dlnl.newrequireddefence.site/c/a4510ff39c33bdb3?clickid={click_uuid}&bid={bid_cpc}&s1={s1}&s3={s3}&s4={subscriber_age_days}&s5={subid_uuid}&s6={zone_uid}&s7={platform_name}&s8={campaign_id}&s9={click_uuid}&sub1={sub1}
200 OK
3027
URL
HTTP/1.1
dlnl.newrequireddefence.site/c/a4510ff39c33bdb3?clickid={click_uuid}&bid={bid_cpc}&s1={s1}&s3={s3}&s4={subscriber_age_days}&s5={subid_uuid}&s6={zone_uid}&s7={platform_name}&s8={campaign_id}&s9={click_uuid}&sub1={sub1}
IP
Magic
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20195)
Hash
9723ca0a74e7caa6553bc77c6d35d7dd
6f54f09fba18c8d2a50400a38cfeb81ac7796124
45b8d0fda9149c8e28e47660df4748fb91151fa7375e29968d4d7184300bc0df
GET /c/a4510ff39c33bdb3?clickid={click_uuid}&bid={bid_cpc}&s1={s1}&s3={s3}&s4={subscriber_age_days}&s5={subid_uuid}&s6={zone_uid}&s7={platform_name}&s8={campaign_id}&s9={click_uuid}&sub1={sub1} HTTP/1.1
Host: dlnl.newrequireddefence.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 22:00:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: unique_id=641f6f02000272bb; Path=/; Expires=Wed, 24 May 2023 22:00:34 GMT
unique_id2=641f6f0200027a36; Path=/; Expires=Fri, 23 Jun 2023 22:00:34 GMT
impression=; Path=/; Expires=Sat, 25 Mar 2023 22:00:34 GMT
641f6f0200027a36_sl=[269163]; Path=/; Expires=Sat, 08 Apr 2023 22:00:34 GMT
Content-Encoding: gzip
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18416
Expires: Sun, 26 Mar 2023 03:07:30 GMT
Date: Sat, 25 Mar 2023 22:00:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18725
Expires: Sun, 26 Mar 2023 03:12:39 GMT
Date: Sat, 25 Mar 2023 22:00:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK
939
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
Magic
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 21:15:29 GMT
content-type: application/json
age: 2705
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6063
Expires: Sat, 25 Mar 2023 23:41:37 GMT
Date: Sat, 25 Mar 2023 22:00:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK
5348
URL
HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
Magic
PEM certificate\012- , ASCII text
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OczmN7kBEC6n3KBR+v9nui9fC68MoiiyW4DRL2SrfpBUBpYo5zMWm46hE5q/lboCstyP4Ub4M8E=
x-amz-request-id: GZVT0CT7SPYDFFYJ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 21:55:04 GMT
age: 331
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK
12
URL
HTTP/2
contile.services.mozilla.com/v1/tiles
IP
Magic
JSON data\012- , ASCII text, with no line terminators
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 22:00:34 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/landings/269163/1672139499/css/style.css?1672139499
200 OK
2856
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/css/style.css?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
9e6e17753fd08ccffdaab4bc97d7af50
f4a6f23df54e760b305134eb5587ccd0b0c6ad49
01f65c67d47ef19588c9c3e19fc6e2e123ff3f0e2f1cfdf9ad61a655efe23cf8
GET /landings/269163/1672139499/css/style.css?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: qufEYPc9y6KgRXvEchyW55rLl82tjAJ8o+Go6G0b+8dVIbBU7W5Q7CnjX1kvR8/C09G/xxeh6iE=
x-amz-request-id: P1751PTDJH8W116R
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "790ea33cbfafd3311bd7083f70a179c6"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 25 Mar 2023 22:00:35 GMT
Content-Length: 2856
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/site-protect.2.0.js?1672139499
200 OK
1073
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/site-protect.2.0.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
85e3bd021961fdac95655a71435375f5
9d03222c7a2acb3c790270e3f07bebc485759db2
bd6d5b382238afd5ee6299972b66f4e22521fe96487dfc620be38e1743d71887
GET /landings/269163/1672139499/js/site-protect.2.0.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: HKiRcuAEGKhNwvVW74QDNfwEF6A4wZ+xVZUK8G3fEuc2fdCxPPLu2apz7mHyHDeUyfzOoeDaF+M=
x-amz-request-id: K9TGAPDTZZ91ZQMT
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "311a4a9bfb7699c36f9310aa8484b360"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 25 Mar 2023 22:00:35 GMT
