrt=34&AQE=1
13.36.218.177200 OK 146 B URL HTTP/2 ces.d2.sc.omtrdc.net/b/ss/commsec-internal-prod,ces-global-prod/10/JS-2.22.0/s54064127640781?AQB=1&ndh=1&pf=1&callback=s_c_il[0].doPostbacks&et=1&t=9%2F7%2F2021%2015%3A38%3A14%201%20-600&d.&nsid=0&jsonv=1&.d&mid=31227247454990840902120286489044697833&aamlh=8&ce=UTF-8&ns=ces&cdp=3&pageName=public%3Alogin&g=https%3A%2F%2Fwww2.commsec.com.au%2Fsecure%2Flogin&cc=AUD&ch=Private&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&h1=public%3Alogin&c6=public%3Alogin&v6=public%3Alogin&c11=New&v11=New&c13=commsec%3Aweb%3Aprivate&v13=commsec%3Aweb%3Aprivate&c16=public%3Alogin&v22=31227247454990840902120286489044697833&c43=public%3Alogin&v43=Typed%2FBookmarked&v47=Typed%2FBookmarked&v48=Typed%2FBookmarked&v49=Typed%2FBookmarked&v50=Desktop&v51=Desktop&v55=Visitor%20API%20Present&s=1536x864&c=24&j=1.6&v=N&k=Y&bw=500&bh=530&mcorgid=CB513704532E6DD00A490D44%40AdobeOrg&lrt=34&AQE=1
IP 13.36.218.177:0
Hash 6ad8ad76881481839d3032cbf7fd67aa
cf74bbf194c9575b72c154d5b49e722ceb201bfc
3e62a6f72146b568f566936345452b509ce9da524e1f3448ce438447ea9062e0
GET /b/ss/commsec-internal-prod,ces-global-prod/10/JS-2.22.0/s54064127640781?AQB=1&ndh=1&pf=1&callback=s_c_il[0].doPostbacks&et=1&t=9%2F7%2F2021%2015%3A38%3A14%201%20-600&d.&nsid=0&jsonv=1&.d&mid=31227247454990840902120286489044697833&aamlh=8&ce=UTF-8&ns=ces&cdp=3&pageName=public%3Alogin&g=https%3A%2F%2Fwww2.commsec.com.au%2Fsecure%2Flogin&cc=AUD&ch=Private&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&h1=public%3Alogin&c6=public%3Alogin&v6=public%3Alogin&c11=New&v11=New&c13=commsec%3Aweb%3Aprivate&v13=commsec%3Aweb%3Aprivate&c16=public%3Alogin&v22=31227247454990840902120286489044697833&c43=public%3Alogin&v43=Typed%2FBookmarked&v47=Typed%2FBookmarked&v48=Typed%2FBookmarked&v49=Typed%2FBookmarked&v50=Desktop&v51=Desktop&v55=Visitor%20API%20Present&s=1536x864&c=24&j=1.6&v=N&k=Y&bw=500&bh=530&mcorgid=CB513704532E6DD00A490D44%40AdobeOrg&lrt=34&AQE=1 HTTP/1.1
Host: ces.d2.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
date: Wed, 28 Dec 2022 18:34:52 GMT
expires: Tue, 27 Dec 2022 18:34:52 GMT
last-modified: Thu, 29 Dec 2022 18:34:52 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3591134882377564160-4619755130028151005
vary: *
dcs: dcs-prod-apse2-2-v044-0ea968412.edge-apse2.demdex.com 3 ms
x-aam-tid: n19iJrTKQnA=
content-type: application/x-javascript;charset=utf-8
content-length: 146
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 563a71326245b9544f7051f983f4d897
7293247391520689fb7aeac14ee6c984d82d7de3
17c444592282f17c3eb8a0d8e10ae9b3be096d621bdf2bbd8e12faf13ff4999c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17C444592282F17C3EB8A0D8E10AE9B3BE096D621BDF2BBD8E12FAF13FF4999C"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3490
Expires: Wed, 28 Dec 2022 19:33:03 GMT
Date: Wed, 28 Dec 2022 18:34:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 563a71326245b9544f7051f983f4d897
7293247391520689fb7aeac14ee6c984d82d7de3
17c444592282f17c3eb8a0d8e10ae9b3be096d621bdf2bbd8e12faf13ff4999c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17C444592282F17C3EB8A0D8E10AE9B3BE096D621BDF2BBD8E12FAF13FF4999C"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3490
Expires: Wed, 28 Dec 2022 19:33:03 GMT
Date: Wed, 28 Dec 2022 18:34:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 563a71326245b9544f7051f983f4d897
7293247391520689fb7aeac14ee6c984d82d7de3
17c444592282f17c3eb8a0d8e10ae9b3be096d621bdf2bbd8e12faf13ff4999c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17C444592282F17C3EB8A0D8E10AE9B3BE096D621BDF2BBD8E12FAF13FF4999C"
