| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php | 188.114.97.1 | 301 Moved Permanently | 162 B |
URL HTTP/1.1www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php IP188.114.97.1:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | openphish | American Express | | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Dec 2022 00:34:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RZXIxz%2BWK3ndlKzpqyyFZizp1%2FSK4HqShV4qkE2kzK%2FOC%2BMQRgKTZj4OkIc%2FkY8qP8DJ68z7qv0GXF%2BYQU%2BqurDOYkBRSugJzxcYoGgwkXJe8o9IXM6vO3fnG1EEuVsYGA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7750ef0cc9c8b51e-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash342e6fc3f9a7a4594a3d4aa9d90b46d4 48b59b64e2ad5ba2d9c9060e88941ec3b6549e6d f686d26b560f31403e4b466e8d1db2f9c4ad2d84213615ce2878885e88c9c820
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F686D26B560F31403E4B466E8D1DB2F9C4AD2D84213615CE2878885E88C9C820"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9490
Expires: Tue, 06 Dec 2022 03:12:15 GMT
Date: Tue, 06 Dec 2022 00:34:05 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashcfec3d7283a9b66d2be426ce54d210f3 808c1feb1ba918951d1928c1f6bfc0c253262774 1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8861
Expires: Tue, 06 Dec 2022 03:01:46 GMT
Date: Tue, 06 Dec 2022 00:34:05 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash1ea206ac3c440825741687351f8c6e4e 2f38dafd8c43dcce2411a0590bc5c02cd6286735 7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11352
Expires: Tue, 06 Dec 2022 03:43:17 GMT
Date: Tue, 06 Dec 2022 00:34:05 GMT
Connection: keep-alive
|
|
| getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 | 34.120.5.221 | 200 OK | 45 kB |
URL HTTP/2getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 IP34.120.5.221:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash36e1f862757ff499de8f021c8315f50e 4ceaf1a8336b961a6f29ca9fae7bf3783d13279d dd7c544278e252ac621fd2c1520898194a599d499e95118beae25dd93ecb774d
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: 2Qjmez3Tn5qp_68nstH9V22EBWffwMoY7QJ1mL7VRmZRfLoGzoAkEQ==
content-encoding: gzip
via: 1.1 1f8eeeb66cf69eb3f901d42ffcb25050.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 00:32:02 GMT
age: 452
content-type: application/json
content-length: 45338
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sjBLD/p9yzgvo5OlZTWEZqpcKZ2OyWIAni2xZtndFAWv5KRC3tv9FbMjpQ9TfuwRRwdZXLFI3YQ=
x-amz-request-id: 6P234JKE9PM7A77D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 23:46:52 GMT
age: 2833
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashee088fab9b287e174cfd1f2c735a909f 25c3335b514a36ad1a24d00413d60c3d394f5161 494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3126
Cache-Control: max-age=125360
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:34:05 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:23:25 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 00:20:20 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 825
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/v9I-nNBO4gQ | 216.58.211.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/v9I-nNBO4gQ IP216.58.211.3:0
Hash7256575e9741bcd92c84dab145753534 794a1883a8a5d0bc8844bfdc2a5f632889363493 5bbbc5a35931756b52fcb565b63cfa074cc1ff1f96b75ed0c060c19de743dcd7
POST /s/gts1p5/v9I-nNBO4gQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:34:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/s/gts1p5/v9I-nNBO4gQ | 216.58.211.3 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/v9I-nNBO4gQ IP216.58.211.3:0
Hash7256575e9741bcd92c84dab145753534 794a1883a8a5d0bc8844bfdc2a5f632889363493 5bbbc5a35931756b52fcb565b63cfa074cc1ff1f96b75ed0c060c19de743dcd7
POST /s/gts1p5/v9I-nNBO4gQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:34:05 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/cid-double.png | 188.114.96.1 | 200 OK | 9.1 kB |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/cid-double.png IP188.114.96.1:0
File typePNG image data, 460 x 294, 8-bit/color RGBA, non-interlaced\012- data Hash25fa5e38ad8b621936b4cb8e5e613fd3 ce0acc6c672ca2b7f4b84770b8321f4ea5743d0b 564a66835dbdf4eda01f07e7f60344b644343cef1ed9eb40924108d417459bec
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - American Express | urlquery | phishing | Phishing - American Express |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/cid-double.png HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: image/png
content-length: 9066
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
