Report - kyc.george-moczynski.com/DIB/d3df12abe4b3473

Report Overview

Submitted URL
kyc.george-moczynski.com/DIB/d3df12abe4b3473
IP
192.185.185.157
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2022-10-02 22:35:31
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.entrust.net	1208	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	20 kB	104.110.10.32
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.43.61.95
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	45 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.103
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	108.156.28.102
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
kyc.george-moczynski.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.5 kB	1.1 MB	192.185.185.157
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
online.dib.ae	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	2.0 MB	151.253.133.134

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-02	medium	kyc.george-moczynski.com/DIB/d3df12abe4b3473	Phishing
2022-10-02	medium	kyc.george-moczynski.com/DIB/d3df12abe4b3473/	Phishing
2022-10-02	medium	kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/fonts/NewsGothicMT/NewsGothicMT.woff	Phishing
2022-10-02	medium	kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/fonts/NeoSansStd-Regular.woff	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (13)

	URL	Size	First Seen	Last Seen
	online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.logintransaction.js?v=1588755968539	38 kB	2023-03-08	2023-03-08
Pretty URL online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.logintransaction.js?v=1588755968539 IP 151.253.133.134 ASN #5384 Emirates Telecommunications Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-03-08 04:58:43 Times Seen1 Hash 9d97b5ca348ae1242315d7e4c5d1e301 08bc32e20904b643d962a95507de48d4072571ac 4385a9d4dc23d051dcc3e2f5f51f8f1003e39d6b4c677f381092f3cacc4a3c4c Loading...

	kyc.george-moczynski.com/DIB/d3df12abe4b3473/	84 B	2023-03-08	2023-11-15
Pretty URL kyc.george-moczynski.com/DIB/d3df12abe4b3473/ IP 192.185.185.157 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-11-15 02:04:30 Times Seen9 Hash 92d28622265be08510d19715cbff5b06 877ea64bac6f52ecce98e4803734b14fd7851ec7 e520d27a3e90845b2f3e3cf109138042794dc9de599ac4b325a44b14dcca8e2a Loading...

	kyc.george-moczynski.com/DIB/d3df12abe4b3473/	523 B	2023-03-08	2023-03-26
Pretty URL kyc.george-moczynski.com/DIB/d3df12abe4b3473/ IP 192.185.185.157 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-03-26 09:21:19 Times Seen2 Hash 8f269e92896f05a326a40b1e89c42650 487dbebc2269c444f90319423ffdf39c6403a927 98cda0abe2543d88495f9e4ee9a6e434ba8be09bb9b9e6a98088de29d521183e Loading...

	online.dib.ae/Features/wwwroot/statics/ib/js/security.js?v=1588755968596	14 kB	2023-03-08	2023-12-05
Pretty URL online.dib.ae/Features/wwwroot/statics/ib/js/security.js?v=1588755968596 IP 151.253.133.134 ASN #5384 Emirates Telecommunications Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-12-05 14:41:30 Times Seen20 Hash 37eff205833d0608c5ace18c6dd3de35 ee0060251f8be5dd4c2c0c559edc05f6eb1a9b27 47b7eb87072974794bbe9e1ad0f4e9c77c4dd728767dd2abb7c02400f84183c9 Loading...

	online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.js?v=1588755968539	2.5 kB	2023-03-08	2023-12-05
Pretty URL online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.js?v=1588755968539 IP 151.253.133.134 ASN #5384 Emirates Telecommunications Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-12-05 14:41:30 Times Seen19 Hash db1cef6d224324d0d413d1433f7eb743 f57b3ced2526bc95f40f45ae7e1331b15af1b670 81a6c93e23cc41080c664c8a9973c706f18c49c47080ad6785858f62fe73eafe Loading...

	kyc.george-moczynski.com/DIB/d3df12abe4b3473/	1.9 kB	2023-03-08	2023-11-15
Pretty URL kyc.george-moczynski.com/DIB/d3df12abe4b3473/ IP 192.185.185.157 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-11-15 02:04:30 Times Seen9 Hash c5a0b556a3ccf88a514eb9f995c077b3 fd5dd4ddb3834b51e5e84cf47c0929391dd55023 980160c0141a379d0531e644e17df76e2889e25d41f78dfba4b8acbaeaab15d1 Loading...

	online.dib.ae/Features/wwwroot/statics/ib/js/vb-all.js?v=1588755968596	228 kB	2023-03-08	2023-03-26
Pretty URL online.dib.ae/Features/wwwroot/statics/ib/js/vb-all.js?v=1588755968596 IP 151.253.133.134 ASN #5384 Emirates Telecommunications Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-03-26 09:21:19 Times Seen2 Hash a99959a80f092052a83d2f4e9d1c5cb3 c9da3385bc171b8ff809b79b565a76dd88e34dc6 1d979c04ca7bc1d07706347632797d37918d6d499d22f8c5c2b75e5e69ca58d6 Loading...

	online.dib.ae/Features/wwwroot/statics/ib/js/highcharts-all.js?v=1588755968596	204 kB	2023-03-08	2023-12-05
Pretty URL online.dib.ae/Features/wwwroot/statics/ib/js/highcharts-all.js?v=1588755968596 IP 151.253.133.134 ASN #5384 Emirates Telecommunications Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-12-05 14:41:30 Times Seen22 Hash e0f51526d4dfe67ae0869d7557dfe18f 273e5b216ad6f9f57d1a680c731727cb8b1f2b4f 312d1e4c9b8405b4372fe1e5c56680e4587b88d6602623bc67714f4843cee059 Loading...

	online.dib.ae/Features/wwwroot/statics/ib/js/ie-fixes.js?v=1588755968596	1.2 kB	2023-03-08	2023-12-05
Pretty URL online.dib.ae/Features/wwwroot/statics/ib/js/ie-fixes.js?v=1588755968596 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-12-05 14:41:30 Times Seen20 Hash 096cc609c0f5704d61ce899e3f1cc6b7 6028baf4b7d0d46e1c0ad0f6117af13e98f1b902 913defb47d44f194dc96a64587dc5bcc4bfb97f25349e2d6a55ab6321f66c56c Loading...

	kyc.george-moczynski.com/DIB/d3df12abe4b3473/	1.2 kB	2023-03-08	2023-03-26
Pretty URL kyc.george-moczynski.com/DIB/d3df12abe4b3473/ IP 192.185.185.157 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-03-26 09:21:19 Times Seen2 Hash 48375b72cea3b76703fd1684d0e022f3 bd36a75c19a05657df441d52b9e97f61ca1f6201 72bdfb0e28042da9a8171ae3f2558c4fe25e30903959d856894f243700b53791 Loading...