Last-Modified: Tue, 27 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3490
Expires: Wed, 28 Dec 2022 19:33:03 GMT
Date: Wed, 28 Dec 2022 18:34:53 GMT
Connection: keep-alive
secure.commbank-alerts.app/static/cdn/AppMeasurement/2.22.0/AppMeasurement.js
34.68.12.58404 Not Found 873 B URL HTTP/2 secure.commbank-alerts.app/static/cdn/AppMeasurement/2.22.0/AppMeasurement.js
IP 34.68.12.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 93ed2e6c6abd801221c0acec6f91a399
2f8057c4e1e90bb33f10ca4c746f9ea1d1b25fb7
71be2738935259964c8a78485845fa262c8c0d025dbda6c734f58e75688cac24
Analyzer Verdict Alert fortinet Phishing
GET /static/cdn/AppMeasurement/2.22.0/AppMeasurement.js HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b373925ce249ca67e6984c436f5cd2b8
ddbc25025b933587990f8e9c32e91c9773256840
7d3c992b715283efeba9bee2e5c08042267017e76074ca6aad870e1dd45b4564
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d43b473-21c7-4775-9398-1bdecb4d7d28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9007
x-amzn-requestid: 15b3b2e5-d493-4b54-aab4-7374bf892e83
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: drrFbESxIAMFikw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a7beef-37f4ab8e7738b186705bb1db;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 03:09:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Swp663gmExgpgDT8bZUFNOpLEJHZDQWrEeasO7jgP5GClXzyJUTWgw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Dec 2022 03:27:43 GMT
age: 54430
etag: "ddbc25025b933587990f8e9c32e91c9773256840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7efeb4a1-9d83-4fe3-bd8d-999279ed4dcd.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7efeb4a1-9d83-4fe3-bd8d-999279ed4dcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae5da67479fa2f3afda50a7566b5e46e
d71de1881ea09f0aed36703f95635cc0cd552429
a67eca901c4f8436074f48a594cd9942742430c8776745152baf3f858a9c3407
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7efeb4a1-9d83-4fe3-bd8d-999279ed4dcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4443
x-amzn-requestid: 6ca832c3-dcdc-4fc3-bb60-6868d09f824b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0y_zFEOoAMF9KQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab6531-0a9be43a500ea8b41200cc43;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Qy-hxddkp68OmfI4OKNvNu8mRO8re9SQNxsxuPcPyP7-tqIEdl7pug==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:19 GMT
age: 75154
etag: "d71de1881ea09f0aed36703f95635cc0cd552429"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
secure.commbank-alerts.app/secure/static/css/main.27d81c4d.chunk.css
34.68.12.58404 Not Found 6.6 kB URL HTTP/2 secure.commbank-alerts.app/secure/static/css/main.27d81c4d.chunk.css
IP 34.68.12.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c05fd80afbc2dbedec8f20b572cafaf8
92eee36693b6b625f62350d4ca80900732157bba
c3b4b079dfc17885e4a8d1eaf482f77fd8ef793c231e44922010f70e942a7872
GET /secure/static/css/main.27d81c4d.chunk.css HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
secure.commbank-alerts.app/secure/favicon.svg
34.68.12.58404 Not Found 9.5 kB URL HTTP/2 secure.commbank-alerts.app/secure/favicon.svg
IP 34.68.12.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 97319e50eeea732becd4b2fcf69f8001
016d3cd78448d88351caa48b049cb91fa696dcde
6bac5d94a5ba663158445883db2f4eb3c036fbbb2e54098271182ec9eeae68bb
Analyzer Verdict Alert fortinet Phishing