etag: "638e03a7-236a"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kCuuLJnhyQVCkpEGcXmBDu33yyihTrwj4F%2FyW1PeLry8%2FlmSzOPo3d0xiYTvQoGlt5llVk326wqHtQd0OKhEVWo6EHgFiDq2kGxf8YheESBU4japedEu6wms3iiA4O0VDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7750ef110fe2b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/cm15-double-card.png | 188.114.96.1 | 200 OK | 9.8 kB |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/cm15-double-card.png IP188.114.96.1:0
File typePNG image data, 558 x 192, 8-bit/color RGBA, non-interlaced\012- data Hashf202d934ae46a217782a194055f32a41 8a00fa595e7468dae0a2d9f1da3f698b0720060a a185f56fce5110dfca7a78b8b5d22bb82d5dc4e597a3d589158cbe5e1fa9fac7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - American Express | urlquery | phishing | Phishing - American Express |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/cm15-double-card.png HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: image/png
content-length: 9831
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
etag: "638e03a7-2667"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9iZW%2B5hM6WAM1ChQdgGuoKUszL54g%2BHdFIIPF8Z6%2F1PsJJPUcny2BHsY75yQz41QDOPlRuj5HLJsafUceQ24iLnjVRiAR7tGNbfbxWbfI1MST6dGfMoH9Kvb6bI8JR%2B9Uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7750ef110fe0b4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 00:11:20 GMT
cache-control: public,max-age=3600
age: 1365
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash2b9d6a686aa3c4ea24568425e43a5221 d53bb4c9579bd1db78a0520619e888aec79f750f c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3113
Cache-Control: max-age=120279
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:34:06 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:58:45 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashc0f2e44653544c31b236ab7bc136755e 334bc8c6fb8f449d245fbb6df33d7e7224d9bc24 c26c25c109ed5252473c1e29aae168cb8ea5de6a0094ecce4662f9540d11a0d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 883
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 00:34:06 GMT
Etag: "638d471d-1d7"
Last-Modified: Tue, 06 Dec 2022 00:19:23 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
|
|
| www.aexp-static.com/nav/ngn/fonts/325e6ad0-38fb-4bad-861c-d965eab101d5-3.woff | 104.110.6.135 | 200 OK | 70 kB |
URL HTTP/2www.aexp-static.com/nav/ngn/fonts/325e6ad0-38fb-4bad-861c-d965eab101d5-3.woff IP104.110.6.135:0
Hash8a4729083bdf7e27bb66b84fd98a3773 3a95022dfd42f28c76c2c5bfa22f77717be5987c 4d0008588b22e7cdfe3a72a28c04acac685238e244001c0fb915397e9c74b36b
GET /nav/ngn/fonts/325e6ad0-38fb-4bad-861c-d965eab101d5-3.woff HTTP/1.1
Host: www.aexp-static.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bedouin.ae
Connection: keep-alive
Referer: https://www.bedouin.ae/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff
content-length: 69766
last-modified: Wed, 15 Aug 2018 20:46:09 GMT
etag: "5b749111-11086"
expires: Wed, 07 Oct 2020 16:56:37 GMT
cache-control: max-age=15552000
access-control-allow-origin: *
timing-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
accept-ranges: bytes
date: Tue, 06 Dec 2022 00:34:06 GMT
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 35.164.56.167 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.164.56.167:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aRhaIAkP9qhEuPU8Hd/eiQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4QfAOtVMPyQiXcHpbnUTU/4Uk7k=
|
|
| www.americanexpress.com/favicon.ico | 104.110.26.196 | 200 OK | 34 kB |
URL HTTP/2www.americanexpress.com/favicon.ico IP104.110.26.196:0
Hash505a7a43ed84e34a5888c3d769180ef5 8ed627141ff7e86aef623d53e03eaff8b89e447b 813db9de7064490b5f93b2533de07a18ccfdaef6292de8caa1012fbf466ec7ab
GET /favicon.ico HTTP/1.1
Host: www.americanexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bedouin.ae/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=15552000;
last-modified: Fri, 07 Jun 2019 04:05:21 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1381
x-cnection: close
content-type: image/x-icon
date: Tue, 06 Dec 2022 00:34:07 GMT
set-cookie: agent-id=5f40bcd0-1f7c-4538-b5a1-9ac043f85886; expires=Wed, 06-Dec-2023 00:34:07 GMT; path=/; domain=.americanexpress.com; secure; HttpOnly
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8752
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:34:07 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8752
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:34:07 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8752
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:34:07 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8752