Content-Length: 1073
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/css/translate.css?1672139499
200 OK
655
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/css/translate.css?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
64836db20736f1e7995b43489b4bf0ac
a0db33db05acb39dd01d9f19f5eed634682b0ead
d4d21bac4b13cac53c0b921c3aa69d1e010a32ad3ccb7498821aa6e763e71c87
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/css/translate.css?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: aoGFvfdn1t7k/40oKC0Lf4MlwRx6eQNH5k/9myaKH+TvjmOeO1zgq5tQ0h0l/jk6a8UZAcbg408=
x-amz-request-id: 01H4QG8WMM80K66C
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "64836db20736f1e7995b43489b4bf0ac"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 655
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/main.js?1672139499
200 OK
769
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/main.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
a22a1a0161c2da8eab4d825d701e0d30
17a279b59fa2371f8661d5558662df7abdcf5442
4d7d84af0a913c75c83eda10419b18fd30ec7f481bf627fa89d8ff450df53580
GET /landings/269163/1672139499/js/main.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5C0a3PdxgjpVDn+c74yPxxc1ZoAClrJlOQ8yVPzDbxOR0Ul0umL1ZZdRTn/Kguw72TtTOWMRHTI=
x-amz-request-id: W284DFSWT3SW3D3F
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "a22a1a0161c2da8eab4d825d701e0d30"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 769
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/js.cockie.min.js?1672139499
200 OK
826
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/js.cockie.min.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Magic
ASCII text, with very long lines (1619), with no line terminators
Hash
80f159394b22e099038b584495222009
49a38d579533fb963f8f0f94687b40f65713b8dd
2d1575e9baafcb2f70a5d4ff82e829c3722535c3b9921c0d1baf5b54a384b109
GET /landings/269163/1672139499/js/js.cockie.min.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +gaeW8JMiZ7bWIpZYTYZ5JqdkWRnOmeneDRWPNH5REt4VghQGGrGPgEdkbDPDVDdF8YPvFiTJWk=
x-amz-request-id: W28F5FV1MDABMMY7
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "aeb03440821eecd362780d1d1f8f4751"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 25 Mar 2023 22:00:35 GMT
Content-Length: 826
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/second_back_multi.js?1672139499
200 OK
728
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/second_back_multi.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
cf00d833782706194b8c8d7a10222c7e
eb5fcbf9e53b3e2882d671cea6a73210effff810
b1d0dec6c93c760e5890b5f36ce72d46f4d9be7650d8eda017ef0bb640080b05
GET /landings/269163/1672139499/js/second_back_multi.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: OwUXHrKbmKcspp75L+RoEPyTSjsEp0CnyBgTH42w3Udlt4rsSSq/Sbz2jqDtFJP4su36Srie0Gw=
x-amz-request-id: W2852RADPYP02GH6
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "f428fe6667efbbe5781d64826256609b"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 25 Mar 2023 22:00:35 GMT
Content-Length: 728
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/interactive.js?1672139499
200 OK
5095
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/interactive.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Magic
ASCII text, with very long lines (24988), with no line terminators
Hash
4f6795f72fdbcb15309fd2aaba55302d
d613bd45610ff3a3e0a581d360847f01de563368
787035c2e2a9154a7ab7805185cf09b73f252b86221c975244259db327db8193
GET /landings/269163/1672139499/js/interactive.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: T2tZi3dAK8MbPb1TaMbQuq/GIufj6jXkIdgKLktA0cspaP7b8n6VvPF5F4UzDIWV9ufwHM+nnTQ=
x-amz-request-id: W283XN0576Z26XH5
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "7f1b8cc7b3f5bae928d07c8605d0c0d8"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 25 Mar 2023 22:00:35 GMT
Content-Length: 5095
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/js/translete.js?1672139499
200 OK
559
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/js/translete.js?1672139499
IP
ASN
#20940 Akamai International B.V.
