Overview

URL tsitrucking.com/55/Standard_Bank_Front_Latest/
IP198.46.86.11
ASNIMH-IAD
Location United States
Report completed2022-09-20 21:35:59 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/ Standard Bank of South Africa
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/ Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-b (...) Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-b (...) Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-b (...) Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-b (...) Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-b (...) Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-b (...) Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/fonts/bentonsans/regular/ (...) Phishing
2022-09-20 2 tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/fonts/icomoon.ttf Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (8)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-20 04:47:04 UTC 34.117.237.239
mnemonic passive DNS tsitrucking.com (22) 0 2016-01-31 00:07:34 UTC 2022-09-20 20:39:40 UTC 198.46.86.11 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-20 13:04:07 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-20 05:36:22 UTC 44.242.41.15
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-20 17:37:01 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-20 17:35:13 UTC 143.204.55.115
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-20 05:19:24 UTC 143.204.55.35
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-20 04:47:05 UTC 23.36.77.32


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 198.46.86.11

Date UQ / IDS / BL URL IP
2022-11-04 01:25:19 +0000
0 - 0 - 1 bigbubba.com/vmn/Standard_Bank_Front_Latest/m (...) 198.46.86.11
2022-11-04 01:24:59 +0000
0 - 0 - 1 bigbubba.com/vmn/Standard_Bank_Front_Latest/O (...) 198.46.86.11
2022-11-04 01:24:39 +0000
0 - 0 - 1 bigbubba.com/vmn/Standard_Bank_Front_Latest/O (...) 198.46.86.11
2022-11-04 01:24:19 +0000
0 - 0 - 1 bigbubba.com/vmn/Standard_Bank_Front_Latest/O (...) 198.46.86.11
2022-11-04 01:23:59 +0000
0 - 0 - 1 bigbubba.com/vmn/Standard_Bank_Front_Latest/O (...) 198.46.86.11

Last 5 reports on ASN: IMH-IAD

Date UQ / IDS / BL URL IP
2022-12-09 04:01:08 +0000
0 - 0 - 3 govisitplayaflamingo.com/ 144.208.73.139
2022-12-09 02:00:44 +0000
0 - 0 - 2 venturaluca.com/auth/view/share 70.39.151.243
2022-12-08 20:55:05 +0000
0 - 0 - 2 tadweersaudi.com/usdn/athabascau 198.46.90.148
2022-12-08 15:46:50 +0000
0 - 0 - 0 www.slickrock.com/belize-money/#:~:text=Bring (...) 70.39.250.4
2022-12-08 08:40:30 +0000
0 - 0 - 18 www.globalgroupofeducation.com/ehe/?i=i&0=aaa (...) 198.46.87.187

Last 5 reports on domain: tsitrucking.com

Date UQ / IDS / BL URL IP
2022-10-06 20:38:16 +0000
0 - 0 - 26 tsitrucking.com/wp-content/790/APPROVAL%20PAG (...) 198.46.86.11
2022-09-21 13:35:52 +0000
0 - 0 - 4 tsitrucking.com/55/Standard_Bank_Front_Latest/ 198.46.86.11
2022-09-20 21:37:57 +0000
0 - 0 - 9 tsitrucking.com/55/Standard_Bank_Front_Latest (...) 198.46.86.11
2022-09-20 21:37:39 +0000
0 - 0 - 11 tsitrucking.com/55/Standard_Bank_Front_Latest (...) 198.46.86.11
2022-09-20 21:37:19 +0000
0 - 0 - 11 tsitrucking.com/55/Standard_Bank_Front_Latest (...) 198.46.86.11

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-04 01:23:18 +0000
0 - 0 - 1 bigbubba.com/vmn/Standard_Bank_Front_Latest 198.46.86.11
2022-10-06 21:36:20 +0000
0 - 0 - 10 tranquillo.com.br/Stan_B/ 147.135.10.43
2022-10-04 09:57:58 +0000
0 - 0 - 9 ldev.ir/strne/ 185.143.233.120
2022-09-16 12:36:00 +0000
0 - 0 - 8 www.hotelnumi.it/00/ 193.70.57.51
2022-09-12 09:30:38 +0000
0 - 0 - 13 kichengate1.com/strne 192.185.52.165