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:34:07 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8752
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 00:34:07 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2409529ecac5140de749d864da85af0d 99f431b4ca446996dbacb969440e2ecfb11fd9e0 81b379b16874d6644b0cf63e02c5174e44a40ab7cb4f4727bb96ad44bfcaa72f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e5de346-6863-4521-9b1c-e74cf4df1d53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6422
x-amzn-requestid: 6d0cc220-31bc-4815-ade5-7e3e5403f39f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cniYTGgRoAMF5lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c7dce-64fbea8330a62e4f741c0c4e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 11:00:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N7fC93hYwpQYwGJGvXGHf2Z-H0Ek0MvRQsvT1HJy5Q46BnLNGjidSQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 07:35:32 GMT
age: 61115
etag: "99f431b4ca446996dbacb969440e2ecfb11fd9e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2f60a6490f38a772dcd50a1132e98e1b ff254a1df087d2c157d88a6ef04e395dc49efe5e 653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKSlCefkyQ7VDufJJOh1D7zhioft93jfOsoXxTD4ncAK5ktxlPvIoA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:52:07 GMT
age: 9720
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg | 34.120.237.76 | 200 OK | 9.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2e11524d75503e35c404d6c9a12ac540 5626b75f5c2523f1a0fc301839a06a4e2407f106 d5eb74d026014c0a68893bde1107a9a111b1f0af835e28bb740308017ef80b7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00b01871-cd98-4bab-b47d-4a29bb438277.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9354
x-amzn-requestid: fb2dad44-2f8c-4f02-bbc5-405e9586e5af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmctYGLdoAMFyDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e55-28b5680933de0ff4208240be;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9DoDl2ynVT-wtTVbAsUO7LoGG8T559DkLEfVf8ALbnAGcjajBq25yQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 03:56:21 GMT
age: 74266
etag: "5626b75f5c2523f1a0fc301839a06a4e2407f106"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png | 34.120.237.76 | 200 OK | 16 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb5e953213b7b13b8ee202406147fac52 67a09d8cd23ed444667b225f7fbf4bb17b9f42dd cf6b2502f0a992148f9401c16a329cae5a6c21fb81f03131f3e69c58bc608110
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15732
x-amzn-requestid: 7467ddb0-b9f9-47e9-ac31-c7599fe45698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVIIESBIAMFU6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e689a-79e3f8b66e1cf72f3283ac5b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3seQ7H4qrlKKpuIWUobiey92ZMkB4jWqd5v6T6379g0V0y6XdVFvWQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 8679
etag: "67a09d8cd23ed444667b225f7fbf4bb17b9f42dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8450e32d-c4fa-4c40-82bc-1c36f479692e.jpeg | 34.120.237.76 | 200 OK | 9.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8450e32d-c4fa-4c40-82bc-1c36f479692e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdd0fdca9dfb3e18fcbb5c89e12922da7 d8acf7053a01df2c503c734d52070ff4802d5a01 61e6235613c8ecda0321ecbe0870419bfa65cf3e44e3b85acd257f78725a6843
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8450e32d-c4fa-4c40-82bc-1c36f479692e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8978
x-amzn-requestid: 59cc852a-eb8c-45ab-a370-a176bffea0ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cqSrJGoaoAMF_jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d97e0-3760c58b6d2b7a6561541201;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 07:04:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7JodQ_7rkuySzNZtj0cThOwMxYT0BLrVbtivk6G_aWwEzbPk_5QcWA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 07:12:14 GMT
age: 62513
etag: "d8acf7053a01df2c503c734d52070ff4802d5a01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba08976-65c4-4b8b-9ef1-92055a7b5235.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba08976-65c4-4b8b-9ef1-92055a7b5235.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash53afd826523f4c18bf968764818d7ca7 9a26884875abb0652c568c50438b65f801779f9a 4f9dfeda67a040fef9c6987a7c334a91c993c84f694fa91771fcf7fd1d2e4937
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba08976-65c4-4b8b-9ef1-92055a7b5235.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12293
x-amzn-requestid: 49891ceb-3f74-4e83-8064-f54fc8b30961