Hash
7a2813dd2f72e952a133e5d6f13a808a
7472ee61fbd566913fd48f40f76e63edb9ea1faf
ea14a153c8c32aecd506eeb112e67542e62ea7e312dc77de3149df90c8a9336d
GET /landings/269163/1672139499/js/translete.js?1672139499 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5SgJ3pTlMQcjUbhEAF36n0L9CnXlMK0GFf7EItDRicOyjpMGy5pq8vIi2cdAm/xxszR3wY6grYI=
x-amz-request-id: J8MB8TRZ9B3KJ0GN
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "ec54980cfed635492cef5628111560d2"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Sat, 25 Mar 2023 22:00:35 GMT
Content-Length: 559
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
07a56401a813b6168aad73435b1594ed
fb8613c18d229d180470dbfd9ce8ceddacc066a9
55501cd01f76beb836c4682daec98be2f4e4a9b30dbb53066a28a83f33c98619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "55501CD01F76BEB836C4682DAEC98BE2F4E4A9B30DBB53066A28A83F33C98619"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8271
Expires: Sun, 26 Mar 2023 00:18:26 GMT
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK
329
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
Magic
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 21:17:24 GMT
age: 2591
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672139499
200 OK
92013
URL
HTTP/1.1
cdnjs.claudflare.io/ajax/libs/jquery/3.6.0/b/jquery.min.js?1672139499
IP
ASN
#14061 DIGITALOCEAN-ASN
Magic
ASCII text, with very long lines (65447)
Hash
0dd85f14c26ab969e3821b1242e990dc
93fab83252b745e1c443d3e2f9aade1ac24f20ba
b6e8a194a1a400ed9f2ce3155e243ccd3a0740066a3d39bc06a7a56193290995
Analyzer
Verdict
Alert
quad9
Sinkholed
GET /ajax/libs/jquery/3.6.0/b/jquery.min.js?1672139499 HTTP/1.1
Host: cdnjs.claudflare.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0 (Ubuntu)
Date: Sat, 25 Mar 2023 22:00:35 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 92013
Connection: keep-alive
Cache-Control: public, max-age=43200
Expires: Sun, 26 Mar 2023 10:00:35 GMT
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2385
Expires: Sat, 25 Mar 2023 22:40:20 GMT
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
cdn.stfilecamp.com/multi_push.js?1672139499
200 OK
1072
URL
HTTP/2
cdn.stfilecamp.com/multi_push.js?1672139499
IP
Hash
a50322f9d3f3fafe3fb02be02285e433
c0a894b3bfa545832c3ad1c2f145005d02e50ac4
cb763e10664b93ac12aaead7af7b0838195e45eb89f678ebb3f5776b147f5d99
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /multi_push.js?1672139499 HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 22:00:35 GMT
cache-control: max-age=3600
content-length: 1072
content-type: text/javascript
last-modified: Thu, 07 Jul 2022 14:21:23 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "a50322f9d3f3fafe3fb02be02285e433"
x-amz-request-id: tx0000000000000240029a9-00641f6f03-3086a145-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1679781635.dop024.sk1.t,1679781635.cds003.sk1.hn,1679781635.cds231.sk1.pr
X-Firefox-Spdy: h2
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu2.png
200 OK
1665
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu2.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
bc32798c28d2145f979848809ba5f858
7bc0276cd56bf6463113a9c5d33ea9aacbdb5f51
7319ffc0fdb40740b07f1a286348fa0f29676127996481b6310f3dd7f322d4ee
GET /landings/269163/1672139499/images/menu2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +uVGbsGU27Y1CvJCaiz8iem11ON7WGo2H+Z9yjI2CEiEtQLuMILy3uI/sY2vjZPpFbUTS61mFv4=
x-amz-request-id: P1766DSF0DCE8ZR9
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "bc32798c28d2145f979848809ba5f858"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1665
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu3.png
200 OK
1483
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu3.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
860d945f4bba4b150b4c6300bdd87527
4c3f11a2902bf437bb578871f7e27625f0ae6504
bdca8ddc4aaf7200e8c215c5eedeae489626d9df23313578ac0cfe45854ea0c8
GET /landings/269163/1672139499/images/menu3.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Ft2ttM5pdqVPK4mUYtzHatqDTMKiId8KZPjapU9wDv+P9NEA6iHsQOWAA7cucWMFr8PScY/J6d4=
x-amz-request-id: DC3K97HVMXSDD8SX
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "860d945f4bba4b150b4c6300bdd87527"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1483