	unknown	0 B	2023-03-07	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-24 03:48:40 Times Seen37030150 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	online.dib.ae/Features/wwwroot/statics/ib/js/dataTables-all.js?v=1588755968596	118 kB	2023-03-08	2023-12-05
Pretty URL online.dib.ae/Features/wwwroot/statics/ib/js/dataTables-all.js?v=1588755968596 IP 151.253.133.134 ASN #5384 Emirates Telecommunications Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-12-05 14:41:30 Times Seen19 Hash 921e083aadb9d36dc9f3902cb71ef387 9db8d7d361da023b8f4b06dd6d20479a479b1cfe 8f02754b4e908b52d7c425c0922ed9c9b0b26dbdd79f0e7558ae406c4cef7b68 Loading...

	online.dib.ae/Features/wwwroot/statics/ib/js/app-all.js?v=1588755968596	64 kB	2023-03-08	2023-12-05
Pretty URL online.dib.ae/Features/wwwroot/statics/ib/js/app-all.js?v=1588755968596 IP 151.253.133.134 ASN #5384 Emirates Telecommunications Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:51:21 Last Seen2023-12-05 14:41:30 Times Seen18 Hash 46e5e40211759129209ff41ec32a1d7e 757188495e6592e2ea2e356844f7458e439246ad 785babf9c4580968acce3a3f725f36c297e5ab7f51fe3caea7fa467fad580c56 Loading...

HTTP Transactions (62)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16083
Expires: Mon, 03 Oct 2022 03:03:22 GMT
Date: Sun, 02 Oct 2022 22:35:19 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

18.165.201.103

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.165.201.103:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 22:03:21 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 ad6a59dd9fdc1afb57f7131fcd96bf20.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: VYrhIMDwiKEO_9NWNr1WBp2dtXyCj2ALjSDaYzFghXr9or_qDj6K_Q==
Age: 1918

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

108.156.28.102

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
108.156.28.102:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 eb3d2bd89447108973b8d2779fc789e4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: UQLqgScrb5wB5USNw8MxdPbu3pNtKUIRcTORfIdnrasRawYbzYjdIQ==
age: 68523
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 22:35:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.165.201.103

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.165.201.103:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 02 Oct 2022 22:32:56 GMT
Expires: Sun, 02 Oct 2022 22:46:08 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 ed5bf73eea0876436de4cbcd6f6945e4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: zwTKuYqCeksODUwH6f6yMArrk0Obyzw4BThjMaDQFiwA_v1QlNQ8Bg==
Age: 144

kyc.george-moczynski.com/DIB/d3df12abe4b3473

192.185.185.157

301 Moved Permanently

260 B

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
260 B (260 bytes)
Hash
e4a71d35437a942cc53a0306e2add145
b5e5f07dbb958161cfcf9bbb657d5701792f93fe
2b8edd863cb43db6e9e880c5a3c0b13cc7bc80abca445ab1157624280c60cc15

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /DIB/d3df12abe4b3473 HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 02 Oct 2022 22:35:19 GMT
Server: Apache
Location: http://kyc.george-moczynski.com/DIB/d3df12abe4b3473/
Content-Length: 260
Keep-Alive: timeout=5, max=75
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 376
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 22:35:20 GMT
Last-Modified: Sun, 02 Oct 2022 22:29:04 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.43.61.95

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.43.61.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6xKh48tTXYiZjDplGBxYAw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 46kB45snldNJtJsIoZSzrXWdUSg=

kyc.george-moczynski.com/DIB/d3df12abe4b3473/

192.185.185.157

200 OK

914 kB

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473/
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57422)
Size
914 kB (913538 bytes)
Hash
341a79d5e8c4116fe77cb7b4f7189636
c9eff43e9259552fc7e5e3825620c126653b86a5
f20a0cad8bf6705f7a0a3dc0368b8f3309db1e8abb53d132910a49ef3fce6db8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /DIB/d3df12abe4b3473/ HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 22:35:20 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=c9a220e30af8e8b7f09419ec0df1b130; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/ib/css/custom-all.css

192.185.185.157

200 OK

129 kB

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/ib/css/custom-all.css
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (38101), with CRLF, LF line terminators
Size
129 kB (129051 bytes)
Hash
dce101e78ed18a0e66de2a19641c2fa0
7f7c90f1bd945a4035d1d5bbd429fe18fb60e7cc
559b06df24ea7ddb04f683fde70f04c3e9f5eba6e9ce0098c0b860d0fcc9c2af

HTTP Headers

GET /DIB/d3df12abe4b3473/statics/ib/css/custom-all.css HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/DIB/d3df12abe4b3473/
Cookie: PHPSESSID=c9a220e30af8e8b7f09419ec0df1b130

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 22:35:21 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 22 Sep 2022 12:53:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5220
Expires: Mon, 03 Oct 2022 00:02:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5220
Expires: Mon, 03 Oct 2022 00:02:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5220
Expires: Mon, 03 Oct 2022 00:02:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5220
Expires: Mon, 03 Oct 2022 00:02:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5220
Expires: Mon, 03 Oct 2022 00:02:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6321 bytes)
Hash
8bb7613964aef696917cb85a6d0bcac4
89ce0e6d742144439a96ace034adae4e7e167311
24b100b10aa041effad83e9379447f4f62d95dcf6eb27a6b093a7caaa484f964

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F943d6a55-696e-4fd8-901a-a9ab097959d7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6321
x-amzn-requestid: 605adeca-4345-4481-999e-d50ebc123767
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabGsgIAMFcSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-68542d1b56697ab33dd63941;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QUAqebzhQ9iSZGYTDNVjov5z04lkVREs5HYXMjFziBKHiTJIEFtIyg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:45:25 GMT
age: 2997
etag: "89ce0e6d742144439a96ace034adae4e7e167311"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21b653ea-1faa-4101-b02e-44da6b46de9c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9095 bytes)
Hash
a59b70f464b106c9e54579d8b2f967fa
f964cf69ae825bb32eef4b364df8227c5fb73fce
cf2c8c1d3ebbdb8fea6b90d81d240120749cfdceb525713ef153481cb15a438e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21b653ea-1faa-4101-b02e-44da6b46de9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9095
x-amzn-requestid: 9f6cbd35-adf6-4163-aaf0-a3534bfc25c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNes7G79oAMF2DQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544b8-306a82aa5f91bcdb3b349b87;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1OJxta_mZGnKulQTucUAnzu5w6Mx7L5Tyo_eleCDo76KH2ywvEUTHw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:11:12 GMT
age: 1450
etag: "f964cf69ae825bb32eef4b364df8227c5fb73fce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 64423
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4b91592-bb2f-4b2e-9c62-80d06ad4b698.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.7 kB (3695 bytes)
Hash
e3dfda0e06e989942bf45f4c2bf18d7c
6d0cee63012a8f79aef1f1e751e2940582b981e1
a79d4015713255da4475ff9193ccfeed72737f5f03027a42fd86cc7b095ddf03