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyGHPOIAMFYqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-651e4e0c55257bcc553cd176;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4f0QQ4-21m-DiP4oUtIG75_vremc835laqhfDerlqCuW-WyKClvc9Q==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:20 GMT
age: 9587
etag: "9a26884875abb0652c568c50438b65f801779f9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/uxa.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/uxa.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/uxa.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sTWGOOlX%2FrxKSIj%2FMkcYioJI6nfCnssB8RMPKBnk9f0yXJWPGnXQ7%2FtOMv0cgiWGRFqUOc4V9mWv7dyzZSPssr98Z0x5G7WM4415H2inEWpgnc0noMz0fVc3ZCTRjUQTQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10ffc6b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pcc.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pcc.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pcc.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-12329"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yofuhW1tb5ClzqBNIKEa9Uvdq4RhSDTy6LBVgt6E067yKsT4IgiPTAaps0EJBj11XI3uQUT92EH2Q0zTEIVNn2B4tupWEdyWjHdSb5K38fXuRudkIS0YEjowKmAx9%2F6rZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112802b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-translate-loader-static-files.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-translate-loader-static-files.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-translate-loader-static-files.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bPOqpbCxEhX8UvDX6x2L117KwoxcntZHYAzhnoa%2FfJiFewQHFm2A3NTWlkxmGpzSBu2DJHX%2Bx9gVlh4SLVLWIj9m4bgnh85jgALCBkePJt2zLYmMLEX%2By9hR63pOBUW6sA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ff6b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VwkPtxl9Z%2FWpI2xpv8pXIb9zGMGeICHOwHEISQNvZQEe3otphcD32pkufKUmnW7Wj5sHq6PXV%2FttvFklDQc9OT%2Fqez9nTJKr%2BhzbDC4RyupprAOX07av22HI8jMR3SQMnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111fecb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/982ff8f1d565c91c5d7b8527b5bacbf1.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/982ff8f1d565c91c5d7b8527b5bacbf1.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/982ff8f1d565c91c5d7b8527b5bacbf1.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4yw82o9l5SS2pUilKbOAu7J5MNjuvcakXK8AFiVQRRChhOK3dpKjDBZ3mF25hb4%2BkIeTheuaPE6%2Ff4GskgYVK66qXuByeuU9VZ4iT8I5AA30eMCXdhvAzt5gOXiQEz9hzg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112801b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/chatFrame.css | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/chatFrame.css IP188.114.96.1:0
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/chatFrame.css HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/css
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-46ec"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1ybgZFnMwFhfs4xypoWLyxOo8vj%2Bi2dJ9%2BCszafE4ZRF%2Bx9BwLZZjLoAJYVSwttr99mjto79XUHcaV3LIfCEBn6m43YsTXvA%2BEjA1an7zMtG5KfFW41FspAxL%2BcganQFMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10ffcdb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/tag.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/tag.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/tag.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pE2NSHHEWBU%2BDsMmxndpcrwZZ5zFH0GIFnbvOViYqQnm3ROKSjaXmbKew4qCs1STlMYkY02r9pEEbnL6i9u5LtZ8EjWXVNdX2SCjJtQJIHZ8oUucaci1LbJcH1Kyg%2FPugQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fd5b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/chatButtonBootStrap.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/chatButtonBootStrap.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/chatButtonBootStrap.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=loL%2BqT5y%2BLRv8EahJYnLxt8Fz2hiPcfne7HsRs4%2Ba4YyLFpJ%2Bov%2BYAM4aBW0bHmfbfCYrWMNDhG4QihoE3bg%2Fu%2BAb3UWYayIT4r7xFSpBE%2B0BCsHPAHIWQhwS1dts7feEA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10ffd1b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmcore_002.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmcore_002.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmcore_002.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2FWXO6mPxy8PpJ%2Bzz23NcZF0Zct1EetMtWyAVLUonCnYcd8knjJtdZqp5elDozevHUyRwO9d8nUGe%2Brm%2BkFleE3dOt8qegMmgQdOeNmammZ3ciu9CTbS%2BU%2FHzzBzQIKRUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fdfb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-translate.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-translate.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-translate.