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu1.png
200 OK
1920
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu1.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
b2b98941a9fe6bbcb6745989b3289b1e
5fb8fce5934af6d3426a37eb58b9846fa80ead39
d9efcb7b0f632cb3d2650c0c676b3c758f00c52f5d1cc5e7963dd456aaa03833
GET /landings/269163/1672139499/images/menu1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: VEnBKXlsnNgWmoI4MkUrusfR+JwHe9bbNCn3G6kMeQy8gRUSvb7UHw/YSZiPPlTwBLMt6M959Lo=
x-amz-request-id: BZ29HH80JC7NGZSY
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "b2b98941a9fe6bbcb6745989b3289b1e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1920
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon2.png
200 OK
4856
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon2.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 152 x 121, 8-bit/color RGB, non-interlaced\012- data
Hash
a0f86853c68b824dd5c15b0fae66fdfe
0c8ba75f1370ba3c10a309be4c1c96a5067c6098
f58fdb3b3ba6dc0943458179df29efb7201b84ff2edbf03d9ad5cb26c4e52917
GET /landings/269163/1672139499/images/icon2.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: W0Ru4qPVZM3D18KZGoe8e3RZLeGsYCoB2vCK50lwDPLuy3rik6G8M9Q1TvD8F8i8zNH5KkkWiuw=
x-amz-request-id: BPCGDHFYZMS21DQA
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "a0f86853c68b824dd5c15b0fae66fdfe"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4856
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-logo.png
200 OK
4226
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-logo.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash
2dd0fb3f8327cbd8ae041f7fdb1eb8bf
35cbcecbf827dbf814f249ff6f3124d671afd1a3
98035853429a64f9c5e3a1eb3dacd1592b1eda2f5ec5e54b02fe427e117f0f26
GET /landings/269163/1672139499/images/avira-logo.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: dGqdHI4PyAkktX2xFivuAphJBvovNsu8gZV2xORU0fmmFabNrTwOGXI2UquZIxTc8diinwc+Sd8=
x-amz-request-id: P17DK2K5ES0PCVRN
Last-Modified: Tue, 27 Dec 2022 11:11:40 GMT
ETag: "2dd0fb3f8327cbd8ae041f7fdb1eb8bf"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4226
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/check.png
200 OK
1946
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/check.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 35 x 34, 8-bit/color RGB, non-interlaced\012- data
Hash
1eab4e4fb7a147352b0027c0e4df1fe6
99e621180265541383f5c081cd6f7c77b7d21e0d
a66a5ce08b112086075a336e9f18d5cea683143b552a50641971ef00d3895207
GET /landings/269163/1672139499/images/check.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: EV+V7ssRDNm+XsgD++yR3rCCzuer8Lmfca4FYcu/c8tGlOzBIYUD7vFX22Tjyxwg88J+ciMZ3ok=
x-amz-request-id: X72QVEY9AYPJN5Y0
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "1eab4e4fb7a147352b0027c0e4df1fe6"
Accept-Ranges: bytes
Content-Type: image/png
Content-Length: 1946
Server: AmazonS3
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/info.png
200 OK
1545
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/info.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 23 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash
7f7b44979afb15dfdc18e7d754c6d0f5
7426889578a3a6f20f620611f7ea8d4dadaf3b87
cb2eff4a1cf5f187eda87e71d6039f24af63844617a7f890070b9afd5c965a33
GET /landings/269163/1672139499/images/info.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: EhBlY3kgGMj39R56Gi0kM/kKdrwt5rE2FkOurKsHvLX6UxSAEgaVLrFP0vKafd9IsFt46s9C/NQ=
x-amz-request-id: TWRRDNE88A4B70DR
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "7f7b44979afb15dfdc18e7d754c6d0f5"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1545
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon1.png
200 OK
5928
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon1.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 139 x 130, 8-bit/color RGB, non-interlaced\012- data
Hash
fa6582524d715994e9d9036eca9b034b
06cce1b23faba93959df12a9eccaa3d6f51341ce
cf05a371ab1261c3e1f2785e26c95cc5869b37de15c9d48206e78a58894a0cdc
GET /landings/269163/1672139499/images/icon1.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 7Pe3UIMSMz4wjwqVMS8Hz1WyJwZSjZkBhc6HTW25E7pihP412OpS5m3+8dpcj35SELD+f3O6JfA=
x-amz-request-id: H9CVCHZH0P9CEG6P