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4b91592-bb2f-4b2e-9c62-80d06ad4b698.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3695
x-amzn-requestid: f1f35cb1-9fc2-4694-8bf4-9d9e41f9bd7f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWabEM8oAMF0RQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a0442-3140202b1a3b892702978a7e;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kxxeDkHccWmlQFBbBf-5gKzqY0utY15Czvx0Ms7QS1lJMXExRmbjjQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:51:56 GMT
age: 2606
etag: "6d0cee63012a8f79aef1f1e751e2940582b981e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d589035-4143-4e43-a45c-b842ae27b9a3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4522 bytes)
Hash
34ba42086104460665f7f4f579235592
58f10485c5273cbed8159c98b9065b192ba3d00b
79f1febc020ab611c5d9a8bc1af237a63420f8215963fd97f6c4b9bccfa17d24

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d589035-4143-4e43-a45c-b842ae27b9a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4522
x-amzn-requestid: cc836204-3c4f-48d0-9569-b1622e6d2178
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMVoRH9toAMFwig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334cfce-096ff90412945ca06335e987;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 22:50:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BzgI7sWS7fsSOANaDI0S4qrT_2iIkp2TOt3bPfm56T0m9jmxRFfSIA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 17:50:25 GMT
age: 17097
etag: "58f10485c5273cbed8159c98b9065b192ba3d00b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8277 bytes)
Hash
6a90e53b55500427aed06efa3a9baa8c
43a66cd291d1413d7147a29b2a7b27277a443f0b
2cf5790e81140bc56b46163787f84c54a07f58e90001837624f426aafa8031c5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8277
x-amzn-requestid: a7d76241-7da1-4c84-9c73-2e3a71b81b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZTMfEGHiIAMFpmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63378df9-3727a65235e4dbc60cc11cf0;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 00:46:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8n1l3bN8ykztmC-wGNH_w7xASHFplZa2LvHs8psQ146XILdvEHLWgw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 16:41:13 GMT
age: 21249
etag: "43a66cd291d1413d7147a29b2a7b27277a443f0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
c5a7bb76876442e073afcfdf41c80ae6
37284ff36e2c7ac1bedc46db5d179dd559d93110
bbf35b072a805c6421b6ffb0988b97cbfa86876717c2a6e070b5e9513dba05b6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "BBF35B072A805C6421B6FFB0988B97CBFA86876717C2A6E070B5E9513DBA05B6"
Last-Modified: Sun, 02 Oct 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2077
Expires: Sun, 02 Oct 2022 23:09:59 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
c5a7bb76876442e073afcfdf41c80ae6
37284ff36e2c7ac1bedc46db5d179dd559d93110
bbf35b072a805c6421b6ffb0988b97cbfa86876717c2a6e070b5e9513dba05b6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "BBF35B072A805C6421B6FFB0988B97CBFA86876717C2A6E070B5E9513DBA05B6"
Last-Modified: Sun, 02 Oct 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2010
Expires: Sun, 02 Oct 2022 23:08:52 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
c5a7bb76876442e073afcfdf41c80ae6
37284ff36e2c7ac1bedc46db5d179dd559d93110
bbf35b072a805c6421b6ffb0988b97cbfa86876717c2a6e070b5e9513dba05b6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "BBF35B072A805C6421B6FFB0988B97CBFA86876717C2A6E070B5E9513DBA05B6"
Last-Modified: Sun, 02 Oct 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=2054
Expires: Sun, 02 Oct 2022 23:09:36 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
c5a7bb76876442e073afcfdf41c80ae6
37284ff36e2c7ac1bedc46db5d179dd559d93110
bbf35b072a805c6421b6ffb0988b97cbfa86876717c2a6e070b5e9513dba05b6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "BBF35B072A805C6421B6FFB0988B97CBFA86876717C2A6E070B5E9513DBA05B6"
Last-Modified: Sun, 02 Oct 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3593
Expires: Sun, 02 Oct 2022 23:35:15 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1588 bytes)
Hash
c5a7bb76876442e073afcfdf41c80ae6
37284ff36e2c7ac1bedc46db5d179dd559d93110
bbf35b072a805c6421b6ffb0988b97cbfa86876717c2a6e070b5e9513dba05b6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "BBF35B072A805C6421B6FFB0988B97CBFA86876717C2A6E070B5E9513DBA05B6"
Last-Modified: Sun, 02 Oct 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3526
Expires: Sun, 02 Oct 2022 23:34:08 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1585 bytes)
Hash
cd2cbcb16071dbce5576fc1821f12d8f
7df9d6e5b7bceef9485b7c4bdf1f4bb7c8defeae
388631a5ef62e302c68fdd7bbbc2483d42d7df79ac50c2dc41f6602fcce82a00

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "388631A5EF62E302C68FDD7BBBC2483D42D7DF79AC50C2DC41F6602FCCE82A00"
Last-Modified: Sun, 02 Oct 2022 14:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Sun, 02 Oct 2022 23:35:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1585 bytes)
Hash
cd2cbcb16071dbce5576fc1821f12d8f
7df9d6e5b7bceef9485b7c4bdf1f4bb7c8defeae
388631a5ef62e302c68fdd7bbbc2483d42d7df79ac50c2dc41f6602fcce82a00

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "388631A5EF62E302C68FDD7BBBC2483D42D7DF79AC50C2DC41F6602FCCE82A00"
Last-Modified: Sun, 02 Oct 2022 14:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3557
Expires: Sun, 02 Oct 2022 23:34:39 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1585 bytes)
Hash
cd2cbcb16071dbce5576fc1821f12d8f
7df9d6e5b7bceef9485b7c4bdf1f4bb7c8defeae
388631a5ef62e302c68fdd7bbbc2483d42d7df79ac50c2dc41f6602fcce82a00

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "388631A5EF62E302C68FDD7BBBC2483D42D7DF79AC50C2DC41F6602FCCE82A00"
Last-Modified: Sun, 02 Oct 2022 14:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3545
Expires: Sun, 02 Oct 2022 23:34:27 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1585 bytes)
Hash
cd2cbcb16071dbce5576fc1821f12d8f
7df9d6e5b7bceef9485b7c4bdf1f4bb7c8defeae
388631a5ef62e302c68fdd7bbbc2483d42d7df79ac50c2dc41f6602fcce82a00