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hayXP6TfPUeoIlmm3zokG4ILw31as2eIC%2B1KDYY3o2pkJJ0KesN2bcdPG%2FJj8Y%2B0ALxzMOE5KzU5PamezqwmHI7MLCl2Ev9mIojd8FKNgKW0E5LMrH%2FH61fCJJC6BQoLmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ff2b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/ptc.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/ptc.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/ptc.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-b88e"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qfpyPrObs422HG1HZu7EqN3SAY959xRV7Zxtl7nj61b2JoZ6tlvY6l%2B68RbEPhtJL1FcJ7EeBZPmiz4hV6Myg6SPe2Rbm2ZtTI%2BxZGpTt3tYQBDsMqyE2b5n7QMi2FUA2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10ffc8b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/ensighten-head-domestic | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/ensighten-head-domestic IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/ensighten-head-domestic HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/octet-stream
content-length: 80803
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
etag: "638e03a7-13ba3"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CswWz%2BBSCLaQzeOIX0bXSbVGa7g935iolPM0jv1EmPSWA5UTxmT6WCLbUUmz4j1sBknHZea9374DAwATDlSW4zNXnnRcSPSGqbDlXedr2wLwhu0VnG4u4NjtwhXVXhoA4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fdbb4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-sanitize.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-sanitize.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-sanitize.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2AjzX6%2B54aHNHhJDCk3%2FQNge3ygCiC2xncalS%2BbBC3foCa8xrsJYNXFo4rlmjNoNqMOtoTnbLxtLaN2gOb6%2FDsLf9ofU9%2FuHS18oc%2BjE9tXAmaJLu%2B5oLJPLNTJ6H%2F2hcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ff0b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/serverComponent_002.php | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/serverComponent_002.php IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/serverComponent_002.php HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NPkSS7b%2FCtET8qp4J%2BDbQx35%2FhuSmdigiVYCMUFKM8obL2GUBX7A2FAqW5sLwG0NoesQJa6n618xdiOOCC6j4pKEM9OMPJvOVD2hGod%2B%2BEJPa78E4YhEFfMxwLtEttSezg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10ffc3b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/rwd.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/rwd.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/rwd.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-dcf"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IoWKp%2B5pA2nfGNnciIzCX5qcqt5qg1VomStnGOpUsHv5lTgpZ2VYzLXRkf%2BIQZi1YWgmpN3LoDpeLFEosuBB06KBLOGxBElp4xQMCFWwU1TqnL15pfsAkfNaQiGW%2FS9FQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fdab4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmcore.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmcore.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmcore.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zeb1M9QZ2YtWsnnQ2y7WkIPx0e17mh8ao1gT2hfvfUdPOygQfpsBjUodV0DCpKSJyM03jyQjG5Nj70VuGci%2BJrBaPAte69Ao2tTK59V4FR9tf58arHRmm0pSpMOC5T4r9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fdcb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/wr.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/wr.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/wr.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YN%2FRAGwkisAaQaNCfq7o3EDeT%2BQ3JUdgsWXk9Xll2MnWsvZ2nmNKcjZiaurLEeAtoRJxlUKb8Z9K%2BVgvYOdFcJ2UsXbMwI2wPflAyTkTolCSOqS%2FfhbvScB9WHZlboNoHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112804b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-animate.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-animate.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-animate.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eUPfo0M6StMAACGa4pu3Fdo%2FjccRdoK%2FnL3eKcgkqsN4A4NoKFoFag4uTadl%2FSoM5CDbnegzT6PUIPpZFEoaMUp4yeXzfLDFC6n8PLsumyg89HsQciqDaQ1Z2ES0sV7Fdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ff4b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/oce-min.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/oce-min.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/oce-min.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hmKjcHW5WwF4Dmk2lplsKWzsEImMzbPxHCV65gs6rluL4qVTvVcipV8kJ%2F2AgrN7LSAdugbzgMFRM8x6bRRNJj5X%2B7HOuG5lXkR6B0809HMpgMZagLoAtuSQTQ%2FDN18bMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ff9b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pzncs.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pzncs.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pzncs.