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "fa6582524d715994e9d9036eca9b034b"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5928
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/cross.gif
200 OK
211
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/cross.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 29 x 29\012- data
Hash
45b0c8a1e52d91e8cf84eaf75ebca9a9
0e358b8571f9062dedfacd0c31d54179270153cd
4e635bdab7a300d0ccb5aac26b4610a07ee1b33643578c1a4308e677d7eb595d
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/cross.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: zE2YFI/e+Qyb9mFWP3J/+NIxNh7UeIA/dLCrJZwQ3qewv6YNTzbIBp0Q3/DfcNabctTchXlteHo=
x-amz-request-id: K6KMRS01GW11F4R5
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "45b0c8a1e52d91e8cf84eaf75ebca9a9"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 211
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon3.png
200 OK
5904
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icon3.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 137 x 131, 8-bit/color RGB, non-interlaced\012- data
Hash
8a07f71c9d0642e8b94bd2b9687c768f
fb2f6f1a6a421101a4b10c315f340d0565709abf
e77edd6c132664f48fb66468de2e1b5068d61e9f04e03d6a51668b14d00af0ed
GET /landings/269163/1672139499/images/icon3.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 7pb8nNBafXJQUG2TvS8lw6J/7UQ7JfP6hw9NeGGaPTB4yEbFXcM9Wb7QmPqIOKfhQJ+IkdQc/Zk=
x-amz-request-id: GQXXAC79EZ0XFYAY
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "8a07f71c9d0642e8b94bd2b9687c768f"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 5904
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray1.gif
200 OK
69
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray1.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 16 x 16\012- data
Hash
3ae573d079dcd1d2da4086f2c0c72c45
e7c9dabec81379373476ed23168dcecb9b8c56aa
9cce08ab28e94790cf78c87e37f8690acbc6c535e4b43ae7b38506b94538e107
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/ico_tray1.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: V9Bah/SeG+IrDwgGgMRexBqsArCDA/ebglyNkXX9A9a3gPsfuOkmdW7vMLroKriiDizLSYlG8uY=
x-amz-request-id: BZ24VP7M8QQBQV83
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "3ae573d079dcd1d2da4086f2c0c72c45"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 69
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_min.png
200 OK
128
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_min.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash
0bb86caf792dd7d24731c18cd37bb68e
dda1e433a0eaf785b2aa2c6214d5e48cb82a3a25
2ac27821ba64d645f36e2ad197492d30c11b10a032cc474554679555f4604622
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/win_min.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: SAxGM11SbJnVx6/Ct4IH4I/dSXIOP6+EiMe0aKkSGiyVWlFxecnW8/3STxyBeIG4uLYp7cs9i9c=
x-amz-request-id: YNQRBYHSHDTSHZ5V
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "0bb86caf792dd7d24731c18cd37bb68e"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 128
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_cls.png
200 OK
293
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/win_cls.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 12 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash
9eb68d2ce05c151bda542a7a6356e22c
baeeefe4a7ac657c10a5f081841015de1bcf90dd
2d2b7040bc32b397c3c60d800de9aa7d86404f1874862eba61bdaa21f1523eb7
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/win_cls.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: +kgKhY8KlyrrMqImgzNR8PYXuZCzH5rsWv6s5wWD8c3pPgL7ICKPGgP5V1w5+qFF+fhTSZorM1g=
x-amz-request-id: ZKAJVQBC9AR6TD6Y
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "9eb68d2ce05c151bda542a7a6356e22c"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 293
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu4.png
200 OK
1812
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/menu4.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash
7af58322b67083908a8519d74471f47d
256a9119feb235759cf98f211bc6398f58c4ee43
bfab83c5a6c9c62450668ba960527fc9b17ed316a52436f0f63fd1eedcd45a3d
GET /landings/269163/1672139499/images/menu4.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: rBQ5gY5gGP0yNi9l8wHQwAXrHn4JH/BmtajbyS2RxPEI3ORcA1JISjkrKhXvjIuTvTAKCzR30EA=