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "388631A5EF62E302C68FDD7BBBC2483D42D7DF79AC50C2DC41F6602FCCE82A00"
Last-Modified: Sun, 02 Oct 2022 14:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Sun, 02 Oct 2022 23:35:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

ocsp.entrust.net/

104.110.10.32

200 OK

1.6 kB

URL HTTP/1.1
ocsp.entrust.net/
IP
104.110.10.32:0
ASN
#16625 AKAMAI-AS

File type
data
Size
1.6 kB (1585 bytes)
Hash
cd2cbcb16071dbce5576fc1821f12d8f
7df9d6e5b7bceef9485b7c4bdf1f4bb7c8defeae
388631a5ef62e302c68fdd7bbbc2483d42d7df79ac50c2dc41f6602fcce82a00

HTTP Headers

POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "388631A5EF62E302C68FDD7BBBC2483D42D7DF79AC50C2DC41F6602FCCE82A00"
Last-Modified: Sun, 02 Oct 2022 14:00:00 UTC
Content-Length: 1585
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Sun, 02 Oct 2022 23:35:22 GMT
Date: Sun, 02 Oct 2022 22:35:22 GMT
Connection: keep-alive

online.dib.ae/Features/wwwroot/statics/ib/js/security.js?v=1588755968596

151.253.133.134

200 OK

14 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/js/security.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
ASCII text, with very long lines (7512)
Size
14 kB (13740 bytes)
Hash
37eff205833d0608c5ace18c6dd3de35
ee0060251f8be5dd4c2c0c559edc05f6eb1a9b27
47b7eb87072974794bbe9e1ad0f4e9c77c4dd728767dd2abb7c02400f84183c9

HTTP Headers

GET /Features/wwwroot/statics/ib/js/security.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Last-Modified: Tue, 07 May 2019 08:23:05 GMT
Accept-Ranges: bytes
ETag: "803af417ae4d51:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 13740
Set-Cookie: choco=!IohTitVyr+z2DncYUkr51/8l3uNq4UYXRWUDigePIqbkJqvZmgA3sDaHVPyl9DyLnAjpabTEd1koHA==; path=/; Httponly; Secure
TS01a14119=01054b79ef45802ba11c626a8c9b0bdaedbe11f145ef1094905a5173022d1642229a3e6cb2bc9c601541800064696ae2f6f5f12a84; Path=/
TSae36f1d0027=089d29edacab200010984b9c227b4893f90cdf11f9c692d42a2e92392220b12fd8d3dd2bf7c5e1e308f175c66711300053ba770de37105554f124a0c5a642380f6a278f40333b1a1e1d04d20da1ce95818eb41f5a3f11d915a1e93bf5dc86b2f; Path=/

online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.js?v=1588755968539

151.253.133.134

200 OK

2.5 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.js?v=1588755968539
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
ASCII text, with very long lines (2465), with no line terminators
Size
2.5 kB (2465 bytes)
Hash
db1cef6d224324d0d413d1433f7eb743
f57b3ced2526bc95f40f45ae7e1331b15af1b670
81a6c93e23cc41080c664c8a9973c706f18c49c47080ad6785858f62fe73eafe

HTTP Headers

GET /Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.js?v=1588755968539 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Last-Modified: Mon, 19 Nov 2018 05:31:48 GMT
Accept-Ranges: bytes
ETag: "0ba922ac97fd41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 2465
Set-Cookie: choco=!peTQFsCLxN1Tx0kYUkr51/8l3uNq4V29Q/TqlcKQeXLL6onV/ins4g4gesXy8MieAFbOcOmaYEYbEg==; path=/; Httponly; Secure
TS01a14119=01054b79efeb4af759976b6a3333aca1c20b43628e0131fab98b06a6c1a01b9bbf03df0459637d917b74205f0f25322a359757df62; Path=/
TSae36f1d0027=089d29edacab20007aadd9d873ebb8fc99fcbf1cc2118dfb98c776c0506e239105d465ed8fe84fa308bec7db941130004194875554e470364f124a0c5a6423802607a86e5e4eb19d8f06f8fa4bd783301e111347a22e88471767fcdf2e503c8d; Path=/

online.dib.ae/Features/wwwroot/statics/ib/css/plugins-all.css?v=1588755968596

151.253.133.134

200 OK

13 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/css/plugins-all.css?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
ASCII text, with very long lines (24774)
Size
13 kB (12866 bytes)
Hash
8a1ecf683d25b632bbd7f109159e6113
6a4bda08a8e90e575e19dc0fa0ec57f6147d7d60
49cb39988886f8e4fbcf36769ef765863256d08530afc64832dd1734e765d246

HTTP Headers

GET /Features/wwwroot/statics/ib/css/plugins-all.css?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 23 Jan 2019 19:40:49 GMT
Accept-Ranges: bytes
ETag: "8036a08a53b3d41:0"
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 12866
Set-Cookie: choco=!g3KsKPBOFWhF4O8YUkr51/8l3uNq4TJTM8+QXr91xm7uy4eHrM2ArZoe1P3nILzjsO7slzQM0WlwLw==; path=/; Httponly; Secure
TS01a14119=01054b79efdc776b10b752155a26fb58aa248875d2da36210046806bd2cb4e46bb3734a3f7706b821569ed4a955b2a9ac08d03355e; Path=/
TSae36f1d0027=089d29edacab2000dc2abf7cd22e23fa19fcde68c374bd83d26b0956fe182f08add7fb9a9e4037ec0894e7d8dc113000df4213f47d9842eb4f124a0c5a642380ba88894f0b696fc4eb1a5e12d67d74ecab226133826adcdb78cfba78ed143256; Path=/

online.dib.ae/Features/wwwroot/statics/ib/css/bootstrap-fa-all.css?v=1588755968596

151.253.133.134

200 OK

27 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/css/bootstrap-fa-all.css?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
ASCII text, with very long lines (65536), with no line terminators
Size
27 kB (26610 bytes)
Hash
ab316612d2ca893df930463d2e135afe
af9eb06cc8a3b07ea661ce621d46ed70fa73a4e2
da732590c784c4f7e49c644fd58db0f48b8840b7e751ebe668222a36be8aba51