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-73d7"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E97kErTJ9VyFnJEFl039z6fcZWYmALJ8cJznNrIoivWtn%2FZcTKxDRjZRRKJMn%2BOqFVEA4u3MwoizY%2FrZdH3Qe0WzaOhCeZefoUM%2BueYBfu12AusXWRZAmUml8j4%2FEnZnyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef11280bb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-messages.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-messages.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-messages.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o3NoxFj6Vf6ic2fa63zQFp1G1zwN1fcWpNqKTptXUskoOaxZ0J1yDjs45cW2OX7YrCRaK8MT7%2FWqN4eZG%2FX6weQ2V2vXKPbFPoOKexKati%2BGUOQEevWxA5f%2BarBe0WA1dQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ff5b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/a.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/a.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/a.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cr8LFmrHQ6lSEGNsnz73pVyydR18xZhlOtJbMNx4NWPJ0SuYEbX1HeFpva2bq8i5G%2FUBv9xm1cokS6nllf78Ch%2FHIxb%2Ba5ubVBFfB7ZGiCpoBcPZSBFE5jNbgpO89wWOPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fd6b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/serverComponent.php | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/serverComponent.php IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/serverComponent.php HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pPbHZaz2OmO9SuKB%2FlZeyyV89o%2BVUfIeSMUiV4KS0jUcxnFV67UGhoWZtSQ%2BlFj8rmtGxmHK9iVptJoKSUJ%2BdfyUl23DH1VA7Rx0ngQNC0D46SXi93Ucn7cgY010eUCiZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ffbb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/d9d11a89d20ecba185c3544ef5e0ccd0.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/d9d11a89d20ecba185c3544ef5e0ccd0.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/d9d11a89d20ecba185c3544ef5e0ccd0.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rat7IoJKb9i0fvdRkGeeRk0VheBQrB4WRlCxHyFG2KANkfdjZ1ulSAlxHat74JTwRfRJLYenEIgoP8EgE3JKtn3UUtcM564k4v%2FpmY34GaYi6GoBaF6Qn9WfoLiwob362g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112ffdb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pilot2.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pilot2.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/pilot2.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-73ba"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5OY3MDI7l%2BoCq9KZPgQa6cXKmkxS3NOAjKFtQ%2Fm155OD%2F0IIZWzndbeTeW%2Fct755QtTBbNQcAyxzY9LP9c7xvGlA4P%2FyR8EMx3lkmmKHMpXPQ7YLlSqAY3BroaGlugeUtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fd8b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/535cbbbd1048d62499a0605c08493da6.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/535cbbbd1048d62499a0605c08493da6.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/535cbbbd1048d62499a0605c08493da6.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gjdK7iDl9JVTEf%2FcvDu4Jg5IxV2SoywyBqZYDBe9I5ox%2BWILcvZuMS6qoDblL32oqlM233Kyk4qxGPNqPWkIZAL9dhGeiVjUoNUZSGJ5SDK%2Bv%2Fd1kf7bkjtz%2FItWfQGi8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112fffb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/s_code_myca_context.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/s_code_myca_context.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/s_code_myca_context.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-179c1"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WtMk0yTXXydKr0GnBHQruL1S%2BxVDYYirDslQR%2FjViRhyiZGvsAN5BFK0%2BmC2xwm0u2zjh2khltYIqHj8JvPsc%2FkvevYN94puGdsoPqfeHfCFRnYB1WfKZgTDjBDSeORgbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef11280ab4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/dls-flag-us.svg | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/dls-flag-us.svg IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/dls-flag-us.svg HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: image/svg+xml