JavaScript

Executed Scripts (1)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (40)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Retry-After, Content-Type, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 21:13:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xjMHsoziipNl1g4zb87DsK1DcOb9a2d9-FcLdd9k80feSIKfH8EYNA==
Age: 1352


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D1e_LRr9UOmyvsfjRvKLrC76uEXxabJy_oeWxePC6MW3PFFzY_Mguw==
age: 61234
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3905
Expires: Tue, 20 Sep 2022 22:40:52 GMT
Date: Tue, 20 Sep 2022 21:35:47 GMT
Connection: keep-alive

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 20 Sep 2022 21:35:47 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /55/Standard_Bank_Front_Latest/ HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Tue, 20 Sep 2022 21:35:47 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=141e247930f9ef22815376697695bc66; path=/
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1116), with CRLF line terminators
Size:   29861
Md5:    0e8313a94ce3a31c70ed1fc51e9b1101
Sha1:   4703a7e434dd1b1b4bfa714ff9b4588b0fcea3f2
Sha256: 1e128611d5f1d71c7594b4fe54b92d115f219d5b99b56b4f4200971792cbb65d

Alerts:
  Blocklists:
    - openphish: Standard Bank of South Africa
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min.css HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Tue, 22 Jun 2021 13:25:58 GMT
Accept-Ranges: bytes
Content-Length: 68336
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65206), with CRLF line terminators
Size:   68336
Md5:    ee34e871882dde255cad1de25feb9541
Sha1:   ae9aeea5c56444b43206e98ce8123f0e7b9e5c2d
Sha256: ab9b1811fa5cdcb1468e501c5ae704095fe7b771574274e1774c282e01aeba6f
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 21:03:22 GMT
Expires: Tue, 20 Sep 2022 21:33:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e8stlzDGETmDUKraty33PQdB7v1wKCPzY_4NjHK8MACU-33yZIBX_A==
Age: 1946


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/sb_logo.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 19:26:06 GMT
Accept-Ranges: bytes
Content-Length: 6899
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 116 x 134, 8-bit colormap, non-interlaced\012- data
Size:   6899
Md5:    3577140395dbe02972a42a09126ca0f9
Sha1:   7e2fa7ef7cb1c6ed6e207cc0720adbcdb37ab36c
Sha256: 5e03e8a2ea184c5c68a1d0e1446b7ea7c57d60a4d18400267136ff423ac9633e
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/icn_shield_with_lock_42.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 19:25:58 GMT
Accept-Ranges: bytes
Content-Length: 1759
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 40 x 46, 8-bit/color RGBA, non-interlaced\012- data
Size:   1759
Md5:    9086b591bec33c717add2ca6426ebfd9
Sha1:   b02a92dbad43db29c1fe134c7f3c4bd9ff69818a
Sha256: 61d18c253909a2759193f36bd4f4757a47d5de7be38c7a0052947453daec6282
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/locked_24_tertiary.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 19:26:02 GMT
Accept-Ranges: bytes
Content-Length: 351
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 12 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size:   351
Md5:    27e87471032425ed8bb873d9c43b52b1
Sha1:   df078567410e8ef2157f123cfe6aecca44fa671c
Sha256: 539663d83d4d2e55bca59ded8aefef25111691bc9795d5c0c1d13b142795cf6e
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/icn_register_28.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 19:25:54 GMT
Accept-Ranges: bytes
Content-Length: 611
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 26 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   611
Md5:    5509313ad16b8d05f851890a70fdf573
Sha1:   e9ef6ab5d091dad22ba02d5b92c62fe02c410a05
Sha256: b7b76d870a0a9617e0f6126f9c78b7d35733c13d67bd7df584515e8b32594f18
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/login-email.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 19:25:50 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 36 x 35, 8-bit/color RGBA, interlaced\012- data
Size:   1150
Md5:    19dcee6768ba4fc80c32f53962a5d587
Sha1:   a94426111dc2305811a71b47b326fdcb7fdbe0ee
Sha256: 2450014250927af73636e00dd54036fbd745d5169435ed779b0bcb675258361f
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/PlayBadge.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 19:25:46 GMT
Accept-Ranges: bytes
Content-Length: 3877
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 116 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size:   3877
Md5:    3d34b119e42d33707ef6daaba40f3ec8
Sha1:   0b264bd3477dc93304def2d1847aaed6aada24ee
Sha256: 57f6f21b2fe8bc0c67e9ff4350c825de7a3cc8b3259253828d12d396d616aefd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2459
Cache-Control: 'max-age=158059'
Date: Tue, 20 Sep 2022 21:35:48 GMT
Last-Modified: Tue, 20 Sep 2022 20:54:49 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed49.css?z=1612885494473 HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min.css
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 20:48:40 GMT
Accept-Ranges: bytes
Content-Length: 310570
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (62909)
Size:   310570
Md5:    42292c660305e1650dc1bc16bc560833
Sha1:   eea6f9fc5eeaa0fccc22eab4268cffa29fd83a6c
Sha256: 05fb4fffc299f73d77b33039935c631533a370e9178823aeb6ecf34c3140980c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed44.css?z=1612885494473 HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min.css
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 15:51:08 GMT
Accept-Ranges: bytes
Content-Length: 106358
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   106358
Md5:    5e09df8b77045cc32b66c91b34748c79
Sha1:   9a3120ec7a02ce9512a15cf01d15a28643760562
Sha256: 1d37a24706a9b7ef61dfef37effcf7e9668080b854e2ecba5db74f89c208230d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bI1oWTggvQjfsJoM8Cq07w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.242.41.15
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2x6whY5LWqz7/eXfYOXU6GolfDg=