HTTP Headers

GET /Features/wwwroot/statics/ib/css/bootstrap-fa-all.css?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Mon, 19 Nov 2018 05:32:16 GMT
Accept-Ranges: bytes
ETag: "030433bc97fd41:0"
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 26610
Set-Cookie: choco=!tCb/CuUSYmOEdfIYUkr51/8l3uNq4Wuo3P1VJnqfVo9EEl/2hVBJGztW3IOKe7i2sccP9yY48XiNtQ==; path=/; Httponly; Secure
TS01a14119=01054b79ef63eb8aaba34b742da2c13cc7069187985d66a72f39feb23cb49625d2219d17cc574d730916d71870401cfef84049fb27; Path=/
TSae36f1d0027=089d29edacab20009a80e58185d71b49f6abfdc87d4760ee11a13c7f6ae85a6a34eb29fe34a0546b086d6242981130001ae1a1ec467a6c844f124a0c5a6423806368569f80dcfbeb6a7f74603aac4bb39c02d0e78c06e6c9e7d90582090927b6; Path=/

online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.logintransaction.js?v=1588755968539

151.253.133.134

200 OK

38 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.logintransaction.js?v=1588755968539
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
Unicode text, UTF-8 text, with very long lines (14213)
Size
38 kB (37874 bytes)
Hash
9d97b5ca348ae1242315d7e4c5d1e301
08bc32e20904b643d962a95507de48d4072571ac
4385a9d4dc23d051dcc3e2f5f51f8f1003e39d6b4c677f381092f3cacc4a3c4c

HTTP Headers

GET /Features/wwwroot/VeriBranch.FrontEnd.Login/Modules/flows.logintransaction.js?v=1588755968539 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Last-Modified: Sun, 03 Jul 2022 02:08:25 GMT
Accept-Ranges: bytes
ETag: "80321ec7818ed81:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 37874
Set-Cookie: choco=!lBpfD479qrduQ4oYUkr51/8l3uNq4X33VmCGOmWyYNq2Ddq4GDDYd1R6B3h2jqTMcmF02xx4zGFHqw==; path=/; Httponly; Secure
TS01a14119=01054b79ef79460b992366b79846f1c24b4ebe5592f144155c1fbcaa474284e1b18928e4192809b24556259cd9a1a7f114530e0b7e; Path=/
TSae36f1d0027=089d29edacab2000513aa462d1f77fc585f47b585d5a18529fae87cfc524b65b75afa1d0e379e1a608b5f77822113000ebb81231477e38a74f124a0c5a6423802dd8a580fe50fe097fdf7d92556a593cf3b19a535d700b457067aa53e91f82b3; Path=/

online.dib.ae/Features/wwwroot/statics/ib/js/jquery-all.js?v=1588755968596

151.253.133.134

200 OK

102 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/js/jquery-all.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
ASCII text, with very long lines (31999)
Size
102 kB (101682 bytes)
Hash
57db461787bc44a3f8ef1a4e76493ac7
12d57be8878fb1a035645c02f2f32a8f066ed99a
bbe8ad423197126a47d63e9764965226d4e17e19894c14d37db5a33838c1ea34

HTTP Headers

GET /Features/wwwroot/statics/ib/js/jquery-all.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 07 May 2019 08:23:02 GMT
Accept-Ranges: bytes
ETag: "0772a16ae4d51:0"
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 101682
Set-Cookie: choco=!evadGgY2TJuckvEYUkr51/8l3uNq4aMFAdfj01dFu5hhzO9ifEiJIWS0wDVWy0vMxxGn6/bW/LURpQ==; path=/; Httponly; Secure
TS01a14119=01054b79efa1efe7e58c7458d36b9a75e33d4807a632208ff0dc9bb4c9e5ee101e83ab2cf61f9f04508820fc169ac96bab6671d730; Path=/
TSae36f1d0027=089d29edacab20000a26d664fcc426f6193bd853b8bead7e1eb9ca6ae23dfb7ab336ba605530d09408b415b9da113000b677e19eb77e9ff04f124a0c5a642380829a598cc7754721a0ffc9cb5b7bd28b8ea9c4de5c81e8c96981dd185e87547c; Path=/

kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/img/arabic.png

192.185.185.157

200 OK

2.3 kB

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/img/arabic.png
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 80 x 36, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2274 bytes)
Hash
09d7567d3a9608202dcc678a80330d45
c2c16def2dc85839fca01c023c3959913774fbcc
cd2a411110a9a180de7341ef18a5ebb7bd6e50498f489b05c350d9f6bf8aaa70

HTTP Headers

GET /DIB/d3df12abe4b3473/statics/img/arabic.png HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/ib/css/custom-all.css
Cookie: PHPSESSID=c9a220e30af8e8b7f09419ec0df1b130

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 22:35:22 GMT
Server: Apache
Last-Modified: Thu, 22 Sep 2022 12:53:32 GMT
Accept-Ranges: bytes
Content-Length: 2274
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/png

online.dib.ae/Features/wwwroot/statics/ib/js/dataTables-all.js?v=1588755968596

151.253.133.134

200 OK

37 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/js/dataTables-all.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
Unicode text, UTF-8 text, with very long lines (31992)
Size
37 kB (37253 bytes)
Hash
2ff664c628a0f625bb19af6d6a9c71ba
421180a6c28ab9397e70d4f9df83996ae4ec6634
a03b4cfdec10173ad4c0d3370d19edeb92f3accb1fca4799c631594c56bb45f2

HTTP Headers

GET /Features/wwwroot/statics/ib/js/dataTables-all.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 07 May 2019 08:23:08 GMT
Accept-Ranges: bytes
ETag: "0febd19ae4d51:0"
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 37253
Set-Cookie: TSae36f1d0027=089d29edacab2000b21858ea8e465ddcc82f444da33640681efd30d7fe931e94f245ebc3765f3d1a08f9550daa1130003f91795a624e05164f124a0c5a64238050a39dd667f17592488e73823858579c327869afb5ec30a6e016145a0a4e0e8d; Path=/

kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/img/castle.png

192.185.185.157

200 OK

1.2 kB

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/img/castle.png
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 19 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1190 bytes)
Hash
425f4d8e2f9957a86fb09bbf996e8d5b
191cb412ac3c5a9fe0439a11f236595475e99777
1a83881934e61d3a24b58b11981263f39944dc9f9c9ddaa98e700fd835d93981

HTTP Headers

GET /DIB/d3df12abe4b3473/statics/img/castle.png HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/ib/css/custom-all.css
Cookie: PHPSESSID=c9a220e30af8e8b7f09419ec0df1b130

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 22:35:22 GMT
Server: Apache
Last-Modified: Thu, 22 Sep 2022 12:53:32 GMT
Accept-Ranges: bytes
Content-Length: 1190
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png

kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/img/youtube_icons.png

192.185.185.157

200 OK

1.5 kB

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/img/youtube_icons.png
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 33 x 25, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1546 bytes)
Hash
635a75598e50e06ea75ee5456887b96c
913ca6624733ef6714d2a17b4ff32e68e8c9e91f
b8ccdbd2ae8864b4c8e371ce24d772498d77fdd44fab601620cf9b33b1157aa2