GET /secure/favicon.svg HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:52 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8978692-1057-4721-b58a-03675b009dec.webp
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8978692-1057-4721-b58a-03675b009dec.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003be820cd1d0f0365928cab98019457
e2a5c2764e4850aa95594c8b303aa4963d33954b
098fd59f48bb33d33764f64eb15d14840467d84544c34f35a6f86bb893be516d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8978692-1057-4721-b58a-03675b009dec.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5880
x-amzn-requestid: e87391e7-c302-42a9-9cdf-0ca5a264c973
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d0z-4GrNoAMFYyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ab66c5-6b7d0f3044ed76e91a8815d7;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 21:42:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QB3LsKzG9hiMrLwemezbf85srVaq07WnkcbHbOpjmO-chWigBRXwxw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 21:42:29 GMT
etag: "e2a5c2764e4850aa95594c8b303aa4963d33954b"
content-type: image/jpeg
age: 75144
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
secure.commbank-alerts.app/netbank/
34.68.12.58200 OK 29 kB URL HTTP/2 secure.commbank-alerts.app/netbank/
IP 34.68.12.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (55190)
Hash 2417423e0d040c97f29db81f1b623e0c
ca193d0ea8c9e662a73dac930013bca4575fb92b
24f658793be54aa68ce1360a8d96bdd52e15ab1c76dbbda63b793cd4e1bd0985
Analyzer Verdict Alert fortinet Phishing
GET /netbank/ HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Sun, 15 Aug 2021 06:22:34 GMT
etag: W/"6118b2aa-2e65f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
secure.commbank-alerts.app/static/cdn/tracking/7.0.0/OmnitureCore.min.js
34.68.12.58404 Not Found 0 B URL HTTP/2 secure.commbank-alerts.app/static/cdn/tracking/7.0.0/OmnitureCore.min.js
IP 34.68.12.58:0
Analyzer Verdict Alert fortinet Phishing
GET /static/cdn/tracking/7.0.0/OmnitureCore.min.js HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
secure.commbank-alerts.app/secure/static/js/main.170f99e1.chunk.js
34.68.12.58404 Not Found 0 B URL HTTP/2 secure.commbank-alerts.app/secure/static/js/main.170f99e1.chunk.js
IP 34.68.12.58:0
Analyzer Verdict Alert fortinet Phishing
GET /secure/static/js/main.170f99e1.chunk.js HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
secure.commbank-alerts.app/secure/static/js/3.b4db8f5a.chunk.js
34.68.12.58404 Not Found 0 B URL HTTP/2 secure.commbank-alerts.app/secure/static/js/3.b4db8f5a.chunk.js
IP 34.68.12.58:0
Analyzer Verdict Alert fortinet Phishing
GET /secure/static/js/3.b4db8f5a.chunk.js HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
secure.commbank-alerts.app/static/cdn/Visitor/4.4.0/VisitorAPI.js
34.68.12.58404 Not Found 0 B URL HTTP/2 secure.commbank-alerts.app/static/cdn/Visitor/4.4.0/VisitorAPI.js
IP 34.68.12.58:0
Analyzer Verdict Alert fortinet Phishing
GET /static/cdn/Visitor/4.4.0/VisitorAPI.js HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2
secure.commbank-alerts.app/core/v1/analytics/init
34.68.12.58404 Not Found 0 B URL HTTP/2 secure.commbank-alerts.app/core/v1/analytics/init
IP 34.68.12.58:0
Analyzer Verdict Alert fortinet Phishing
GET /core/v1/analytics/init HTTP/1.1
Host: secure.commbank-alerts.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.commbank-alerts.app/netbank/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 28 Dec 2022 18:34:51 GMT
content-type: text/html
last-modified: Wed, 28 Dec 2022 01:39:14 GMT
etag: W/"328-5f0d96f9a5794"
content-encoding: br
X-Firefox-Spdy: h2