                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed41.css?z=1612885494473 HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min.css
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Tue, 22 Jun 2021 13:28:30 GMT
Accept-Ranges: bytes
Content-Length: 245573
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size:   245573
Md5:    773cb886c3354993b89dce2a919fea7e
Sha1:   10a39dc6772afe1ad8c97c4d795a7baa9ad78245
Sha256: 98fa283748b7d052467b4bd6aaa98d45a667d390c008b3b45aa679914121345f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed40.css?z=1612885494473 HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min.css
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 21:30:16 GMT
Accept-Ranges: bytes
Content-Length: 332112
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (53215), with CRLF line terminators
Size:   332112
Md5:    702b80493ad0bdb0c65da0fc0a76cd27
Sha1:   14b11854aba49eabc290fbd8548b2a15673b0efc
Sha256: f4c3e8fe992c60ae0b42bd89de1050b4928623cced6242008288fee24702d366

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed39.css?z=1612885494473 HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min.css
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Tue, 22 Jun 2021 13:24:58 GMT
Accept-Ranges: bytes
Content-Length: 253116
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   253116
Md5:    70bf473b796d25711697428e85d4dcb2
Sha1:   3e72d8e9b7563c3917269fc7cf3f8833d03026e0
Sha256: b9339526d34d7d298dabb34b9c04be6da2d80ef3432ce9b8f6a5a4c25e2ddf4c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed45.css?z=1612885494473 HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min.css
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Tue, 20 Sep 2022 21:35:48 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 15:51:08 GMT
Accept-Ranges: bytes
Content-Length: 434985
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   434985
Md5:    dddf0908dfbc83954d437881d6e339ae
Sha1:   5dc5bfa55ec52f9004cf67bb4980036c474fddf8
Sha256: c415bbd5aeeaa215da204eeacdad5471ee670c054e295a2df1232a575166a2cf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/icon_global_white.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Last-Modified: Tue, 09 Feb 2021 11:52:48 GMT
Accept-Ranges: bytes
Content-Length: 1090
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 26 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   1090
Md5:    fa84956901e030193422bde03f7c7c26
Sha1:   2084f5489d4897356ba4569004d214f35b560cbd
Sha256: a98db87f78fe65c1c150fe8eddba301a4040bec74b19304bcad6405dbc323d9d
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/icon_email_white.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Last-Modified: Tue, 09 Feb 2021 11:52:48 GMT
Accept-Ranges: bytes
Content-Length: 795
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 26 x 17, 8-bit/color RGBA, non-interlaced\012- data
Size:   795
Md5:    6070e3ce9cbf09cc71464b833fc9521c
Sha1:   3168a304ee9052834f3595ac31170cc0b61d4bc3
Sha256: 2daf53b1d65351e31f6c8513731bec5ecd65fd1c072d8ddd5521e35cc31a73de
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/appStoreBadge.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Last-Modified: Fri, 12 Feb 2021 19:25:42 GMT
Accept-Ranges: bytes
Content-Length: 4290
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 114 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   4290
Md5:    6afb7ed9607190cc3a412f88914d1d98
Sha1:   3bbfebacfbe2f29c139f41a36cff1f565143f294
Sha256: 287794a8f89b9a10b699cf3c625e0f4847b0989018675fdb55c7182003a13dc0
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/icon_south_africa_white.png HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Last-Modified: Tue, 09 Feb 2021 11:52:48 GMT
Accept-Ranges: bytes
Content-Length: 850
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 26 x 22, 8-bit/color RGBA, non-interlaced\012- data
Size:   850
Md5:    c127d3145cf161974bc5b86ecf705c6b
Sha1:   3ee94a38c70107611168f5c7570fa6be89157736
Sha256: 659ec5c9f365d3e03d205766dcf6103fdb716dae3e99d8742d33f1e31eb37b2d
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/Background_Image_Desktop.jpg HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed40.css?z=1612885494473
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/fonts/bentonsans/regular/bentonsans-regular-webfont.woff HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed41.css?z=1612885494473
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Last-Modified: Tue, 09 Feb 2021 11:52:48 GMT
Accept-Ranges: bytes
Content-Length: 11864
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 11864, version 1.0\012- data
Size:   11864
Md5:    90c8551151f406b6cc3f53ea70e84d06
Sha1:   016fdd1e48560897281ba28c4219491b856a44ce
Sha256: 0402b8e6e3b789ffec9618f6baea5b80a5c7d20a44394327a4d5a8e5ee369acf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/fonts/icomoon.ttf HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/Lib/stylesheets/css/app.min-blessed41.css?z=1612885494473
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: font/ttf
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Last-Modified: Tue, 09 Feb 2021 11:52:48 GMT
Accept-Ranges: bytes
Content-Length: 26328
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data
Size:   26328
Md5:    94e67b493cf9b392d2124f5c289a595e
Sha1:   99e4301319671764cf82a54ae4fac6b6a1a4621d
Sha256: a4341534409961ae34ca429828b0352bf2fb321944ff513581b9810da9b401db