HTTP Headers

GET /DIB/d3df12abe4b3473/statics/img/youtube_icons.png HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/ib/css/custom-all.css
Cookie: PHPSESSID=c9a220e30af8e8b7f09419ec0df1b130

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 22:35:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 22 Sep 2022 12:53:32 GMT
Accept-Ranges: bytes
Content-Length: 1546
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=75
Content-Type: image/png

online.dib.ae/Features/wwwroot/statics/ib/js/app-all.js?v=1588755968596

151.253.133.134

200 OK

64 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/js/app-all.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
Unicode text, UTF-8 text, with very long lines (24476)
Size
64 kB (63800 bytes)
Hash
46e5e40211759129209ff41ec32a1d7e
757188495e6592e2ea2e356844f7458e439246ad
785babf9c4580968acce3a3f725f36c297e5ab7f51fe3caea7fa467fad580c56

HTTP Headers

GET /Features/wwwroot/statics/ib/js/app-all.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Last-Modified: Thu, 15 Sep 2022 13:57:19 GMT
Accept-Ranges: bytes
ETag: "809ed11bc9d81:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 63800
Set-Cookie: TSae36f1d0027=089d29edacab2000920ee0e887d36ce85e0f667ece4076bbf504dc0212aeda846f6e363e559b083208bf0bbff8113000a2108d9dbaa926e34f124a0c5a642380ea244d3b34817dcfee09f9e0a967bc6f3210d2480ba55422ea6337377027d122; Path=/

kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/fonts/NewsGothicMT/NewsGothicMT.woff

192.185.185.157

200 OK

37 kB

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/fonts/NewsGothicMT/NewsGothicMT.woff
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, TrueType, length 37164, version 1.0\012- data
Size
37 kB (37164 bytes)
Hash
8cbf8ec0d0bb72060824b504375e9dcd
b4aa6b982fb3c5ae28c198c36efc99dde3f16d42
e92c69e58069be378f56f286b3f418ddbaaf6c5c390834e6c029e27acab7c2d0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /DIB/d3df12abe4b3473/statics/fonts/NewsGothicMT/NewsGothicMT.woff HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/ib/css/custom-all.css
Cookie: PHPSESSID=c9a220e30af8e8b7f09419ec0df1b130

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 22:35:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 22 Sep 2022 12:53:32 GMT
Accept-Ranges: bytes
Content-Length: 37164
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=75
Content-Type: font/woff

online.dib.ae/Features/wwwroot/statics/ib/js/vb-all.js?v=1588755968596

151.253.133.134

200 OK

228 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/js/vb-all.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
Unicode text, UTF-8 text, with very long lines (31987)
Size
228 kB (227470 bytes)
Hash
a99959a80f092052a83d2f4e9d1c5cb3
c9da3385bc171b8ff809b79b565a76dd88e34dc6
1d979c04ca7bc1d07706347632797d37918d6d499d22f8c5c2b75e5e69ca58d6

HTTP Headers

GET /Features/wwwroot/statics/ib/js/vb-all.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Last-Modified: Thu, 15 Sep 2022 13:57:16 GMT
Accept-Ranges: bytes
ETag: "0462310bc9d81:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 227470
Set-Cookie: TSae36f1d0027=089d29edacab200083e4ec80eb0442852e6cf688e64205c0170ba83d89a73e3812ea402f23b5831208f9639edd11300016346c7722e5d5634f124a0c5a64238041c58ddc81fa00e3fe687026868c8e071147e36140e87c373c8862816680357b; Path=/

kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/fonts/NeoSansStd-Regular.woff

192.185.185.157

200 OK

27 kB

URL HTTP/1.1
kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/fonts/NeoSansStd-Regular.woff
IP
192.185.185.157:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format, CFF, length 27276, version 1.53\012- data
Size
27 kB (27276 bytes)
Hash
2cc168506746556f9e139d1bbffe8e3a
188d20c761b47a2151626d5c873504eca936eeb7
7bd46ee291d06490f10aa30df38c5e99ece668786edf774e52275fca0f256e86

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /DIB/d3df12abe4b3473/statics/fonts/NeoSansStd-Regular.woff HTTP/1.1
Host: kyc.george-moczynski.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/DIB/d3df12abe4b3473/statics/ib/css/custom-all.css
Cookie: PHPSESSID=c9a220e30af8e8b7f09419ec0df1b130

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 22:35:22 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 22 Sep 2022 12:53:32 GMT
Accept-Ranges: bytes
Content-Length: 27276
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Keep-Alive: timeout=5, max=75
Content-Type: font/woff

online.dib.ae/Features/wwwroot/VeriBranch.Web/Modules/veribranch.directives.js?v=1588755968596

151.253.133.134

200 OK

273 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/VeriBranch.Web/Modules/veribranch.directives.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
ASCII text, with very long lines (25511)
Size
273 kB (272820 bytes)
Hash
44b6b9d96ed39deff6e049e784536706
5068111beafc941d21c29b94107a5d5d92fc2351
a393da59205e79b0d2190e721244b63219e813f6bbb538d18f2e1f300f2ec49e

HTTP Headers

GET /Features/wwwroot/VeriBranch.Web/Modules/veribranch.directives.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 15 Sep 2022 13:56:46 GMT
Accept-Ranges: bytes
ETag: "0a341feac9d81:0"
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 272820
Set-Cookie: TSae36f1d0027=089d29edacab2000fa3fc8703ab883a36b982a56f44d09cf1ae5e413d1917d66227d907b970e77f608b8ee5169113000bdb74c5fdd390a814f124a0c5a6423808f617df3ecf25e6b79f5360e8682e8e42ce0c00de3ebf7e903dba3a3782aa7c5; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/card.png

151.253.133.134

200 OK

2.3 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/card.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2323 bytes)
Hash
bd1af55f29cefc825fa4786d27e3e559
6139a269db3e1621cd7b6b9b8615e761ba139494
0bad8d60dfbfeea794d4e759c5fd056e849317b3527a52cf6caff61e3e22467f

HTTP Headers

GET /Features/wwwroot/statics/img/why/card.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 2323
Set-Cookie: TSae36f1d0027=089d29edacab2000c393484fb2804d29730ab70fbb3ba2c767543c173c661f86947f0d21f1b6495a08fabc55e51130005a43c70493aefd0653be01175531f33a08e01a10a8b6d0e3ddffe428e6bcf1495f19b9124b46ed40a89dce0313ecbe78; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/easy.png