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-15f8"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7O%2B9BlESSBSD8meM73%2FetmBGePNE58feVuW%2FXCVcOJzxfBckSgE8p59%2B4dU69FtVU3QvQYppkBRGqwQY2JfW2QtB4F4YrR9R5hT9wAbkfHDczNUVXSCJ40deUvMzxe9r8g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111fe6b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/le-mtagconfig.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/le-mtagconfig.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/le-mtagconfig.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pDkbq9CDOgpghqNkpD2B5nzSupkR%2Fq1kVC5W5pkTcK9qkiysoYxSwcu72xvOfMpkHsHl4Z2qIMjBWy0soDiLU5pWsjg%2BBoJSlIRU0KHJz1jTjwEYsZ4YL7f%2Bi5LhRGM%2F4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef11280fb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/script-supplier.js | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/script-supplier.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/script-supplier.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-fab3"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r9VNdSh35LSBhAfwuOXklXdpOOGcehhs5Hj4g3gk%2B2z35FtaPMfnfGd7ESQsB2IT4UpB5foZXBFmunHiQkl0FyLuFdDRZhgSHjdEm9fXROg36CgIxnakHY7UcEYKOdz4wA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10ffcbb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-ui-router.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-ui-router.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/angular-ui-router.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=inVaSEd%2F9GiXi9BeKzu4MpotvBdsnPe8u5sv%2FXopUefYBPPY38wxJxzkrdezot1kITs0YPUD4WE8i0f2dpvKOOQiGTPvrl8VELUuUlVk6VoXhk4W71uf1m1YAXip83xvdw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111feeb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/wrb.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/wrb.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/wrb.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jx1UgARBBm6AungLNR6JCQYfhEXR6vIss3WKQoGwfmDODlDNI6rC3GQR56GDzyRq4PLEN2LLgQWptWEJS4TXGp8BUKK9QfSZAk8hjXKMK54911iL2haPiTUm%2BPkF8GUMYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112803b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/jquery.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/jquery.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/jquery.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1CiOwNs4W3WR963aRRkZxaxAIXGMRMugJkFMDFCMThD9Q1aWSjYYAVnbc58HBiGLXOSBIIwDrcnRrODGHsaebq7kzxACmo7%2B6G4z%2Bp76BydRfVb%2BGIdulCfsUiUkqdFbbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111fe9b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/a1286f6da764170383069583cf445384.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/a1286f6da764170383069583cf445384.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/a1286f6da764170383069583cf445384.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igx2DZn7XhcTcGio%2BoTGrAdUkZpf5EonGaCLCWW%2ByvdsnZS%2FNes22hPMBJfNc8%2F4jXO9giQE%2FH9E99vZPOLBZSeW1Z2q7FfE3Y3yvg9zYpAilYrYAQg4GiGROZ3KtZ7ojg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112ffcb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmpackage-1.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmpackage-1.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/mmpackage-1.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fv0ccc2YqNMlWc7rVHdpdU0rC7h00QAtEw2d8WxjwxE0fQfg2Q4R3MbbVt0e%2B0KBQtVDTAOVJoRCklwNzsYt8iEwiDY22UO9n6dsAUr%2BvLOibnY8JEv6vTHCff17ftvspA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fddb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/aaLauncher.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/aaLauncher.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/aaLauncher.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YWpwa4mdYu42%2Fb86XQE2DnZFpIWM0Q%2BP7TS0aF7FH6u1jtK9CuxdPapQHF9VTT0k%2FePZ7s%2FoHU3JNpQ8YkSbECDP01dsxfaBhw%2FsLRYzRufgIhYsRoRgniDVzWFMf4Ad%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112809b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/VIDServiceDomestic.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/VIDServiceDomestic.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/VIDServiceDomestic.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gs%2F%2FR9bp2h4ov%2BMSlNcYmjIpOIP44DNBlRBzagQ3ykR7SmT%2BYZPvfx88HVP8zCv%2FAVUw6USwUTl5Q1MPVijXJny4DjA6BPBrBPOgYxo0LQ6Q7Ce0zhfaPdbq0LxlFLWurw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10efc1b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/timeout.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/timeout.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/timeout.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0F2v5R5RqOHeSoaYnffkGsKVQ071a3NKeRLW%2BSkTmxj1vmYb1G9kcSp%2FawLwXdJMc2X4tcVuVMP54%2FDPRdldu7gq1tkTSH3ofUL4mZqWqJsmmOELRV2e4MpoNOkZWFcLHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef11280cb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/oce-min.css | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/oce-min.css IP188.114.96.1:0
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/oce-min.css HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/css