x-amz-request-id: 73BYRYTD8Z77JHVE
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "7af58322b67083908a8519d74471f47d"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1812
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray2.gif
200 OK
377
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray2.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 16 x 16\012- data
Hash
c10bdec858cb0cf9e6cc5865d5925746
697c095ed5509e5a5af0c5ebf2380662aeffc531
b65b47a79e32335d9ca35ff59c6975d2b5808f84da0db88d11ce777b33e72ad9
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/ico_tray2.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: pP/f5iHre0PLI+cWjFdc8VZmg3H4US47PtJOJsolMlJqqgkgdXI3yLv61OVAr1qp+OItQtjcPZs=
x-amz-request-id: 38ZXYY487KY1C1D0
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "c10bdec858cb0cf9e6cc5865d5925746"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 377
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/icons.png
200 OK
1932
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/icons.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 124 x 22, 8-bit/color RGB, non-interlaced\012- data
Hash
32fded5a952e60a48a879e414c590f24
834e44460475c20ce9f4c801a4ccf53130749af3
d712d6bf38edf55c605c2a568ce2de1caae95d26b00c02c4f9a1eed6f370d76e
GET /landings/269163/1672139499/images/icons.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Q2eHBeG8ApAk3tVDTbrK2eWZ7yg/OtazJNekCCOmlqDzcXYViqKjW44wylspeklhIKr/DNSTt1s=
x-amz-request-id: BZ257XV639M4FZCW
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "32fded5a952e60a48a879e414c590f24"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1932
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/logo.jpg
200 OK
7653
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/logo.jpg
IP
ASN
#20940 Akamai International B.V.
Magic
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Hash
04cafbd162493b66a25988eb1cb58d07
fc780a93ddbacd25467c56bfb6bd46e8bc94503e
7aeb8ef4156327a8bb0c98b0f6ecc8409ab462a64c61df589c7e2477bd761628
GET /landings/269163/1672139499/images/logo.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4qP+2vMOAoNJKKnFsFvh2HsPEszBvyBTBHDlejPf7byR2q9TIooExkXZTUXwWwXzO3Av4hjaxKg=
x-amz-request-id: FMM4Z77KQD7006E4
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "04cafbd162493b66a25988eb1cb58d07"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 7653
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-white.png
200 OK
59078
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-white.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 1200 x 1200, 8-bit/color RGBA, non-interlaced\012- data
Hash
15cac20be8d4fdd074e21a4a52604d2f
fd4c43583bec2c7bfae3cb9feb2699abbc50c578
d4ad291dfcf93d75db62260b5ba53ddda1f2a9c855a3019cf7ae52c3cd936739
GET /landings/269163/1672139499/images/avira-white.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Ivz4X6NrcRrxUM1QWcZ1KPKXo74vUilBEAodvQyZPO0rwvGBSAaTx9/wsxGtbgqLkzW+U8RwYGU=
x-amz-request-id: 617XG32NZQKNC9VQ
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "15cac20be8d4fdd074e21a4a52604d2f"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 59078
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray3.gif
200 OK
234
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray3.gif
IP
ASN
#20940 Akamai International B.V.
Magic
GIF image data, version 89a, 16 x 16\012- data
Hash
9ce99ec458daf212f9812a90f3fadd13
9e3041bc91b79a17b52e0fbb6c2d0e2f905d98a1
b0d335401c9fd5fac9991ec92edaf7865ff3a491ebe390120936c69796c3b753
Analyzer
Verdict
Alert
urlquery
fraud
Fraud - Fake AntiVirus / Security software
GET /landings/269163/1672139499/images/ico_tray3.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FQUpoI2ZK0f9QQxm//NI4DOVXDf1mANQrICdpHtKKfv3PiWXWWi+qYwMHsS8eyPWQFxyTRathqQ=
x-amz-request-id: NCS4F6G2SS5C2Q96
Last-Modified: Tue, 27 Dec 2022 11:11:41 GMT
ETag: "9ce99ec458daf212f9812a90f3fadd13"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 234
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
cdn-adef.akamaized.net/landings/269163/1672139499/images/globe-alpha.png
200 OK
302963
URL
HTTP/1.1
cdn-adef.akamaized.net/landings/269163/1672139499/images/globe-alpha.png
IP
ASN
#20940 Akamai International B.V.
Magic
PNG image data, 1440 x 700, 8-bit gray+alpha, non-interlaced\012- data
Hash
bc336a3a0c484d7c65299b9c4af45596
36cb2608b4fef19277220dab7e0cb0a623eee289
af9a953b12a4994939f45054e31302a7b1f59577f69c21376821cf9b922b414b
GET /landings/269163/1672139499/images/globe-alpha.png HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn-adef.akamaized.net/landings/269163/1672139499/css/style.css?1672139499
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
x-amz-id-2: su5BA8qTheZbfSZwAYVTybvhVitJjrBXpAJJKeyQvVn9OSFEeoJ3ZOXAKuOo08f+f9r+Ec5Sx10=
x-amz-request-id: C87DXBDVPPTKZB9P
Last-Modified: Tue, 27 Dec 2022 11:11:42 GMT
ETag: "bc336a3a0c484d7c65299b9c4af45596"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 302963
Date: Sat, 25 Mar 2023 22:00:35 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
route.frest.pro/is_redirect
200 OK
17
URL
HTTP/2
route.frest.pro/is_redirect
IP
Magic
JSON data\012- , ASCII text
Hash
6dec798efb56f56f33660938f6249ff6
e889219883cef38754dc1e5df7ca5277b3b314c8
b493cdb3b30ea63f6a924f814dfccfcfe305dac02106f9994ce2bcb2e8ed28c4
POST /is_redirect HTTP/1.1
Host: route.frest.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 10
Origin: http://dlnl.newrequireddefence.site
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 22:00:36 GMT
content-type: application/json
content-length: 17
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Content-Type, Access-Control-Allow-Headers, X-Requested-With
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tzxFsRD3n7jaC7YhReCB0EQ%2FrO2FSN%2FhY1hcc7SsSAGgyJqoCTuFa3BXJnOlUSKl3rFZ8Fpsh%2BGHWMlCow2nmdxoyUEbkfRZNTCxh2VNA1SOmREsdaKY7wWRH4qgrKamYYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ada6d787f30b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.stfilecamp.com/stormtrk.js
200 OK
6807
URL
HTTP/2
cdn.stfilecamp.com/stormtrk.js
IP
Hash
39e5f8ad757fe438c784e8d883e47ab0
6b2905489485100c83605f43186c5843031e1f3b
e421906cc3be04e5f6795074c0a91e5a194f218b3f8c57adfed0f4d315dd445a
Analyzer
Verdict
Alert
fortinet
Phishing
GET /stormtrk.js HTTP/1.1
Host: cdn.stfilecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dlnl.newrequireddefence.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 22:00:36 GMT
cache-control: max-age=2594
content-length: 6807
content-type: text/javascript
last-modified: Sat, 24 Dec 2022 08:48:24 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "39e5f8ad757fe438c784e8d883e47ab0"
x-amz-request-id: tx000000000000023fcae75-00641f6b16-30482482-sfo3a
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1679781636.dop024.sk1.t,1679781636.cds003.sk1.hn,1679781636.cds014.sk1.c
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols
0
URL
HTTP/1.1
push.services.mozilla.com/
IP
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: o8POyTSF49oPwCAFSZuV1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: U1lXPf4SuowOV/5WX6UzvRSPi+o=
cdn-adef.akamaized.net/images/favicon.ico
200 OK
4103
52.51.27.131
205.185.216.42
23.36.76.96![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu2.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu2.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu3.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu3.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu1.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu1.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icon2.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficon2.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-logo.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2favira-logo.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/check.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fcheck.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/info.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2finfo.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icon1.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficon1.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/cross.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fcross.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icon3.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficon3.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray1.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fico_tray1.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/win_min.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fwin_min.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/win_cls.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fwin_cls.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/menu4.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fmenu4.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray2.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fico_tray2.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/icons.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2ficons.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/logo.jpg](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2flogo.jpg"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/avira-white.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2favira-white.png"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/ico_tray3.gif](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fico_tray3.gif"){kind=link}
![URL cdn-adef.akamaized.net/landings/269163/1672139499/images/globe-alpha.png](/search?q=http.url.addr:"cdn-adef.akamaized.net%2flandings%2f269163%2f1672139499%2fimages%2fglobe-alpha.png"){kind=link}