151.253.133.134

200 OK

1.7 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/easy.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1722 bytes)
Hash
841dde334a405f708533c6fcd41429c8
13704c59010d2ddd42ca1e17979b853286b88364
5cb9acdc393b0c9ef2757fd5ecc732b11756f99f667695f4a5dfc13472484433

HTTP Headers

GET /Features/wwwroot/statics/img/why/easy.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 1722
Set-Cookie: TSae36f1d0027=089d29edacab200045b0b6f6f9738a5827259d58ecd7b8df5b94a085caac4de8578d612cd42495fd08d0c684e611300060d408c6241c202953be01175531f33aea7b6be2eed8a30a9da9665ad1876166c2f95aa08cd7b00bf3683d2c51cd41db; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/simple.png

151.253.133.134

200 OK

1.8 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/simple.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1841 bytes)
Hash
10d37f089d3259817aab649f6cff2ce4
46c507694dfbefddd0a2dce67adacd96678a8907
f3962c655f9444fadbe55ce632bb3a2e94524c547e3030128f9a6b7e77dbdd51

HTTP Headers

GET /Features/wwwroot/statics/img/why/simple.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 1841
Set-Cookie: TSae36f1d0027=089d29edacab20009c5f005c7b003c4507be9a2036c3cc6db2af54a816825b8c7220438646f041e8088953820411300071a300936b16eefb53be01175531f33aa0462d195648086af77f330317dfd5de3200720b2984da9253392a28b67935ce; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/secure.png

151.253.133.134

200 OK

1.8 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/secure.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1805 bytes)
Hash
0b1b3b1f5a235a2ba3ebef16b893c17a
96c87bcb977930f892e517fa3ebfb8ea80a37ea8
213379669cb8e3dc3b6b5ac246c2fc9e9906c775a287187be5660d77428bf356

HTTP Headers

GET /Features/wwwroot/statics/img/why/secure.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 1805
Set-Cookie: TSae36f1d0027=089d29edacab20007c54d27a34f9ccedeb2eb4a6b1032f5e19902c2257cdf6d6b6803e969d787bb20894936bff1130006ad2cd7c138c8cd953be01175531f33a0200d7cd1e3d0de8017e4114d2ee3f0b2a20255d989d9c78a8e19caa4f7473da; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/flex.png

151.253.133.134

200 OK

2.8 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/flex.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
2.8 kB (2845 bytes)
Hash
4f2d08601ea4a9ab66f2a3b344d06892
fc3bc40a4f56888b4713bc08eb0c7b153a025120
7fc1b16fcc824e95960110241fe32506d198c7e69b054bbfe18586266c893bb3

HTTP Headers

GET /Features/wwwroot/statics/img/why/flex.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 2845
Set-Cookie: TSae36f1d0027=089d29edacab2000adb5b1f4bd66627af61ea10fdfdeabafe9213e92fc0606ac3e0e51848f6a159208b08f860b113000f2e800dc6e85ba3953be01175531f33ad6f0f7f4c7dc09c664b6237f4e3afa0f15902de6a9ac9c504d6b6b1544a09a45; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/transferlearnmore.png

151.253.133.134

200 OK

1.4 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/transferlearnmore.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1404 bytes)
Hash
93a7ffa5d70a693f5bb7c0dffb14c63c
e2f2897f72ac032c944509bae420ba93d7b7b606
a1674d39dbcff5f6f26311858fedc848a139b3121846d7406af21744659b80a6

HTTP Headers

GET /Features/wwwroot/statics/img/why/transferlearnmore.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 1404
Set-Cookie: TSae36f1d0027=089d29edacab20006b139232efafeae770ee2b33643d8e5f3e3841328b763082f722b3c61f6e2b740858cda19e11300087c6473c7f7ed6b753be01175531f33aa9fc9784a54ad250fb5178fda2bb35742daa68538c895753600635ec4fb9cdcc; Path=/

online.dib.ae/Features/wwwroot/statics/ib/js/plugins-all.js?v=1588755968596

151.253.133.134

200 OK

666 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/js/plugins-all.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
data
Size
666 kB (666521 bytes)
Hash
ef49471d9b1eb80b0dcc6c08073162c0
3e77789aab1364fcb2dc84d46ee1deea71c3fc05
43644583ea9ac08050582df8430d2da62ccbc1b20cd9fc1fb06fa9b5c9cb1821

HTTP Headers

GET /Features/wwwroot/statics/ib/js/plugins-all.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Last-Modified: Fri, 17 Jan 2020 01:05:40 GMT
Accept-Ranges: bytes
ETag: "04ad3cd2ccd51:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 666521
Set-Cookie: TSae36f1d0027=089d29edacab2000336dbeb4b901ddd5e2720a7a0c1c3b51a7390bc44764fe209e5c6da212d1f5550828bf55bd1130001fdff05e048f48ff4f124a0c5a6423802c08e281194efd8854b5c0648759d266b05ef35681015d2a248970eea29c35b9; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/easyandfastPayment.png

151.253.133.134

200 OK

99 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/easyandfastPayment.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 384 x 237, 8-bit/color RGBA, non-interlaced\012- data
Size
99 kB (99426 bytes)
Hash
59f6b16a8ac1d6bb0ada3d649231f9fe
e993fd786daedd94b91466f2f2b75d527173ffc5
6e14eef59a9d8a8db3991122fc0015532cf029e705b719113e57cea1c0cfa759

HTTP Headers

GET /Features/wwwroot/statics/img/why/easyandfastPayment.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:23 GMT
Content-Length: 99426
Set-Cookie: TSae36f1d0027=089d29edacab20006cf4ad57da01daef183897363329c9bfb9f0e91e2d4dfc3dbd19e7058fb98cfe08c1822bca113000356ab3ff1cb9034053be01175531f33a0d92c930cb7377bef37d5592580dfd55dca3f4c47c7fee4b479d52e11a927773; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/simple_signup.png

151.253.133.134

200 OK

45 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/simple_signup.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 384 x 237, 8-bit/color RGBA, non-interlaced\012- data
Size
45 kB (44686 bytes)
Hash
d7c502e06221d9303416f2549ec7ae6b
2de4fe7bf7be4d8d5173bc1690b278094ca2d6e0
a71f23e054d21bd0a91b52908ad3ebd34335fbfcd87aec2e13760c0bd78c0c3b

HTTP Headers

GET /Features/wwwroot/statics/img/why/simple_signup.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:23 GMT
Content-Length: 44686
Set-Cookie: TSae36f1d0027=089d29edacab2000e4fb31ea7ea8c6e8ed682a7a709877495f70951948bf6de35a1e9b1e4cace097081ba8341e1130005c6b2d29c376fafb53be01175531f33a206790928df8e9a2abf31ab83ca516beb660b3f0a74ddd8d3aca81f0cff84d16; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/fastertransfer.png