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-3e9c2"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8vYcSd%2B5GXZNW6KO9fWBBuwXbpqgEXvKqdqwT95%2FlZnmxoyJihVwp9ls7KOYuaykO4T7rpQUcvmwEMYXeotzpNX82rb6FvcOpaQj0VfodUiAqplUNkb3gH2lq8PTALmvvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fd9b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/dls-logo-line.svg | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/dls-logo-line.svg IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/dls-logo-line.svg HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: image/svg+xml
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-693"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
access-control-allow-origin: *
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JtPw0Y5XLfiJmngUVcDXxvU1UjuDUqVIxRk1DkxkCsXYMhcSaZ0McO%2FTW7%2BTT%2FbhwFM3tORhvO%2Buvi11wEm4jB5mbQvn30c9yemfwn1df5w37yOFeyf%2FG6%2BUKAR7Iica8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef110fe5b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/aaLauncher.css | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/aaLauncher.css IP188.114.96.1:0
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/aaLauncher.css HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/css
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
vary: Accept-Encoding
etag: W/"638e03a7-24174"
expires: Tue, 13 Dec 2022 00:34:05 GMT
cache-control: max-age=604800
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NJCDa7BVdzOaoi3Agg0ztumNLBHaSWdSv2R8YHMpYadzEcgXOQ9wfKNkHhgk0EuxrP%2BX8012N3tas52%2FYc96ZbUEz2whDK%2FfrJgZAUjQqlU3l4RQ6r3HSmmzxcir%2FjNiyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112805b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php IP188.114.96.1:0
Analyzer | Verdict | Alert | openphish | American Express | | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tHFICcZG6EjkK2oaOxKoxJbgJVQ12ZezmpPWtgy7g6LMelMfpKWfUD54p4UM3qlTLmUjMo0v3u%2F7etnTjhgYuzLTh8Ih2OZiAroT%2B0tqS1Wuvn8mOaUCmVv1asCyb3EywQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef0f7ee4b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/visitorAPI-NonAAM.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/visitorAPI-NonAAM.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/visitorAPI-NonAAM.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n3YnbL2%2FkzqSErNYh%2BMs0Wp0Rf16zPKi8WgsVRT0PZchDkORf6cc4K2VYZZPfZwR1HlA9Gi%2FmiHkfCCVGbuTzWQ7QdpEr2LwJNjsgVZQ4y8IJU0xGzmC8azKQUU%2B5SNt%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef10ffc4b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/tealeaf-jQuery-prod-min.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/tealeaf-jQuery-prod-min.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/tealeaf-jQuery-prod-min.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1kHiAemXNe0St9CG6W9DDJazd1%2BnXIus1NVkv7W5SNUcfAT0OrJErMfEqh6%2Fpyrx3D7uCKXjpZhkQLE99zB%2BOs2etVgGVNyuvRQxYWdDC%2F8cUJAAwJlSdce7BMDNouAhDg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ff7b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/adobetracking | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/adobetracking IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/adobetracking HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: application/octet-stream
content-length: 75599
last-modified: Mon, 05 Dec 2022 14:43:51 GMT
etag: "638e03a7-1274f"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p9rft2pYcs5j7pUWH6eDZsaScaOfxvycf1x0AyX9ceA3pshIarWE7d%2BkKWgq6AFqxGJGD0LcmtGNB0pWOXu9KNI%2B%2Bd6v5gI6jsguOFiSznSC%2BriCYkiMxjUafAwe7Lq2PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef111ffab4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/3be911ab4b3927cad6c319a60d59181e.js | 188.114.96.1 | 404 Not Found | 0 B |
URL HTTP/2www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/3be911ab4b3927cad6c319a60d59181e.js IP188.114.96.1:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /wp-content/uploads/americanexpress.com.axp.rmLOGC/verify/3be911ab4b3927cad6c319a60d59181e.js HTTP/1.1
Host: www.bedouin.ae
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bedouin.ae/wp-content/uploads/americanexpress.com.axp.rmLOGC/verify-card.php
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
date: Tue, 06 Dec 2022 00:34:05 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
permissions-policy: interest-cohort=()
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QULGdbrdOHfQEHvBdZdn71iJnqGKrIqG06uhFPywzXylxsQwwFu1YUnkDY%2BaZnk6ZCx5GDqduPgl%2BNUZpnQdhKJnk56NWwrgLcgLAHjDYZAvJBzAtSvymhFVzrZguEKSBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7750ef112800b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|