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /55/Standard_Bank_Front_Latest/Lib/img/favicon.ico HTTP/1.1 
Host: tsitrucking.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tsitrucking.com/55/Standard_Bank_Front_Latest/
Cookie: PHPSESSID=141e247930f9ef22815376697695bc66
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         198.46.86.11
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Tue, 20 Sep 2022 21:35:49 GMT
Server: Apache
Last-Modified: Tue, 09 Feb 2021 11:52:48 GMT
Accept-Ranges: bytes
Content-Length: 6398
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size:   6398
Md5:    57fa24bf8aa987f75d34d08edeeee583
Sha1:   f5a1c0ae56994f310afe6aaf6053b35f328025aa
Sha256: e63e4818edbc63a849b1f1733278136eb041951fba85f76975d77f71c9e12132
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20449
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Tue, 20 Sep 2022 21:35:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20449
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Tue, 20 Sep 2022 21:35:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20449
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Tue, 20 Sep 2022 21:35:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20449
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Tue, 20 Sep 2022 21:35:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20449
Expires: Wed, 21 Sep 2022 03:16:39 GMT
Date: Tue, 20 Sep 2022 21:35:50 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
age: 84367
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11832
Md5:    2ed7323b395e757f7766ea0045efdaca
Sha1:   8b91bc3069a3217bc719c27959d578b353b5d9dc
Sha256: 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 84663
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9865
Md5:    1a7d863845e96c5927e812f325c08c16
Sha1:   b8484fb5443344b03e52dd56b1d6c5682eb6221a
Sha256: fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 41388
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10894
Md5:    d3e70b2859ca89b353682d03f6b46b93
Sha1:   ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
Sha256: 43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 84085
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9543
Md5:    30fbdfee7ec4513a5ff3dfcb7282f816
Sha1:   a852edb64a7220532aa619ab2a440c3a7e11b97a
Sha256: 4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 84596
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11145
Md5:    c283017ec789693602177a2785177e21
Sha1:   ff8286c4d2cf87a1865d56d082bc5235dba60ad7
Sha256: 520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 84366
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9873
Md5:    7ca0c1a7f205ad07f1cce80b26448873
Sha1:   0e14f5062e40ce94346494ff947bfcf74b5e88c1
Sha256: ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f