151.253.133.134

200 OK

100 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/fastertransfer.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 384 x 237, 8-bit/color RGBA, non-interlaced\012- data
Size
100 kB (100098 bytes)
Hash
951034f7c3be510578b71e24c788d4d1
9b464c3f65b2c91128094e49e2c67ac1ea4efc72
f550d51773f001413bc65789ca77070049cbbe6abddb1cb47adf12223f605ab9

HTTP Headers

GET /Features/wwwroot/statics/img/why/fastertransfer.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:23 GMT
Content-Length: 100098
Set-Cookie: TSae36f1d0027=089d29edacab20005ce686fc21849b203f85a7842b6ac3d6be83d772c0bf346c2b19d5f6f753575d08d52f41c2113000c8def1774fbf8b4f53be01175531f33ad7c41a8ea9723b60eb5de4d142b167c608a41cc0104805e9432c89fc33a36ad4; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/secureandtrusted.png

151.253.133.134

200 OK

20 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/secureandtrusted.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 384 x 237, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19461 bytes)
Hash
fb2f09c9cdb5e59eb36126625e8c1b7d
8dabcc175acb08e2bf27e7d89a5693882ff53b80
bed3c124a8c2899f40846b8b7235fbd13f5e8966273587a2dcc775ec401afa37

HTTP Headers

GET /Features/wwwroot/statics/img/why/secureandtrusted.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:23 GMT
Content-Length: 19461
Set-Cookie: TSae36f1d0027=089d29edacab200093b81610767f1b7afea3c9d316e669d66f96241773b72a0cddbf0eab799cd2df08ba3b741111300009df016aff1a16ea53be01175531f33ab9b45951fe23592c879b4deefaa4b325ab982d440dd531a42cb5bb6ae15aa8a9; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/flexible_browser_require.png

151.253.133.134

200 OK

94 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/flexible_browser_require.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 384 x 237, 8-bit/color RGBA, non-interlaced\012- data
Size
94 kB (94008 bytes)
Hash
33fd1cb88d9321b0228a3a67e3848aa6
00fbe6f1f30053f1e434290c157e05dd8a027153
2d956a3943c762be5ec7e3601f3123a43ebcf512be24342589e122c3c9d62113

HTTP Headers

GET /Features/wwwroot/statics/img/why/flexible_browser_require.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:23 GMT
Content-Length: 94008
Set-Cookie: TSae36f1d0027=089d29edacab20007c8eda127f23f0e1ca314c1b52f3f9e2b5d95decc19a322bcc55b237da9ff9f4082b6e6f95113000af95278ed9d1411e53be01175531f33a4b866323678c973fd06de564840ff06ca3aacdfc92ad24c01acfe8e6399fed01; Path=/

online.dib.ae/Features/wwwroot/statics/img/why/smartservices.png

151.253.133.134

200 OK

119 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/why/smartservices.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 384 x 237, 8-bit/color RGBA, non-interlaced\012- data
Size
119 kB (118952 bytes)
Hash
09be79e79b4e657553416c5b8a864c4f
464001fc3de66c82e4d956eb687449b722a1ece2
5ca2ea703bbf4e669d7c04b90638943835936225194e6ea6bf5bafd18caf8142

HTTP Headers

GET /Features/wwwroot/statics/img/why/smartservices.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:23 GMT
Content-Length: 118952
Set-Cookie: TSae36f1d0027=089d29edacab20005278125ec750ef0a6a28292e0d6a6722764332c2d926da1ee06fbb0aece372d0089f520892113000640c9ce0728df6a353be01175531f33ae83a28c86bc2858a8f5199c1eddab3137f86a342cb5a6fc1b878ba773c137954; Path=/

online.dib.ae/Features/wwwroot/statics/img/favicon.ico

151.253.133.134

200 OK

5.5 kB

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/favicon.ico
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5500 bytes)
Hash
18a8ad482800fe807cf7ffb5ff472576
e2dae8102a48dc94eade13958065defc1547b6c6
d532edf3a8786d2e76379c0bf801d67b6f5b68b4668de649886df195aaf8e191

HTTP Headers

GET /Features/wwwroot/statics/img/favicon.ico HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/x-icon
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:23 GMT
Content-Length: 5500
Set-Cookie: TSae36f1d0027=089d29edacab2000247dd995cc4ecc18ffc2d4c94463f9f5d24b9ae0212c334e10595f049a5de56e0851ca33051130007eba43c7dd4105d753be01175531f33a545eae06feccb6d159fc9715493631221e67bfe1c1c8d6cd18aedea77a56b482; Path=/

online.dib.ae/Features/wwwroot/statics/ib/js/highcharts-all.js?v=1588755968596

151.253.133.134

200 OK

0 B

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/ib/js/highcharts-all.js?v=1588755968596
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Features/wwwroot/statics/ib/js/highcharts-all.js?v=1588755968596 HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: application/javascript
Last-Modified: Tue, 07 May 2019 08:23:02 GMT
Accept-Ranges: bytes
ETag: "0772a16ae4d51:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 203618
Set-Cookie: TSae36f1d0027=089d29edacab200072695173c78188b783907bec322923ec46d6739d944652d9fff81164353e172f085f7ffb3311300070eeb7afaeaaa9c04f124a0c5a642380b5d6c2e625aee9445b455112c3523193330a31b54f4a6982b18adfae70a4c38d; Path=/

online.dib.ae/Features/wwwroot/statics/img/logo.png

151.253.133.134

200 OK

0 B

URL HTTP/1.1
online.dib.ae/Features/wwwroot/statics/img/logo.png
IP
151.253.133.134:0
ASN
#5384 Emirates Telecommunications Corporation

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /Features/wwwroot/statics/img/logo.png HTTP/1.1
Host: online.dib.ae
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kyc.george-moczynski.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: max-age=86400
Content-Type: image/png
Last-Modified: Mon, 05 Nov 2018 14:52:52 GMT
Accept-Ranges: bytes
ETag: "0fa183a1775d41:0"
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Frame-Options: allow from http://eservices.dubaitrade.ae
X-XSS-Protection: 1; mode=block
Date: Sun, 02 Oct 2022 22:35:22 GMT
Content-Length: 203633
Set-Cookie: TSae36f1d0027=089d29edacab200045137e3d9ea166ba4a9136aa9cb34d5c39cdff8944da4924fc634f79a25053e50894582d90113000abfb1ee88a425cc253be01175531f33a510568cb83c68da311761898399e5f4656aa89f7ac21a8257bb6590ed213bb77; Path=/

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations